fbpx

Download free GDPR compliance checklist!

Tag Archives for " GDPR "

Dutch Court Decides on Scope of GDPR Right of Access

In late December 2019, the Court of The Hague (Netherlands) published a preliminary reference procedure (see here , in Dutch). The Court was asked to decide on the scope of the right of access under the GDPR.

The Court also pointed out that the GDPR does not grant a right to obtain a copy of documents; it only grants a right to obtain a copy of personal data. In relation to documents that do not contain much personal information, such as the e-mails in question, the court held that it suffices to describe the data they contain.

Source: Dutch Court Decides on Scope of GDPR Right of Access

EU Parliament debates if California could be considered ‘adequate’

Members of the Parliament’s Committee on Civil Liberties, Justice and Home Affairs discussed in depth the European Commission’s report, issued Oct. 21, with representatives of the European Commission and European Data Protection Board.

Referring to the California Consumer Privacy Act, which took effect Jan. 1, Bruno Gencarelli, the commission’s head of International Data Flows and Protection Unit, said many of those who worked on the EU General Data Protection Regulation and Law Enforcement Directive “would not even have imagined a few years ago that there would be serious discussion in Congress about a federal privacy legislation or that California would have strong privacy rules that have just entered into application.”

Source: EU Parliament debates: Could California be considered ‘adequate’ on its own?

ICO Delays British Airways and Marriott GDPR Fines

Further to the publication of the ICO’s notices of intention to fine British Airways and Marriott in July 2019, the ICO has recently issued a statement delaying the issuance of both GDPR fines which had originally been expected by the end of 2019.

The ICO’s initial notices of intention to fine had stated that British Airways would face a fine of £183m ($228m) and Marriott, a fine of £99m ($123m). ICO will now have until March 31, 2020 to finalize the penalties imposed on both British Airways and Marriott, which were the result of two high-profile data breaches and subsequent ICO investigations.

Source: ICO Delays British Airways and Marriott GDPR Fines

ICO launches consultation on draft direct marketing code of practice

The Information Commissioner’s Office (ICO) has launched a public consultation on a draft direct marketing code of practice.

The ICO has previously produced direct marketing guidance and the draft code builds on this, as well as taking into account the input received during the initial call for views. The code takes a practical life-cycle approach to direct marketing.

The code is out for consultation until 4 March 2020 and the final version is expected later this year. You can read the code and take part in the consultation through the ICO website.

Source: ICO launches consultation on draft direct marketing code of practice | ICO

Data privacy predictions for 2020: Six industry experts have their say

The issue of data privacy has risen dramatically over the past few years, from a fringe concept to a major regulatory concern, particularly with the creation of GDPR. But what predictions do experts have for data privacy in 2020?

Read predictions experts across technology made for 2020, from new regulations to emerging business practices shaping data privacy: Data privacy predictions for 2020: Six industry experts have their say

Twitter and Microsoft show data privacy is moving from sticking point to selling point

A couple of tech heavyweights are making data privacy part of their branding, hoping to stay ahead of regulations.

Twitter thinks a strong position on data privacy could be advantageous. Distrust of social media platforms has never been so widespread, and in the current environment, it’s not crazy to decide that winning on trust can make a real long-term difference to user numbers and bottom line. Microsoft is another heavyweight positioning itself to benefit from a commitment to user data privacy.

Full article: Twitter and Microsoft show data privacy is moving from sticking point to selling point | VentureBeat

GDPR will force programmatic advertising to evolve in 2020

GDPR replaced the Data Protection Directive in 2018, and for companies who use programmatic advertising, it could be the key to boosting their campaigns.

What exactly GDPR will mean for programmatic advertising in 2020:

  • Fewer targets, but more relevant ones
  • Personalization could be impacted but will evolve
  • Omnichannel programmatic will become more important

Full article: GDPR will force programmatic advertising to evolve in 2020 — and that’s a good thing

European tech regulator despairs over lack of enforcement

The world’s toughest privacy law proves toothless in the eyes of many critics.

More than 18 months after the European Union began implementing the world’s toughest privacy law, the bloc’s ability to rein in Big Tech is increasingly in doubt amid growing frustration over a lack of enforcement actions and weak cooperation on investigations.

side from a €50 million fine that France’s privacy regulator imposed on Google in January, there have been no fines or remedies levied at a U.S. giant since the GDPR came into effect. And the two nations most directly responsible for policing the tech sector — Ireland and Luxembourg, where the largest tech firms have their European headquarters — have yet to wrap up a single investigation of any magnitude concerning a U.S. firm.

Full article: ‘We have a huge problem’: European tech regulator despairs over lack of enforcement – POLITICO

EU Council’s Draft Position on the Application of the GDPR

On December 19, 2019, the members of the Permanent Representations of EU Member States to the Council of the European Union (“the Council”) published a draft position on the application of the General Data Protection Regulation (GDPR).

After the draft position has been formally adopted by the Council, it will be provided to the European Commission. This is part of the GDPR evaluation process under Article 97 of the GDPR, which requires the European Commission to publish a report on the evaluation and review of the GDPR by May 25, 2020.

Source: EU Council’s Draft Position on the Application of the GDPR

>