fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " EU "

Amazon Faces EU Inquiry Over Data From Independent Sellers

European antitrust regulators have opened an investigation into the data that Amazon uses from third-party sellers who rely on the tech company’s site.

The European Union’s top antitrust regulator said on Wednesday that it had opened a formal antitrust investigation into whether Amazon was using the third-party data to promote its own products at the expense of other retailers.

Regulators said they were examining whether Amazon was hurting competition by abusing its dual role as a retailer that sells its own goods and a marketplace where other merchants sell products.

Source: Amazon Faces E.U. Inquiry Over Data From Independent Sellers – The New York Times

European Commission Releases Factsheet on Artificial Intelligence

On July 4, 2019, the European Commission published a factsheet on artificial intelligence for Europe.

In the Factsheet, the European Commission underlines the importance of AI and its role in improving people’s lives and bringing major benefits to the society and economy.

Full article: European Commission Releases Factsheet on Artificial Intelligence

The EU Cybersecurity Act Introduces Certifications and the New Cybersecurity Agency

On June 27, 2019, the EU Regulation on Information and Communication Technology (Cybersecurity Act or Act) became effective introducing, for the first time, EU-wide rules for the cybersecurity certification of products and services (Certification).

he Certification may create a competitive advantage for companies that sell their products and services in the EU. Further, the Certification may act as a catalyst to the anticipated certifications for GDPR-compliance.

In addition, the Cybersecurity Act provides for a new permanent mandate for the EU Agency for Cybersecurity (ENISA) with new responsibilities.

Source: The EU Cybersecurity Act Introduces Certifications and the New Cybersecurity Agency

Cookie consent – What “good” compliance looks like according to the ICO

On 3 July 2019, the UK data protection authority (the ICO) updated its guidance on the rules that apply to the use of cookies and other similar technologies.

The ICO has also changed the cookie control mechanism on its own website to mirror the changes in the new guidance.

Full article: Cookie consent – What “good” compliance looks like according to the ICO

EU High-Level Working Group on AI launches pilot phase of Ethics Guidelines and publishes  Recommendations for Trustworthy AI

On June 26, 2019, the EU High-Level Expert Group on Artificial Intelligence (AI HLEG) announced two important developments: (1) the launch of the pilot phase of the assessment list in its Ethics Guidelines for Trustworthy AI; and (2) the publication of its Policy and Investment Recommendations for Trustworthy AI.

The Recommendations are the second deliverable of the AI HLEG; the first was the Group’s Ethics Guidelines of April 2019, which defined the contours of “Trustworthy AI”.

Source: Two new developments from the EU High-Level Working Group on AI: launch of pilot phase of Ethics Guidelines and publication of Policy and Investment Recommendations for Trustworthy AI

New rules for biometric EU identity and residence cards given final approval

The European Union’s Council has approved new rules for biometric fingerprint and photo security features of identity and residence cards, as proposed by the European Commission.

The biometric features of European ID cards will be stored on a contactless chip, making them similar in security to passports.

Source: New rules for biometric EU identity and residence cards given final approval | Biometric Update

SCHREMS 2.0 – the demise of Standard Contractual Clauses and Privacy Shield?

On July 9th, Europe’s highest court – the Court of Justice of the European Union (CJEU) – is set to hear a case concerning the validity of two key data transfer mechanisms: Standard Contractual Clauses (SCCs) and Privacy Shield – mechanisms widely used by businesses within the European Economic Area (EEA) to legitimise the transfer of personal data to countries outside the EEA.

There is a significant risk the CJEU will declare these transfer mechanisms as invalid. If this happens, many organisations will be left without any practical solution to legitimise the international transfer of personal data outside the EEA and exposure to the threat of GDPR revenue based fines, regulatory sanctions including injunctions and third party claims for compensation.

Read full article: SCHREMS 2.0 – the demise of Standard Contractual Clauses and Privacy Shield?

Privacy Shield Ombudsperson Confirmed by US Senate

On June 20, 2019, Keith Krach was confirmed by the U.S. Senate to become the Trump administration’s first permanent Privacy Shield Ombudsperson at the State Department.

The role of the Privacy Shield Ombudsperson is to act as an additional redress avenue for all EU data subjects whose data is transferred from the EU or Switzerland to the U.S. under the EU-U.S. and the Swiss-U.S. Privacy Shield Framework, respectively.

Source: Privacy Shield Ombudsperson Confirmed by the Senate

EU Commission publishes report on GDPR application issues

The European Commission has published Multistakeholder Expert Group’s report on eperience of application of the General Data Protection Regulation’s (GDPR).

Report highlights the main issues and concerns that organisations face in complying with the GDPR, as well as GDPR’s impact on the exercise of data subjects’ rights.

Read Multistakeholder Expert Group’s report.

>