fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " sanctions "

CNIL flexible on enforcement of new obligations for first months of GDPR regime

France’s Data Protection Authority, the CNIL, announced last month that in the first months of implementation of the GDPR, it may not sanction beaches of new obligations or rights resulting from the GDPR, such as the right to data portability and impact assessments.

This period of grace, however, requires that the organisations are engaged in the compliance process, are of ‘good faith’ and cooperate with the CNIL. However, if the CNIL detects breaches of well-established data protection principles, it will act immediately.

Source: CNIL flexible on enforcement of new obligations for first months of GDPR regime – Privacy Laws & Business

The FTC-Venmo Privacy Settlement is All About Design

Paypal has settled charges from the Federal Trade Commission (FTC) that stated its popular money transferring app, Venmo, misled customers with confusing privacy settings. The FTC complaint is a lesson in the importance of user-friendly design in app privacy settings, as well as the privacy risks of combining financial transactions with social networking.

Money transferring apps are a popular—and sometimes necessary—modern convenience. While some users enjoy the social aspect of Venmo, others just want to split the bill without sharing. For the second camp, there seemed to be an easy solution: you could change the default audience for your transactions from “public” to “participants only.”

Source: The FTC-Venmo Privacy Settlement is All About Design

French DPA takes pragmatic approach to GDPR enforcement

The French data protection authority (‘CNIL’) published, on 19 February 2018, a press release outlining its approach in terms of enforcing compliance with the General Data Protection Regulation (Regulation (EU) 2016/679) (‘GDPR’) from 25 May 2018.

Source: France: CNIL takes ”very pragmatic approach” to GDPR enforcement

Telecom Italy fined 840,000 euros for marketing calls without consent

The Garante, Italy’s Data Protection Commission, has issued an administrative fine of Euros 840,000 for breaching Italy’s Privacy Code. Telecom Italia had made promotional telephone calls without consent to former customers who had not given permission to receive marketing calls, or had revoked their consent.

Source: Telecom Italy fined 840,000 euros for marketing calls without consent – Privacy Laws & Business

Facebook loses Belgian privacy case, faces fine of up to €100 million

A Belgian court threatened Facebook on Friday with a fine of up to 100 million euros ($125 million) if it continued to break privacy laws by tracking people on third-party websites.

In a case brought by Belgium’s privacy watchdog, the court also ruled that Facebook had to delete all data it had gathered illegally on Belgian citizens, including people who were not Facebook users themselves.

Source: Facebook loses Belgian privacy case, faces fine of up to $125 million

ICO will take proportionate approach to GDPR fines

The ICO is not planning to issue fines in every circumstance when it detects a breach of the GDPR (or implementing legislation), ICO’s Steve Eckersley said at the CDPD conference in Brussels. Eckersley stated that the ICO will also have other options in its toolbox: the opportunity to issue warnings or demand an audit. He thought that in many cases the reputational damage will have a greater impact than any fine.

Source: ICO will take proportionate approach to GDPR fines – Privacy Laws & Business

1 9 10 11 12 13 15
>