fbpx

Download free GDPR compliance checklist!

Tag Archives for " GDPR "

The Netherlands DPA imposes EUR 830,000 fine for access request fees

On the 6 th of July 2020, the Dutch Data Protection Authority  published its decision to impose a fine of 830,000 EUR on Stichting Bureau Krediet Registratie (BKR).

BKR keeps an electronic file of the loans and debts people have in the Netherlands, stored in a central database. The fine has been imposed due to the fact that BKR’s procedure for data subjects to obtain access to their personal data was not in line with GDPR.

Source: The Netherlands – DPA imposes EUR 830,00 fine for access request fees

What the outcome of the upcoming ruling in Facebook Ireland vs Schrems can mean for you

On the 16th of July, one of the most anticipated cases in data protection, case C-311/18 — Facebook Ireland versus Schrems — will be delivered by the EU Court of Justice.

The verdict in the groundbreaking “Schrems 2.0” case will dictate whether the widely used Standard Contractual Clauses (SCCs) and the EU/USA Privacy Shield will remain a valid means of transferring personal data to countries outside the EEA under the EU’s GDPR.

Full article: What the outcome of the upcoming ruling in Facebook Ireland vs Schrems can mean for your organisation and how to prepare for the 16th of July

YouTube not obliged to inform on film pirates, Europe’s top court says

Google’s YouTube is not required to hand over the email or IP address of users who upload films illegally to its video platform, Europe’s top court ruled on Thursday, saying there must be a balance between protecting personal data and copyright.

The case came before the Luxembourg-based Court of Justice of the European Union (CJEU) after a German court sought guidance on what video platforms must do to combat film piracy in a case concerning German film distributor Constantin Film Verleih.

The company, which had distribution rights to the films Scary Movie 5 and Parker in Germany, had asked YouTube and Google to provide the email addresses, telephone numbers and IP addresses of users who had uploaded those films illegally onto YouTube in 2013 and 2014.

Source: YouTube not obliged to inform on film pirates, Europe’s top court says – Reuters

Facial recognition developed by Clearview AI likely illegal in Europe

The European Data Protection Board warned that Clearview AI’s technology is likely to be illegal in Europe.

Clearview AI’s software allows organizations to match pictures of people’s faces to a database containing more than 3 billion images that have been taken from social media platforms and other websites.

Source: Facial recognition developed by Clearview AI likely illegal in Europe

More than half of organisations subject to GDPR collect more data than the regulation permits

A Data Risk and Security report released by the security software company Netwrix has revealed that companies are failing to follow GDPR and security best practices.

The survey of just over a thousand respondents revealed that security professionals are often bypassing many of the six stages of the data lifecycle. While security issues are mitigated at some stages, many important stages are being overlooked, resulting in vulnerable systems.

Source: More than half of organisations subject to GDPR collect more data than the regulation permits, a study has found

Why Trump’s administration is going after Europe’s privacy rules

US officials are ramping up criticism of flagship GDPR law, which they say protects cybercriminals.

At the heart of the issue for many U.S. critics of the GDPR is the WHOIS database, an online directory created in the 1970s, which became an important tool for global law enforcement agencies fighting cybercrime.

Source: Why Trump’s administration is going after Europe’s privacy rules – POLITICO

How concerned are Europeans about their personal data online?

The Fundamental Rights Survey asked people about their views on sharing personal data as well as their awareness of EU data protection rules, the General Data Protection Regulation (GDPR).

As governments discuss using technology to stop the spread of COVID-19, many Europeans are unwilling to share data about themselves with public and private bodies.

Read more: How concerned are Europeans about their personal data online? | European Union Agency for Fundamental Rights

Privacy not a blocker for ‘meaningful’ research access to platform data

Facebook, meanwhile, points to European data protection regulations and privacy requirements attached to its business following interventions by the US’ FTC to justify painstaking progress around data access.

But critics argue this is just a cynical shield against transparency and accountability. Plus of course none of these regulations stopped Facebook grabbing people’s data in the first place.

“Data protection obligations should not be misappropriated as a means for powerful players to escape transparency and accountability,” wrote EDPS Wojciech Wiewiorówski.

Source: Privacy not a blocker for ‘meaningful’ research access to platform data, says report | TechCrunch

EU Commission publishes its evaluation of GDPR

On 24 June, the European Commission published its evaluation report of the GDPR, just over two years after the GDPR become applicable.

The Commission’s report, indicates that the GDPR has met most of its objectives, in particular in relation to individual enforceable rights and by creating a new European system of governance and enforcement.

Source: EU: EU Commission publishes its evaluation of GDPR

The CNIL Can’t Legally Forbid Cookie Walls Under GDPR

France’s highest administrative court has ruled that the country’s data protection authority, the CNIL, does not have the right to ban cookie walls.

The Conseil d’État, a division of the French government that serves as its supreme court of administrative justice, issued a ruling on Friday in response to litigation initiated last year by French trade organizations.

Source: The CNIL Can’t Legally Forbid Cookie Walls Under GDPR | AdExchanger

1 2 3 129
>