Contacta con un DPO
Chat to a DPO

Category: GDPR

Home
GDPR
Read More
  Zandilli Lucien

A year of Data Protection Law: 2024 review

Throughout this year, the EU and the UK have experienced several notable developments in data protection. In this article, we will highlight some of the key milestones of 2024.   The year began with an ever relevant reminder, advising UK organisations on the transfer of personal data to the US under the UK GDPR, stressing
December 19, 2024 Comments (0) Share
Read More
  Zandilli Lucien

A Polish catering company was fined €54,600 for a data breach after an employee lost a flash drive with sensitive data.

A Polish catering company was fined €54,600 for failing to protect personal data after an employee lost a flash drive containing sensitive information, revealing vulnerabilities in the company’s data security. The Polish Data Protection Authority (UODO) recently fined Res-Gastro M. Gaweł Sp. k., a catering company in Kolbuszowa, Poland, €54,600 for failing to implement adequate
December 5, 2024 Comments (0) Share
Read More
  Maratum

Aphaia participates in the event organised by NAIR Center about AI and society in Pamplona

Aphaia’s Managing Partner Cristina Contero Almagro offered a presentation about the Future and Regulation of Artificial Intelligence in Spain at the “AI and Society: Challenges and Opportunities” event organised by NAIR Center in Pamplona on 21st November.   On 21st November, Pamplona became the center of critical discussions about the intersection of artificial intelligence (AI)
November 29, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Using AI in recruitment: Recommendations for business owners

The ICO has published recommendations for business owners on using AI in recruitment processes lawfully and ethically.   Artificial intelligence (AI) is transforming recruitment by saving time and improving efficiency for businesses of various sizes and across industries. Businesses are using AI tools to source potential candidates, summarize CVs, as well as score applicants. However,
November 21, 2024 Comments (0) Share
Read More
  cristinac

Aphaia offers a presentation about the Gigabit Infrastructure Act at FOAN 2024

Aphaia’s Managing Partner Cristina Contero Almagro offered a presentation about the new Gigabit Infrastructure Act at the 12th International Workshop on Fiber Optics in Access Networks (FOAN), which took place in Athens on 29 and 30 October.   The new Gigabit Infrastructure Act (GIA) entered into force in May 2024 and will be applicable in November 2025.
November 7, 2024 Comments (0) Share
Read More
  Zandilli Lucien

ePrivacy Directive Article 5(3): Device Tracking and User Consent

Understanding Article 5(3) of the ePrivacy Directive and its Implications on Device Tracking and User Consent   The ePrivacy Directive, specifically Article 5(3), restricts the storage and access of information on users’ devices without their consent, except under specific conditions. This legislation plays a crucial role in protecting users from unauthorized storage and access to
October 31, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Legitimate interest as a legal basis: Guidance from the EDPB

Controllers must ensure necessary, proportionate, processing which respects the rights of data subjects, ensuring GDPR compliance.   When processing personal data under the General Data Protection Regulation (GDPR), controllers must ensure that their actions are lawful. Specifically, if relying on Article 6(1)(f) of the GDPR, the processing must be based on a legitimate interest. This
October 24, 2024 Comments (0) Share
Read More
  Zandilli Lucien

CNIL fined Cegedim Santé €800,000 for unlawful processing of sensitive health data

CNIL imposed a €800,000 fine on Cegedim Santé for the unauthorized and unlawful processing of sensitive health data.   In 2021, Cegedim Santé, a company specializing in management software for general practitioners and health centers, came under scrutiny from the French data protection authority, CNIL. The company provides software to around 25,000 medical practices and
September 26, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Clearview AI faces a punishment from Dutch DPA for Illegal Facial Recognition Data Collection

Clearview AI faces a punishment of 30.5 million euros from the Dutch DPA for Illegal Facial Recognition Data Collection.   Clearview AI faces a punishment of 30.5 million euros from the Dutch Data Protection Authority (AP) and up to 5 million euros in penalty payments. The US based company provides services using its facial recognition
September 5, 2024 Comments (0) Share
Read More
  Zandilli Lucien

EU AI Act Enforcement Overview

Penalties will be imposed by Member States under the EU AI Act, with the support of various authorities and bodies including an AI Board, AI Office, Advisory Forum and Scientific Panel.    The EU AI Act establishes a comprehensive framework for regulating Artificial Intelligence (AI) in the European Union. The regulation aims to ensure that
August 1, 2024 Comments (0) Share