Loading

Tag: CNIL

Tag: CNIL
Page 2

Processing of health data by complementary health insurance providers: CNIL calls for further clarification

CNIL calls for clarification regarding the processing of health data by complementary health insurance providers in the face of several complaints.   CNIL calls for clarification regarding which conditions under which complementary health insurance providers are allowed to collect health data, after receiving several complaints regarding the legality of these insurance providers receiving data generated

Unaddressed formal notice results in maximum fine imposed by CNIL

AI company Clearview received the maximum fine imposed by CNIL, totalling 20 million euros, after a formal notice was left unaddressed.   A formal notice from the CNIL giving Clearview AI two months to comply with various injunctions in November 2021 was left unattended, the Authority has decided to impose a maximum fine of €20

Token access authentication guidelines from CNIL

CNIL has recently published token access authentication guidelines for online services.    Using token authentication allows users to access an online service, program, or website without having to re-enter their login information. With this kind of authentication, the user can access his online resources as long as the access token remains in use. This lowers

The risks associated with geolocation data: an assessment by LINC, CNIL

The “Laboratoire d’Innovation Numerique de la CNIL” or LINC in France has been assessing the risks associated with geolocation data.    France’s digital innovation laboratory, known as “Laboratoire d’Innovation Numerique de la CNIL ” or  LINC secured a geolocation database from a data broker which was supposedly anonymized. The purpose of this was to test

Facebook cookie injunction has been dropped

CNIL has recently lifted an injunction placed on Facebook last December, regarding the company’s use of cookies.     Last December, CNIL ordered Facebook Ireland Limited to allow the use of facebook.com by users in France, in a manner that allows these users to refuse having cookies deposited on their device, just as easily as they

Cybersecurity guide published by CNIL of France

The CNIL, in collaboration with the French government, has recently published a cybersecurity guide for French municipalities.    In recent times, cybersecurity has posed major difficulties for several communities in France. As a result, a study was conducted by Cybermalveillance.gouv.fr, a government-sponsored cybersecurity initiative, toward the end of 2021. This study was focused on communities

Data sharing for charities: guidance from CNIL

CNIL recently published guidance relating to data sharing for charities for the purposes of prospecting.   CNIL recently published guidance relating to data sharing for charities for the purposes of prospecting. According to CNIL, these guidelines are geared towards any association or foundation appealing to the generosity of the public to receive donations, which wishes

Google Analytics custom features do not make transfers legal, according to CNIL

CNIL has announced that even with the use of Google Analytics custom features, transfers are still not legal.    CNIL recently announced that even with the use of Google Analytics custom features, transfers are still not legal in the absence of a transfer deal between Europe and the US. This announcement was added in the

Cookie assessment criteria published by the CNIL of France

The CNIL of France has published a cookie assessment criteria guide to aid businesses in determining the validity of cookies and other tracers.    The CNIL has published guidelines on the use of cookies and other tracers, which initially prohibited cookie walls as they were seen as a violation of the principle of free consent.

Recorded telephone conversations for the establishment of a contract

CNIL has published guidance on the establishment of contacts via recorded telephone conversations.    In the establishment of a contract, it is sometimes necessary to record a telephone conversation as proof of the formation of the contract. Under the law, this is permitted where necessary. Therefore, in order for an organisation  to lawfully record telephone