Chat to a DPO
Chat to a DPO

Tag: Data Protection

Home
Tag: Data Protection
Page 17
Read More
  Zandilli Lucien

Violation of data minimisation leads to administrative fine

The Finnish DPA has fined the Finnish Motor Insurers’ Centre, after this controller was found to be in violation of data minimisation.  The Finnish DPA has fined the Finnish Motor Insurers’ Centre over their inability to adhere to the principle of data minimisation. The company was fined late last year, for collecting an unnecessary amount
February 22, 2022 Comments (0) Share
Read More
  Zandilli Lucien

AI powered age verification systems being tested at UK supermarkets for alcohol purchases.

AI powered age verification systems are now being tested at a few UK supermarkets to verify the ages of people attempting to buy alcohol at self-checkout.  UK supermarkets have begun testing an automated age verification system at self-checkouts when buying alcohol. According to this BBC report, this system will utilize cameras that can estimate a
February 17, 2022 Comments (0) Share
Read More
  Zandilli Lucien

Stop using Google Analytics: CNIL gives formal notice to website managers.

CNIL has given formal notice to website managers to come into compliance and to stop using Google Analytics due to illegal EU – US Data transfers.    CNIL has joined several other EU watchdogs in ordering website managers to stop using Google Analytics. As a result of several complaints being filed by NOYB, against a
February 15, 2022 Comments (0) Share
Read More
  Zandilli Lucien

Data subject right of access: Guidelines by the EDPB

The EDPB recently released guidelines on data subject right of access in the context of the GDPR.   The right of access aims to provide individuals with sufficient, transparent and easily accessible information about the processing of their personal data. This is expected to add greater ease to the process of data subjects exercising their
February 10, 2022 Comments (0) Share
Read More
  Zandilli Lucien

Declaration on digital rights and principles proposed by the European Commission

The Commission has proposed a declaration of rights and principles to the European Parliament and Council that is intended to guide digital transformation in the EU.   The European Commission has prepared a draft declaration on digital rights and principles with the aim of providing a clear reference point on the kind of digital transformation
February 3, 2022 Comments (0) Share
Read More
  Zandilli Lucien

Explore alternatives to Google Analytics: advice from the Norwegian DPA

With multiple European authorities ruling against the use of this service, the Norwegian DPA suggests that companies explore alternatives to Google Analytics.    In a recent blog, we covered why the use of Google Analytics (and Stripe) by the European Parliament was considered a violation of the Court of Justice’s (CJEU) “Schrems II” ruling on
February 1, 2022 Comments (0) Share
Read More
  Zandilli Lucien

Fine imposed by Italian DPA for aggressive telemarketing

Fine imposed by Italian DPA on Enel Energia, amounting to €26.5 million for aggressive telemarketing.   The Italian DPA has imposed a fine of €26.5 million on Enel Energia for aggressive telemarketing according to this recent report. After hundreds of reports and complaints about unwanted promotional calls to customers from Enel Energia, Garante, the Italian
January 27, 2022 Comments (0) Share
Read More
  Zandilli Lucien

How subcontractors can reuse data: CNIL outlines specific conditions

How subcontractors can reuse data: this is possible only under specific conditions, which CNIL has outlined with specific context.   Under the GDPR, there are several conditions which need to be met in order for subcontractors to reuse data provided to them by the data controller. French regulator; CNIL has outlined the context under which
January 25, 2022 Comments (0) Share
Read More
  Zandilli Lucien

EDPS reprimands European Parliament for use of Google Analytics

Illegal EU-US data transfers by the European Parliament lead to sanction from EDPS    Due to a complaint made approximately one year prior, the European Parliament has been sanctioned by the EDPS over illegal EU-US data transfers, among other violations. On a COVID-19 testing site, the use of Google Analytics and Stripe (both US companies)
January 20, 2022 Comments (0) Share
Read More
  Zandilli Lucien

Employee right of access: how does it work?

The CNIL of France has released an article explaining the employee right of access under the EU GDPR.   Article 15 of the GDPR gives individuals the right to request a copy of any of their personal data from a data controller. This also applies when the data controller is the individual’s employer. CNIL has
January 18, 2022 Comments (0) Share