fbpx

Download free GDPR compliance checklist!

Category Archives for "Other"

EU regulator warns Europol could be breaking data rules

Law enforcement agency Europol is likely to have mishandled troves of personal data in breach of the agency’s own rules, according to the data protection agency in charge of policing EU institutions.

In a letter dated September 17 — of which a redacted version was made public, which POLITICO saw in full — the European Data Protection Supervisor (EDPS) said there was a “high likelihood that Europol continually processes personal data on individuals for whom it is not allowed to do so.”

Source: EU regulator warns Europol could be breaking data rules – POLITICO

ICO probes Klarna after newsletter emailed to customers in error

Klarna, a Swedish provider of payment solutions, surprised some UK consumers this week when it mistakenly sent a marketing email to people who had not opted in to receive the weekly newsletter.

Klarna, a Swedish provider of payment solutions, mistakenly sent a marketing email to people who had not opted in to receive the weekly newsletter. And the ICO had received more than 90 complaints from members of the public.

Source: ICO probes Klarna after newsletter emailed to customers in error – PrivSec Report

EU regulators draw up ‘hit list’ of tech giants to share data with small rivals

European Union regulators have reportedly drawn up a “hit list” of around 20 tech giants, potentially including Facebook, Apple and Google.

The internet platforms will be hit with tougher regulations than their smaller rivals under the new rules. They will be forced to share data with competitors and be more transparent on how they gather information. he list will be drawn up based on market share and number of users.

Source: EU regulators draw up ‘hit list’ of tech giants to share data with small rivals : CityAM

UK government under pressure to prove data adequacy to EU

The UK government is coming under increasing pressure to convince Brussels regulators that the country’s data protection landscape is fit for EU personal data, amid wider concerns that UK surveillance practices compromise the security of EU standards.

On 13 October the UK’s upper chamber, the House of Lords, published a report on the future relationship between the UK and the EU in the business world, highlighting their worry that “there is a possibility that the Commission may not grant the UK a data adequacy decision,” for data transfers from the bloc after the Brexit transition period concludes at the end of the year.

“We call on the Government to push for the assessment to be concluded as soon as possible, to give businesses in the UK and EU legal certainty and time to prepare,” the Lords’ report added.

Source: UK government under pressure to prove data adequacy to EU – EURACTIV.com

Cambridge Analytica models were exaggerated and ineffective, ICO claims

The UK’s data regulator has ended its investigation into the infamous Cambridge Analytica scandal, declaring that the models and techniques used by the now-defunct data processing company were exaggerated and likely inaccurate.

Writing to the chair of parliament’s digital, culture, media and sport committee Julian Knight, the Information Commissioner Elizabeth Denham has also reiterated that its ongoing investigation into data abuse rendered no further evidence to warrant any further action.

Source: Cambridge Analytica models were exaggerated and ineffective, ICO claims | IT PRO

Fashion chain H&M fined $35m for snooping on employees

Fashion chain H&M has been fined $35million for data protection breaches, including recording and sharing private information about hundreds of employees among managers.

Hamburg’s data protection commissioner said the company collected private information about employees at a customer service in Nuremberg.

After absences, such as vacations and sick leave, supervisors would conduct “welcome back talks” with members of staff. The data protection commissioner said: “After these talks, in many cases not only the employees’ concrete vacation experiences were recorded, but also symptoms of illness and diagnoses.

Source: Fashion chain H&M fined $35m for snooping on employees

Former CEO of Cambridge Analytica banned from holding directorships until 2027

The former CEO of Cambridge Analytica has been banned from holding directorships until 2027. Alexander Nix admitted to a “lack of commercial probity” and agreed to an undertaking prohibiting him from owning limited companies for seven years.

Alexander Nix admitted to a “lack of commercial probity” and agreed to an undertaking prohibiting him from owning limited companies for seven years.

Source: Former CEO of Cambridge Analytica banned from holding directorships until 2027

U.S. Department of Commerce Releases White Paper to Assist Organizations in Conducting Schrems II Assessments

The U.S. Department of Commerce published a white paper to assist organizations in conducting independent analyses of data transfers in light of the July 16, 2020 Data Protection Commissioner v. Facebook Ireland and Maximillian Schrems, Case C-311/18 (Schrems II) decision by the Court of Justice of the European Union (CJEU) and, ultimately, in making the case for transferring personal data to the United States using EU-approved transfer mechanisms.

The white paper outlines privacy safeguards relating to government access to data provided by U.S. law, focusing on those that are relevant to the issues that appear to have concerned the CJEU in Schrems II.

Source: U.S. Department of Commerce Releases White Paper to Assist Organizations in Conducting Schrems II Assessments | Alston & Bird Privacy Blog

Tech giants are ignoring questions over the legality of their EU-US data transfers

A survey of responses from more than 30 companies to questions about how they’re approaching EU-U.S. data transfers in the wake of a landmark ruling (aka Schrems II) by Europe’s top court in July, which struck down the flagship Privacy Shield over U.S. surveillance overreach, suggests most are doing the equivalent of burying their head in the sand and hoping the legal nightmare goes away.

Responses provided by companies that did respond appear to raise many more questions than they answer — with lots of question-dodging “boilerplate responses” in evidence and/or pointing to existing privacy policies in the hope that will make the questioner go away

Full article: Tech giants are ignoring questions over the legality of their EU-US data transfers | TechCrunch

Facebook denies it will pull service in Europe over data transfer ban

Facebook’s head of global policy has denied the tech giant could close its service to Europeans if local regulators order it to suspend data transfers to the U.S. following a landmark Court of Justice ruling in July that has cemented the schism between U.S. surveillance laws and EU privacy rights.

However, he also warned of “profound effects” on scores of digital businesses if a way is not found by lawmakers on both sides of the pond to resolve the legal uncertainty around U.S. data transfers — making a pitch to politicians to come up with a new legal “sticking plaster” for EU-U.S. data transfers now that a flagship arrangement, called Privacy Shield, is dead.

Source: Facebook denies it will pull service in Europe over data transfer ban | TechCrunch

1 2 3 95
>