Chat to a DPO
Chat to a DPO

Tag: AEPD

Home
Tag: AEPD
Read More
  Zandilli Lucien

Recommendations on the development of AI systems from European DPAs

DPAs across Europe have provided useful recommendations for organisations involved in the development and deployment of AI systems, aiding these organisations to remain in compliance with the GDPR and other regulations applicable to AI systems.    The French data protection authority, CNIL recently published its first recommendations on the development of AI systems. These recommendations
May 2, 2024 Comments (0) Share
Read More
  Zandilli Lucien

“¿Pagar o aceptar?”: ¿Invalida el consentimiento este nuevo modelo de suscripción de pago?

La validez del consentimiento bajo el RGPD en lo que respecta al modelo de suscripción de pago “Pagar o aceptar” en las plataformas de redes sociales y otras páginas web ha despertado numerosos debates.   Desde el pasado 7 de noviembre, los usuarios europeos de Facebook e Instagram han tenido la opción de pagar una
February 15, 2024 Comments (0) Share
Read More
  Zandilli Lucien

”Pay or ok” — Does this new paid subscription model invalidate consent?

There has been much debate about the validity of consent under the GDPR as it relates to the “Pay or ok” paid subscription model on social media and other platforms and websites.   Since November 7, European users of Facebook and Instagram have had the option to pay a subscription in exchange for an ad-free
February 15, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Guidance on anonymisation from AEPD

AEPD has recently published guidelines on anonymisation.   The AEPD has recently published guidance on anonymisation of data according to the principles of the GDPR. The process of anonymisation generates a new set of anonymous information from a set of personal data.  This process must comply with the principles of the GDPR including accountability. A
February 28, 2023 Comments (0) Share
Read More
  Zandilli Lucien

Brecha Advisory tool launched by AEPD

The AEPD has launched the Brecha Advisory tool to facilitate compliance with data protection laws by data controllers and processors.   The AEPD has launched the Brecha Advisory tool, which is intended to guide the application of the Spanish data protection legislation to facilitate compliance by data controllers and processors. This tool provides advice on
November 10, 2022 Comments (0) Share
Read More
  cristinac

The AEPD releases guidance on biometric data and GDPR

The AEPD has released guidance on biometric data to help controllers to securely process this data pursuant to the GDPR. Biometric data may have a significant degree of intrusiveness on the privacy of individuals and, if not properly processed, it may also involve high risks to their rights and freedoms. According to the AEPD, elements
August 23, 2022 Comments (0) Share
Read More
  Zandilli Lucien

Google was fined by the AEPD and ordered to come into compliance after Lumen Project data transfers

Google was fined by the AEPD and ordered to come into compliance after  GDPR violations relating to Lumen Project data transfers.    The AEPD has issued a decision in the case against Google LLC, which states that the company has committed two very serious GDPR violations. The Spanish Data Protection Agency decided to impose a
May 24, 2022 Comments (0) Share
Read More
  Zandilli Lucien

Protection of health data: new section on AEPD website

The AEPD has launched a new section on its website containing information and resources specific to the protection of health data.   The Spanish Agency for Data Protection (AEPD) recently published a new web space in the Areas of Interest section on its website, to facilitate consultation and disseminate information on the processing of health
May 10, 2022 Comments (0) Share
Read More
  Zandilli Lucien

Encryption Keys and privacy: AEPD discusses how keys may be considered personal data

Encryption keys and privacy explored by the AEPD, and why some encryption keys may be considered personal data.       Encryption keys and privacy go hand in hand, and  have proven to be extremely useful in the online world. However some can be considered personal data under the GDPR, and must be treated as
December 7, 2021 Comments (0) Share
Read More
  Zandilli Lucien

AEPD fines EDP Comercializadora, S.A.U 1.5 million euros

AEPD fines EDP Comercializadora, S.A.U 1.5 million euros for two violations of the GDPR.    EDP Comercializadora, S.A.U, an electricity service provider in Spain has been fined for two violations of the GDPR. The company was found to lack sufficient technical and organizational measures to verify whether someone signing up for its services on behalf
June 1, 2021 Comments (0) Share