fbpx

Download free GDPR compliance checklist!

Category Archives for "Other"

Belgian DPA imposes €50,000 Fine on Family Service

The Belgian DPA has imposed a fine of 50,000 euro on the company Family Service for various breaches of the GDPR.

Family Service is a marketing company that distributes “pink boxes” that include samples, special offers and information sheets for future parents. DPA found that the company was renting and/or selling personal data for commercial purposes. However, these practices were not indicated in the communication to customers in a clear and comprehensible manner.

Source: Belgian DPA imposes €50,000 Fine on Family Service

Epsilon agrees to pay $150m fine to DoJ for selling data to fraudsters

Marketing company Epsilon Data Management has agreed a $150m settlement with the United States’ Department of Justice (DoJ) to resolve a criminal charge for selling data on more than 30 million Americans to perpetrators of fraud schemes who were targeting older people.

The deferred prosecution agreement (DPA) includes Epsilon selecting and covering the costs of an independent claims administrator to distribute $127.5m compensation to victims with established losses caused by fraud schemes which used the company’s data.

Source: Epsilon agrees to pay $150m fine to DoJ for selling data to fraudsters

EU and UK discuss state of play for UK adequacy, data transfers

Bruno Gencarelli of European Commission indicated the process for UK adequacy is moving forward at this very moment. “Our intention is to launch the decision in the coming weeks,” Gencarelli said, though, he pointed out the decision “is not completely in our hands.”

As part of the proceedings, the commission will share the draft decisions (one for the EU General Data Protection Regulation, the other for the Law Enforcement Directive) with the European Data Protection Board — the group of 27 EU data protection authorities. Once the EDPB issues its opinion, it then goes through the EU’s comitology procedure. Gencarelli explained this means the draft decision would go to representatives from the 27 member state governments for majority approval. Finally, an approved decision would then go to the College of Commissioners of the European Commission.

Source: Government leaders discuss state of play for UK adequacy, data transfers

Italy tells TikTok to block users after death of young girl

The Italian data privacy watchdog ordered video app TikTok on Friday to block the accounts of any users in Italy whose age it could not verify following the death of a 10-year-old girl who had been using the Chinese-owned app.

In a statement, the regulator said that although TikTok had committed to ban registration for children aged under 13, it was nonetheless easy to circumvent this rule. As a result, it said TikTok had to block unverified user accounts until at least Feb. 15 awaiting further information.

Source: Italy tells TikTok to block users after death of young girl | Reuters

WhatsApp facing up to €50M privacy fine

As part of Ireland’s draft findings, the WhatsApp could be fined between €30 million and €50 million for not living up to transparency requirements under Europe’s privacy regime. Company could also be required to change how it handles its users’ data,

The preliminary penalty — the figure is now under consultation with the bloc’s other data protection agencies — would be one of the largest-ever fines under the EU’s General Data Protection Regulation, a set of privacy rules that came into force in 2018.

Source: WhatsApp facing up to €50M privacy fine – POLITICO

UK regulator to write to WhatsApp over Facebook data sharing

The UK’s data regulator is writing to WhatsApp to demand that the chat app does not hand user data to Facebook, as millions worldwide continue to sign up for alternatives such as Signal and Telegram to avoid forthcoming changes to its terms of service.

Elizabeth Denham, the information commissioner, told a parliamentary committee that in 2017, WhatsApp had committed not to hand any user information over to Facebook until it could prove that doing so respected GDPR.

Source: UK regulator to write to WhatsApp over Facebook data sharing | WhatsApp | The Guardian

Facebook Gives FBI Private Messages Of Users Discussing Capitol Hill Riot

Despite attempts to play down the use of Facebook amongst Capitol Hill rioters, the social media giant is furnishing the feds with data on users who took part in the siege, including their private messages, after calls from lawmakers to do so.

In a criminal complaint filed against New York resident Christopher M. Kelly on Wednesday, a search warrant on his Facebook account was revealed. After being tipped off about Facebook posts from an account belonging to Kelly containing images of him at the storming of the U.S. Capitol on January 6, the FBI sought his private messages, as well as his linked IP address, phone number and Gmail address.

Source: Facebook Gives FBI Private Messages Of Users Discussing Capitol Hill Riot

Brussels zeroes in on Google’s adtech business

Brussels is not done with Google and has added the advertising technology at the heart of the search giant’s business model to its long list of concerns.

After slapping the U.S. search giant with fines exceeding €8 billion in three antitrust cases, the European Commission is now running two more investigations into Google. The first focuses on how the U.S. company gathers and uses data and the second one on how it behaves in the advertising business. The second case focuses on Brussels’ investigation into “Google’s practices in the advertising technology (“ad tech”) value chain, and its position in relation to advertisers, publishers and intermediaries, and competitors in search advertising, display advertising and ad tech services,” the document continues.

Source: Brussels zeroes in on Google’s adtech business – POLITICO

EUR 272.5m in fines imposed by European regulators under GDPR 

EUR 272.5 million of fines have been imposed for a wide range of infringements of Europe’s tough data protection laws according to international law firm DLA Piper.

EUR 158.5 million of fines imposed since 28 January 2020, a 39% increase on the previous 20 month period since the application of GDPR. Italy has imposed the highest aggregate fines with France imposing the highest individual fine to date. However, several multi-million euro fines have been successfully appealed or significantly reduced.

Source: EUR272.5m in fines imposed by European regulators under GDPR – Survey by international law firm DLA Piper | News | DLA Piper Global Law Firm

Confusion over WhatsApp’s new T&Cs triggers privacy warning from Italy

Confusion over an update to Facebook-owned chat platform WhatsApp’s terms and conditions has triggered an intervention by Italy’s data protection agency.

The Italian DPA said today it has contacted the European Data Protection Board (EDPB) to raise concerns about a lack of clear information over what’s changing under the incoming T&Cs.

In recent weeks WhatsApp has been alerting users they must accept new T&Cs in order to keep using the service after February 8.

Source: Confusion over WhatsApp’s new T&Cs triggers privacy warning from Italy | TechCrunch

>