Contacta con un DPO
Chat to a DPO

Categorie: Privacy

Home
Privacy
Read More
  Zandilli Lucien

The UK’s Children’s Code: Update for businesses processing children’s data

The ICO has provided recommended business practices for businesses processing children’s data in the UK, to ensure compliance with the UK’s Children’s Code.   The UK’s Children’s Code (also known as the Age-Appropriate Design Code) sets out key data protection requirements for online services that process children’s personal data. Enforced by the Information Commissioner’s Office
maart 13, 2025 Comments (0) Share
Read More
  Zandilli Lucien

Children’s Data Privacy Practices fuel investigations into various businesses

The UK’s ICO launched investigations into TikTok, Reddit, and Imgur over Children’s Data Privacy Practices. The UK’s Information Commissioner’s Office (ICO) has launched an investigation into the data privacy practices of TikTok, Reddit, and Imgur, focusing on how these platforms handle the personal information of children. The probe aims to determine whether these companies comply
maart 6, 2025 Comments (0) Share
Read More
  Zandilli Lucien

Pseudonymisation guidelines adopted by the EDPB, along with steps to enhance collaboration with competition authorities

The EDPB released new guidelines on pseudonymisation and a position paper on data protection and competition law to strengthen GDPR compliance. In January 2025, the European Data Protection Board (EDPB) made a significant regulatory announcement during its plenary meeting, by adopting new pseudonymisation guidelines, as well as issuing a position paper on the interplay between
februari 13, 2025 Comments (0) Share
Read More
  Zandilli Lucien

CNIL imposed a fine of €240,000 on KASPR for multiple GDPR violations

CNIL of France has imposed a fine of €240,000 on KASPR for multiple GDPR violations linked to the unlawful collection and retention of personal data.  KASPR, a company offering a Chrome extension to extract professional contact details from LinkedIn and other online sources, has faced regulatory action for its practices. Through its database of approximately
januari 30, 2025 Comments (0) Share
Read More
  Zandilli Lucien

Draft Measures for the Certification of the Protection of Personal Information Exported Abroad published by China’s CAC

The Cyberspace Administration of China (CAC) released the draft Measures for Cross-Border Data Transfer which clarify Personal Information Protection Certification.   On January 3, 2025, the Cyberspace Administration of China (CAC) released a draft document titled “Measures for the Certification of the Protection of Personal Information Exported Abroad” (hereinafter, draft measures). These measures, comprising 20
januari 16, 2025 Comments (0) Share
Read More
  Zandilli Lucien

A year of Data Protection Law: 2024 review

Throughout this year, the EU and the UK have experienced several notable developments in data protection. In this article, we will highlight some of the key milestones of 2024.   The year began with an ever relevant reminder, advising UK organisations on the transfer of personal data to the US under the UK GDPR, stressing
december 19, 2024 Comments (0) Share
Read More
  Zandilli Lucien

A Polish catering company was fined €54,600 for a data breach after an employee lost a flash drive with sensitive data.

A Polish catering company was fined €54,600 for failing to protect personal data after an employee lost a flash drive containing sensitive information, revealing vulnerabilities in the company’s data security. The Polish Data Protection Authority (UODO) recently fined Res-Gastro M. Gaweł Sp. k., a catering company in Kolbuszowa, Poland, €54,600 for failing to implement adequate
december 5, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Using AI in recruitment: Recommendations for business owners

The ICO has published recommendations for business owners on using AI in recruitment processes lawfully and ethically.   Artificial intelligence (AI) is transforming recruitment by saving time and improving efficiency for businesses of various sizes and across industries. Businesses are using AI tools to source potential candidates, summarize CVs, as well as score applicants. However,
november 21, 2024 Comments (0) Share
Read More
  Zandilli Lucien

ePrivacy Directive Article 5(3): Device Tracking and User Consent

Understanding Article 5(3) of the ePrivacy Directive and its Implications on Device Tracking and User Consent   The ePrivacy Directive, specifically Article 5(3), restricts the storage and access of information on users’ devices without their consent, except under specific conditions. This legislation plays a crucial role in protecting users from unauthorized storage and access to
oktober 31, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Legitimate interest as a legal basis: Guidance from the EDPB

Controllers must ensure necessary, proportionate, processing which respects the rights of data subjects, ensuring GDPR compliance.   When processing personal data under the General Data Protection Regulation (GDPR), controllers must ensure that their actions are lawful. Specifically, if relying on Article 6(1)(f) of the GDPR, the processing must be based on a legitimate interest. This
oktober 24, 2024 Comments (0) Share