Loading

Tag: AEPD

Tag: AEPD

Guidance on the Use of Wi-Fi Tracking Technology

The AEPD has published guidance on the use of wi-fi technology in compliance with the GDPR.    In a collaborative effort to address the growing concerns surrounding Wi-Fi tracking technology, the Spanish Data Protection Agency (AEPD), in conjunction with the Catalan Data Protection Authority, the Basque Data Protection Authority, and the Transparency and Data Protection

Recommendations on the development of AI systems from European DPAs

DPAs across Europe have provided useful recommendations for organisations involved in the development and deployment of AI systems, aiding these organisations to remain in compliance with the GDPR and other regulations applicable to AI systems.    The French data protection authority, CNIL recently published its first recommendations on the development of AI systems. These recommendations

”Pay or ok” — Does this new paid subscription model invalidate consent?

There has been much debate about the validity of consent under the GDPR as it relates to the “Pay or ok” paid subscription model on social media and other platforms and websites.   Since November 7, European users of Facebook and Instagram have had the option to pay a subscription in exchange for an ad-free

Guidance on anonymisation from AEPD

AEPD has recently published guidelines on anonymisation.   The AEPD has recently published guidance on anonymisation of data according to the principles of the GDPR. The process of anonymisation generates a new set of anonymous information from a set of personal data.  This process must comply with the principles of the GDPR including accountability. A

Brecha Advisory tool launched by AEPD

The AEPD has launched the Brecha Advisory tool to facilitate compliance with data protection laws by data controllers and processors.   The AEPD has launched the Brecha Advisory tool, which is intended to guide the application of the Spanish data protection legislation to facilitate compliance by data controllers and processors. This tool provides advice on

The AEPD releases guidance on biometric data and GDPR

The AEPD has released guidance on biometric data to help controllers to securely process this data pursuant to the GDPR. Biometric data may have a significant degree of intrusiveness on the privacy of individuals and, if not properly processed, it may also involve high risks to their rights and freedoms. According to the AEPD, elements

Google was fined by the AEPD and ordered to come into compliance after Lumen Project data transfers

Google was fined by the AEPD and ordered to come into compliance after  GDPR violations relating to Lumen Project data transfers.    The AEPD has issued a decision in the case against Google LLC, which states that the company has committed two very serious GDPR violations. The Spanish Data Protection Agency decided to impose a

Protection of health data: new section on AEPD website

The AEPD has launched a new section on its website containing information and resources specific to the protection of health data.   The Spanish Agency for Data Protection (AEPD) recently published a new web space in the Areas of Interest section on its website, to facilitate consultation and disseminate information on the processing of health

Encryption Keys and privacy: AEPD discusses how keys may be considered personal data

Encryption keys and privacy explored by the AEPD, and why some encryption keys may be considered personal data.       Encryption keys and privacy go hand in hand, and  have proven to be extremely useful in the online world. However some can be considered personal data under the GDPR, and must be treated as

AEPD fines EDP Comercializadora, S.A.U 1.5 million euros

AEPD fines EDP Comercializadora, S.A.U 1.5 million euros for two violations of the GDPR.    EDP Comercializadora, S.A.U, an electricity service provider in Spain has been fined for two violations of the GDPR. The company was found to lack sufficient technical and organizational measures to verify whether someone signing up for its services on behalf