fbpx

Download free GDPR compliance checklist!

Tag Archives for " European Commission "

CJEU fines Spain €15 million for failure to implement Data Protection Law Enforcement Directive

The Court of Justice of the European Union (CJEU) ordered Spain to pay the European Commission 15.5 million euros and a potential daily fine thereafter for failing to transpose the Data Protection Law Enforcement Directive (Directive (EU) 2016/680).

On top of the €15 million fine Spain will have to pay a daily penalty payment of € 89 000 for each day of delay on transposition following the CJEU’s judgment.

Source: CJEU press release

BEUC files complaint against TikTok for multiple EU consumer law breaches

The European Consumer Organisation BEUC has filed a complaint with the European Commission and the network of consumer protection authorities against TikTok, a video sharing platform extremely popular with children and teenagers.

BEUC contends that TikTok falls foul of multiple breaches of EU consumer rights and fails to protect children from hidden advertising and inappropriate content. Also, TikTok’s practices for the processing of users’ personal data are misleading, says BEUC.

In addition to BEUC’s complaint, consumer organisations in 15 countries have alerted their authorities and urged them to investigate the social media giant’s conduct.

Source: BEUC files complaint against TikTok for multiple EU consumer law breaches | www.beuc.eu

Data watchdog rejects EU criticism over Max Schrems complaints

The Irish Data Protection Commission (DPC) has strongly refuted criticism of its processes by a European Parliament committee as “false”.

The DPC had been dealt a stinging rebuke by the EU’s Parliamentary Committee on Civil Liberties, Justice and Home Affairs – known as the LIBE committee – over its handling of the complaints of Austrian privacy activist Max Schrems.

The committee had called on the EU Commission to begin infringement proceedings against the DPC regarding its management of data rights.

Source: Data watchdog rejects EU criticism over Max Schrems complaints

Commission reveals details on future EU robotics policy

The European Commission aims to present a revision of the machinery directive in the second quarter this year, and it has recently been revealed that there are plans to tackle issues related to ‘human-robot’ collaboration, as well as improve the transparency of Artificial Intelligence algorithms in robots.

Moreover, the Commission will also look at the radio equipment directive, which covers communications transmitted by devices connected to the Internet of Things, in an attempt to bolster privacy protocols.

Source: Commission reveals details on future EU robotics policy  – EURACTIV.com

Brussels zeroes in on Google’s adtech business

Brussels is not done with Google and has added the advertising technology at the heart of the search giant’s business model to its long list of concerns.

After slapping the U.S. search giant with fines exceeding €8 billion in three antitrust cases, the European Commission is now running two more investigations into Google. The first focuses on how the U.S. company gathers and uses data and the second one on how it behaves in the advertising business. The second case focuses on Brussels’ investigation into “Google’s practices in the advertising technology (“ad tech”) value chain, and its position in relation to advertisers, publishers and intermediaries, and competitors in search advertising, display advertising and ad tech services,” the document continues.

Source: Brussels zeroes in on Google’s adtech business – POLITICO

EDPB & EDPS adopt joint opinions on new sets of SCCs

The EDPB and EDPS have adopted joint opinions on two sets of contractual clauses (SCCs). One opinion on the SCCs for contracts between controllers and processors and one on the SCCs for the transfer of personal data to third countries.

Several amendments were requested in order to bring more clarity to the text and to ensure its practical usefulness in day-to-day operations of the controllers and processors. These include the interplay between the two documents, the so-called “docking clause” which allows additional entities to accede to the SCCs, and other aspects relating to obligations for processors. Additionally, the EDPB and EDPS suggest that the Annexes to the SCCs clarify as much as possible the roles and responsibilities of each of the parties with regard to each processing activity – any ambiguity would make it more difficult for controllers or processors to fulfil their obligations under the accountability principle.

Source: EDPB & EDPS adopt joint opinions on new sets of SCCs

Europol and the European Commission inaugurate new decryption platform

Europol has launched an innovative decryption platform, developed in close cooperation with the European Commission’s Joint Research Centre. It will significantly increase Europol’s capability to decrypt information lawfully obtained in criminal investigations.

The launch of the new decryption platform marks a milestone in the fight against organised crime and terrorism in Europe. In full respect of fundamental rights and without limiting or weakening encryption, this initiative will be available to national law enforcement authorities of all Member States to help keep societies and citizens safe and secure.

Source: Europol and the European Commission inaugurate new decryption platform to tackle the challenge of encrypted material for law enforcement investigations | Europol

European Commission Publishes Draft ‘Article 28’ Standard Contractual Clauses

In addition to issuing new (draft) standard contractual clauses for transferring personal data outside of the EEA, on November 12, the European Commission published a draft decision on standard contractual clauses between controllers and processors for the matters referred to in Article 28 of GDPR.

Use of the Clauses is not compulsory, and controllers and processors may still choose to negotiate individual contracts to satisfy the requirements of Article 28 GDPR and allow a certain degree of flexibility.

The Clauses are currently open for public consultation until 10 December 2020.

Source: European Commission Publishes Draft ‘Article 28’ Standard Contractual Clauses | Alston & Bird Privacy Blog

European Commission Publishes Draft of New Standard Contractual Clauses

On November 12, 2020, the European Commission published a draft implementing decision on standard contractual clauses for the transfer of personal data to third countries pursuant to the EU General Data Protection Regulation (GDPR), along with its draft set of new standard contractual clauses (SCC).

The SCCs are open for public consultation until December 10, 2020, and feedback may be submitted here. The adoption process for the SCCs requires an opinion of the European Data Protection Board and the European Data Protection Supervisor, and the positive vote of EU Member States through the comitology procedure. The final SCCs are expected to be adopted in early 2021.

Source: European Commission Publishes Draft of New Standard Contractual Clauses

Commission presses Zoom for security assurances but continues to use platform

The European Commission is looking for further assurances from US video conferencing platform Zoom regarding the security of its technology, after concerns emerged earlier this year over the company’s privacy protocols.

The Commission “has asked Zoom for its latest security audit reports and additional information, particularly relating to its encryption controls,” Human Resources Commissioner Johannes Hahn said on Tuesday (6 October), in response to a written question from Italian MEP Mara Bizzotto.

Source: Commission presses Zoom for security assurances but continues to use platform – EURACTIV.com

1 2 3 10
>