Tag Archives for " law "

GDPR Has Made Google Even More Dominant In Europe

Over the last few years, the EU has been screaming about the awfulness of evil large tech companies in the name of Google, Amazon, Facebook and Apple (sometimes called “GAFA”). However, EU law will mostly serve to lock in those companies as the dominant providers. That’s because they’re big enough to manage the regulatory burden, whereas startups and smaller competitors will not be able to and will suffer.

Full article: Just As Expected: GDPR Has Made Google Even More Dominant In Europe | Above the Law

Polish DPA’s guidance on data protection in the workplace partially “controversial”

The Polish data protection authority (‘UODO’) issued, on 4 October 2018, guidance for employers on data protection in the workplace, under the General Data Protection Regulation (‘GDPR’), following a public consultation on the same. In particular, the Guidance focuses on the processing of employee data during recruitment, selection and the employment period, as well as distinguishes between different types of employment contracts, such as those concerning temporary and permanent workers.

Full article: Poland: UODO’s guidance on data protection in the workplace partially “controversial”

CNIL publishes initial analysis on Blockchain and GDPR

Many questions surround the Blockchain’s compatibility with EU General Data Protection Regulation (GDPR). The French Data Protection Supervisory Authority (the CNIL) has recently published its initial thoughts on this topic, providing some responses and practical recommendations on how the usage of a blockchain may be compatible with GDPR and more generally Data Protection Law, taking into account the “constraints” imposed by such technology.

Full article: FRANCE: CNIL publishes initial analysis on Blockchain and GDPR

First significant GDPR fines in the pipeline

The European Data Protection Supervisor, Giovanni Buttarelli, says that we can expect to see DPAs take enforcement action soon. He said the sanctions will be imposed in many EU countries and will hit many companies and public administrations but declined to provide details because investigations were still ongoing.

Source: First significant GDPR fines in the pipeline – Privacy Laws & Business

German Lawyer Sanctioned Due to Incomplete GDPR Policy

An interim injunction has been issued by Würzburg Regional Court against a lawyer who displayed an unfinished Privacy Policy on her firm’s website which also included an unencrypted and unprotected contact form. Reaction to the ruling has been mixed as the sanction due to the unfinished GDPR policy was understandable but ruling regarding the unencrypted form was more confusing as this does not affect the transfer of information.

Source: German Lawyer Sanctioned Due to Incomplete GDPR Policy – Compliance Junction

Key Developments in Internet of Things Law

California Signs the First IoT Security Bill into Law, and the FTC Submits Comments to the Consumer Product Safety Commission Regarding the IoT California’s New IoT Law On September 28, 2018, California Governor Jerry Brown signed into law a cybersecurity bill governing Internet of Things (IoT) devices, the first law of its kind in the nation.

Source: Key Developments in Internet of Things Law

EDPB: ICO too strict on data protection impact assessments

The opinion, issued by the European Data Protection Board (EDPB), differs from guidance the UK’s Information Commissioner’s Office (ICO) has issued on DPIAs. Businesses planning to process biometric, genetic or location data do not automatically have to carry out a data protection impact assessment (DPIA) first to comply with the General Data Protection Regulation (GDPR), an EU privacy watchdog has said.

The ICO is not bound to update its guidance in light of the EDPB’s opinion, but must justify its reasons for not doing so if “it does not intend to follow this opinion, in whole or in part”, the EDPB said

Source: EDPB: ICO too strict on data protection impact assessments

GDPR Readiness Survey for Software and SMEs

The GDPR Readiness Survey for Software and SMEs will show you the latest approach taken by entrepreneurs to comply with the GDPR. In this GDPR Readiness Survey, 100 different software companies and startups of varying sizes, ranging from 1-250 employees, were surveyed.

50% of respondents indicated they managed GDPR compliance internally without the consultation of an external body or an external lawyer. 42% of respondents contacted a lawyer to advise on GDPR compliance.

52% of survey respondents believed that they are fully GDPR compliant

Full article: GDPR Readiness Survey for Software and SMEs

Finland parliament weakens constitutional privacy right to pass security law

Finland’s parliament voted on Wednesday to add new exceptions to a clause in the constitution that guarantees the right to privacy, to enable swift approval of an intelligence bill aimed at combating terrorism and spying by foreign governments. The new language would create another exception to give the police and security forces the authority to snoop on emails and other messages to gather information about “military or other activity that threatens national security”.

Source: Finland parliament weakens constitutional privacy right to pass security law | Reuters

What does “identity” look like in a GDPR world?

Identity, quite literally, defines who we are. Previously confined to a single piece of paper, then a larger computer database, and now spread across multiple devices and platforms, many are questioning the future of identity and how digitisation has affected the way consumers, businesses and governments view the term.

Full article: What does “identity” look like in a GDPR world?

1 2 3 92
>