Chat to a DPO
Chat to a DPO

cristinac

Home
Author: cristinac
Page 2
Read More
  cristinac

Telephone marketing rules post-Brexit

Many UK businesses are planning to shift to telephone marketing. In this blog we go through the requirements that should be met in order to do it in compliance with the ePrivacy rules. UK businesses are no longer clearly protected by ePrivacy country of origin rule when marketing directly in EU countries, so many of
February 26, 2021 Comments (0) Share
Read More
  cristinac

Spanish DPA AEPD publishes Guidelines on AI audits

AEPD, the Spanish data protection authority, has published Guidelines on the requirements that should be implemented for conducting audits of data processing activities that embed AI. Early this month, the Spanish DPA, AEPD, published Guidelines on the requirements that should be considered when undertaking audits of personal data processing activities which involve AI elements. The
January 15, 2021 Comments (0) Share
Read More
  cristinac

Draft of new Standard Contractual Clauses published by the European Commission

On 12 November 2020, the European Commission published a draft Implementing Decision on new Standard Contractual Clauses for the transfer of personal data to third countries. The CJEU judgement in the Schrems II case has brought to light some deficiencies in the current guarantees applied to international data transfers. Apart from invalidating the Privacy Shield,
December 4, 2020 Comments (0) Share
Read More
  cristinac

Brain implants and AI ethics

The risks derived from the use of AI in brain implants may trigger the need for AI Ethics regulation soon.  In our last vlog we talked about the interaction between brain implants and GDPR. In this second part we will explore how AI Ethics applies to brain implants.  How is AI used in brain implants?
November 23, 2020 Comments (0) Share
Read More
  cristinac

Second European AI Alliance Assembly overview

The second European AI Alliance Assembly was hosted online due to the COVID-19 pandemic, on Friday 9th October. The second edition of the European AI Alliance Assembly took place last Friday 9th in a full day event which was hosted online due to the COVID-19 pandemic. The Assembly gathered together more than 1,400 viewers who
October 21, 2020 Comments (0) Share
Read More
  cristinac

EDPB Guidelines on the targeting of social media users overview

On 2nd September, the EDPB adopted their Guidelines 8/2020 on the targeting of social media users, which aim to clarify the implications that these practices may have on privacy and data protection. Most social media platforms allow their users to manage their privacy preferences by enabling the option to make their profiles public or private.
October 7, 2020 Comments (0) Share
Read More
  cristinac

Joint controllership: key considerations by the EDPB

The EDPB provides key considerations to clarify the concepts of processor, controller and joint controller in their Guidelines 07/2020. The European Data Protection Board (EDPB) published their Guidelines 07/2020 on the concepts of controller and processor in the GDPR on 7th September, which aim to offer a precise meaning of these concepts and a criteria
October 2, 2020 Comments (0) Share
Read More
  cristinac

EU-US Privacy Shield invalidation business implications follow-up

Since the Court of Justice of the European Union (CJEU) invalidated the EU-US Privacy Shield in their Schrems II judgement delivered two weeks ago, many questions have arisen around international data transfers to the US. After the invalidation of the EU-US Privacy Shield by the CJEU two weeks ago, as reported by Aphaia, data transfers
August 7, 2020 Comments (0) Share
Read More
  cristinac

Assessment List for Trustworthy Artificial Intelligence Overview.

Early this month the High-Level Expert Group on Artificial Intelligence (AI HLEG) presented their final Assessment List for Trustworthy Artificial Intelligence. As reported in our blog, the piloting process of the Ethics Guidelines for Trustworthy AI was launched in the first EU AI Alliance Assembly, which took place on 26th June 2019. The results have
July 31, 2020 Comments (0) Share
Read More
  cristinac

EU-US Privacy Shield invalidation business implications

On 16th July, the Court of Justice of the EU delivered a ruling in the case known as Schrems II by which it invalidated EU-US Privacy Shield and confirmed the validity of Standard Contractual Clauses, with caveats. After the CJEU’s Advocate General Henrik Saugmandsgaardøe published his opinion in the so-called ‘Schrems II’ in January, now the CJEU
July 22, 2020 Comments (0) Share