Contacta con un DPO
Chat to a DPO

Tag: Data Processing

Home
Tag: Data Processing
Read More
  Zandilli Lucien

Coolblue was fined €40,000 for violating GDPR by unlawfully processing personal data via cookies

Coolblue was fined €40,000 by the Dutch DPA for unlawfully processing personal data via cookies, by failing to obtain explicit consent.   The Dutch Data Protection Authority (AP) recently imposed a €40,000 fine on Coolblue for unlawfully processing personal data via cookies in 2020. The violation stemmed from Coolblue’s failure to obtain explicit consent from
January 23, 2025 Comments (0) Share
Read More
  Zandilli Lucien

GDPR’s role in responsible AI development: CEPD publishes opinion on AI models

The CEPD’s recent opinion on AI models highlights the GDPR’s role in responsible AI development. The European Data Protection Board (CEPD) issued an opinion on December 18, 2024, emphasizing the importance of GDPR principles in the ethical development and deployment of AI models. This comprehensive opinion, requested by the Irish Data Protection Authority (DPA), focuses
January 9, 2025 Comments (0) Share
Read More
  Zandilli Lucien

A Polish catering company was fined €54,600 for a data breach after an employee lost a flash drive with sensitive data.

A Polish catering company was fined €54,600 for failing to protect personal data after an employee lost a flash drive containing sensitive information, revealing vulnerabilities in the company’s data security. The Polish Data Protection Authority (UODO) recently fined Res-Gastro M. Gaweł Sp. k., a catering company in Kolbuszowa, Poland, €54,600 for failing to implement adequate
December 5, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Legitimate interest as a legal basis: Guidance from the EDPB

Controllers must ensure necessary, proportionate, processing which respects the rights of data subjects, ensuring GDPR compliance.   When processing personal data under the General Data Protection Regulation (GDPR), controllers must ensure that their actions are lawful. Specifically, if relying on Article 6(1)(f) of the GDPR, the processing must be based on a legitimate interest. This
October 24, 2024 Comments (0) Share
Read More
  Zandilli Lucien

CNIL fined Cegedim Santé €800,000 for unlawful processing of sensitive health data

CNIL imposed a €800,000 fine on Cegedim Santé for the unauthorized and unlawful processing of sensitive health data.   In 2021, Cegedim Santé, a company specializing in management software for general practitioners and health centers, came under scrutiny from the French data protection authority, CNIL. The company provides software to around 25,000 medical practices and
September 26, 2024 Comments (0) Share
Read More
  Zandilli Lucien

EU Supervisory Authorities have a right to order the erasure of unlawfully processed data without a request from the data subject

The CJEU has ruled that EU Supervisory Authorities have a right to order the erasure of unlawfully processed data even without a prior request from the data subject.   The recent ruling by the Court of Justice of the European Union (CJEU) has significant implications for the processing of personal data by organisations within the
March 28, 2024 Comments (0) Share
Read More
  Zandilli Lucien

ICO’s Privacy Considerations for COVID-19 related Data Processing.

ICO’s privacy considerations for COVID-19 related data processing  and Google-Apple joint contact tracing technology outlined by the Information Commissioner, Elizabeth Denham.    The ICO’s privacy considerations for COVID-19 were recently mapped out in a recent blog by the Information Commissioner, Elizabeth Denham, some weeks after their original statement on Coronavirus was released. While the ICO
April 22, 2020 Comments (0) Share