Contacta con un DPO
Chat to a DPO

Tag: Compliance

Home
Tag: Compliance
Read More
  Zandilli Lucien

A year of Data Protection Law: 2024 review

Throughout this year, the EU and the UK have experienced several notable developments in data protection. In this article, we will highlight some of the key milestones of 2024.   The year began with an ever relevant reminder, advising UK organisations on the transfer of personal data to the US under the UK GDPR, stressing
December 19, 2024 Comments (0) Share
Read More
  Zandilli Lucien

A Polish catering company was fined €54,600 for a data breach after an employee lost a flash drive with sensitive data.

A Polish catering company was fined €54,600 for failing to protect personal data after an employee lost a flash drive containing sensitive information, revealing vulnerabilities in the company’s data security. The Polish Data Protection Authority (UODO) recently fined Res-Gastro M. Gaweł Sp. k., a catering company in Kolbuszowa, Poland, €54,600 for failing to implement adequate
December 5, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Using AI in recruitment: Recommendations for business owners

The ICO has published recommendations for business owners on using AI in recruitment processes lawfully and ethically.   Artificial intelligence (AI) is transforming recruitment by saving time and improving efficiency for businesses of various sizes and across industries. Businesses are using AI tools to source potential candidates, summarize CVs, as well as score applicants. However,
November 21, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Cyber Resilience Act: EU Council and Parliament Approve New Cybersecurity Standards for Digital Products

EU Council and EU Parliament enhance cybersecurity for digital products with the Cyber Resilience Act, ensuring connected devices are secure before entering the market.   The European Union has taken a major step forward in enhancing cybersecurity for digital products with the adoption of the Cyber Resilience Act by the EU Council and EU Parliament.
November 14, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Legitimate interest as a legal basis: Guidance from the EDPB

Controllers must ensure necessary, proportionate, processing which respects the rights of data subjects, ensuring GDPR compliance.   When processing personal data under the General Data Protection Regulation (GDPR), controllers must ensure that their actions are lawful. Specifically, if relying on Article 6(1)(f) of the GDPR, the processing must be based on a legitimate interest. This
October 24, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Tech giants push for lighter AI regulations in Europe

Tech giants push for lighter AI regulations in Europe amid concerns over fines and transparency.   In a pivotal final effort, the world’s largest technology companies are urging the European Union (EU) to take a more lenient stance on regulating artificial intelligence (AI). Firms like Amazon, Google, and Meta are currently facing the looming possibility
October 17, 2024 Comments (0) Share
Read More
  Zandilli Lucien

European Commission Initiates Proceedings to Ensure Apple’s Compliance with Digital Markets Act

The European Commission has initiated proceedings to ensure Apple complies with the Digital Markets Act by providing free interoperability to third-party developers for its iOS and iPadOS platforms.   The European Commission has launched two specification proceedings to ensure that Apple meets its obligations under the Digital Markets Act (DMA). As a “gatekeeper” under the
October 3, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Hong Kong’s AI model framework: the Personal Data (Privacy) Ordinance

The Hong Kong PCPD’s AI Model Framework provides guidelines for organisations using AI systems that process personal data, emphasising compliance with the PDPO.   On June 11, 2024, the Hong Kong Office of the Privacy Commissioner for Personal Data (PCPD) unveiled its Artificial Intelligence Model Personal Data Protection Framework (Model Framework). This framework serves as
August 29, 2024 Comments (0) Share
Read More
  Zandilli Lucien

The use of AI chatbots may lead to data breaches

The Dutch DPA urges businesses to be vigilant as the use of AI chatbots by employees may lead to data breaches.    Recently, the Dutch Data Protection Authority (AP) received multiple allegations of data breaches resulting from employees sharing the personal information of patients or consumers with an artificial intelligence (AI) chatbot. Companies that provide
August 15, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Enforcement notices issued to two public organisations

The UK ICO has issued enforcement notices to two public bodies under the Freedom of Information Act of 2000, ordering them to address a backlog of requests from the public.    The Information Commissioner’s Office (ICO) recently took action against two public service organisations for their ongoing failures to meet fundamental Freedom of Information Act
August 8, 2024 Comments (0) Share