fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " Sweden "

Sweden authorises the use of facial recognition technology by the police

Sweden’s data protection authority has approved the use of facial recognition technology by the police, to help identify criminal suspects.

According to the Swedish authority, the processing and storage measures comply with Sweden’s Crime Data Act and the EU’s Data Protection Law Enforcement Directive (GDPR).

The decision is controversial following successive bans of this technology in US cities. The technology is widely used in China.

Source: Sweden authorises the use of facial recognition technology by the police | New Europe

How to interpret Sweden’s first GDPR fine on facial recognition in school

The school used facial-recognition software via camera to capture and register 22 students’ participation in class. The school board claimed that automizing taking the class register would save 17,280 hours of work each year at the school.

However, neither a risk assessment nor prior consultation with the Swedish DPA was executed. August 20, the Swedish DPA fined the school SEK 200,000, its first fine under the EU General Data Protection Regulation, and issued a warning against further processing.

Full article: How to interpret Sweden’s first GDPR fine on facial recognition in school

Facial recognition in school renders Sweden’s first GDPR fine

The Swedish DPA has fined a municipality 200 000 SEK (approximately 20 000 euros) for using facial recognition technology to monitor the attendance of students in school.

A school in northern Sweden has conducted a pilot using facial recognition to keep track of students’ attendance in school.

Source: Facial recognition in school renders Sweden’s first GDPR fine

EU working group to harmonize sanctions

Sweden is entering as one of the chairmen of the EU working group to work for harmonization of sanctions according to the Data Protection Regulation, GDPR.

The guidelines for harmonized penalties within the EU are expected to be completed next year. The national inspection guidelines will be revised when the common EU guidelines have been adopted.

Source: The Data Inspectorate leads the EU working group on sanctions – the Data Inspectorate

Swedish DPA digs into Spotify’s responses to SARs

The Swedish data protection authority – Datainspektionen – had initiated a review of Spotify Technology S.A.’s responses to data subject access requests (SARs).

Investigation was initiated following a number of complaints regarding how Spotify manages data subject access requests (SARs). Article 15 of the General Data Protection Regulation (GDPR) provides individuals with right to access their data any company holds about them.

Swedish DPA noted that the information Spotify provided to users in response to a SAR is incomplete and not sufficiently clear. Therefore Datainspektionen asked Spotify to detail how it handles SARs, in particular, what information it provides, what information the copy of personal data includes, and how the information is presented to data subjects.

Source: Datainspektionen granskar rätten till registerutdrag

Data protection authorities in Sweden launch investigation into medical service providers

Sweden’s Data Protection Authority has divulged that it has opened investigations into medical service providers, Voice Integrate Nordic. The organisation is part of Vardguiden, the country’s phone-up medical information service.

Recent news reports allege that a high number of recorded phone calls received by Voice Integrate Nordic were placed in the public domain online and had become open to public access without protection through encryption or passwords.

Source: Data protection authorities in Sweden launch investigation into medical service providers

European Court of Human Rights to Reexamine Bulk Collection

On February 5, the European Court of Human Rights (ECtHR) announced that the Grand Chamber will reexamine two cases concerning bulk interception: the joined petitions of Big Brother Watch and Others v. United Kingdom, Bureau of Investigative Journalism and Alice Ross v. the United Kingdom, and 10 Human Rights Organisations v. the United Kingdom (collectively called “Big Brother Watch”), and Centrum för rättvisa v. Sweden (“Centrum”).

Source: European Court of Human Rights to Reexamine Bulk Collection

Google faces another GDPR probe

The Swedish Data Protection Authority (Datainspektionen) announced the investigation earlier this week.

The probe is the result of a complaint submitted in November by the Swedish Consumer Association (Sveriges Konsumenter) that is based on a report from the Norwegian Consumer Council (Forbrukerrådet) about Google’s use of dark patterns – which are user interface design choices that attempt to trick users into doing things they may not want to do.

That report criticised the “overwhelming amount of granular choices” on Google’s privacy dashboard, and the pop-ups trying to dissuade users from turning off (or, as Google says, “pausing”) location data.

Source: Google faces another GDPR probe – this time in the land of meatballs and flat-pack furniture

Sweden’s open society is clashing with EU privacy law, and regulators are frustrated

While the General Data Protection Regulation will this week come into effect across the European Union, some companies in Sweden have nothing to fear — for now at least — thanks to a peculiarity of Swedish free-expression law.

Source: Sweden’s open society is clashing with EU privacy law, and regulators are frustrated

Swedes Voice Data Fears After Facebook Scandal, Targeting Banks

In one of the world’s most digitally advanced corners, consumer groups are now demanding much better data protections against the financial industry.

“The big issue is privacy,” Jan Bertoft, the head of the Swedish Consumers’ Association, said in an interview. Right now, it even overshadows risks like “getting cheated and losing money,” he said.

Source: Swedes Voice Data Fears After Facebook Scandal, Targeting Banks – Bloomberg

>