Free tools and resources for Data Protection Officers!

Category Archives for "Other"

GDPR investigation begins after a filmmaker’s name is misspelt

The Irish Data Protection Commission (IDPC) is looking into a potential breach of GDPR standards, after a filmmaker filed an official complaint for the misspelling of his name.

The director at the centre of what may be a landmark case, Ciarán Ó Cofaigh, claims the EU’s new data laws provision individuals with the legal right to have their name correctly spelt.

Source: GDPR investigation begins after a filmmaker’s name is misspelt

EU DPAs urged to act against online ad auctions

Panoptykon Foundation, the Warsaw based digital rights organization, has joined in the complaints filed in the UK and Ireland in September by Jim Killock of the Open Rights Group, Michael Veale of University College London, and Dr Johnny Ryan of Brave.

Together, the complainants in Ireland, Poland, and the UK, have also filed new evidence today with the national data protection authorities of Ireland, Poland, and the United Kingdom, that reveals how ad auction companies, including Google, unlawfully profile Internet users’ religious beliefs, ethnicities, diseases, disabilities, and sexual orientation.

Full article: Update on GDPR complaint (RTB ad auctions)

ICO to investigate Google over GDPR violations

The Information Commissioner’s Office (ICO) is looking into whether Google has violated the General Data Protection Regulation (GDPR).

The UK’s data watchdog said it is working with other regulators around Europe to consider its next possible steps after a number of complaints had been raised.

Source: ICO to investigate Google over GDPR violations | IT PRO

Facebook Faces 7 Data Probes from Irish Watchdog

Facebook Inc. faces seven separate data-protection probes in Ireland as the country’s privacy regulator looks to take advantage of new rules that allow it to impose hefty fines.

The investigations are among 16 cases targeting big technology companies including Twitter Inc., Apple Inc., LinkedIn Corp., and also Facebook’s WhatsApp and Instagram.

Source: Facebook Faces 7 Data Probes as Irish Watchdog Gets Tough – Bloomberg

Learning from Google’s record-setting GDPR fine

With the French Data Protection Authority (CNIL) disclosing on January 21 st a 50 million euro fine against Google LLC, we now have a precedent against which to evaluate the impact and reach of GDPR enforcement.

This is significant as, with this precedent, we can determine some of the factors a Data Protection Authority (DPA) will use in assessing the extent of a given violation.

Full article: Learning from Google’s record-setting GDPR fine

EU Data Protection Board not happy with EU-US Privacy Shield second review

On December 19, the EU Commission released its report on the second review of the EU-US Privacy Shield arrangement, the mechanism that allows for the transfer of data between the EU and the US. Overall, the Commission fins that the US authorities has taken steps to improve the functioning of the framework.

On January 24, the EU Data Protection Board gathering all EU data protection authorities announced that due to substantial shortcomings, the EU-US Privacy Shield risk could be struck down by the European Court of Justice later this year.

Source: EU-US Privacy Shield second review: “it’s mostly fine” says the Commission, “not really” replies the EU Data Protection Board

Google faces another GDPR probe

The Swedish Data Protection Authority (Datainspektionen) announced the investigation earlier this week.

The probe is the result of a complaint submitted in November by the Swedish Consumer Association (Sveriges Konsumenter) that is based on a report from the Norwegian Consumer Council (Forbrukerrådet) about Google’s use of dark patterns – which are user interface design choices that attempt to trick users into doing things they may not want to do.

That report criticised the “overwhelming amount of granular choices” on Google’s privacy dashboard, and the pop-ups trying to dissuade users from turning off (or, as Google says, “pausing”) location data.

Source: Google faces another GDPR probe – this time in the land of meatballs and flat-pack furniture