Chat to a DPO
Chat to a DPO

Tag: GDPR

Home
Tag: GDPR
Page 15
Read More
  cristinac

Spanish DPA AEPD publishes Guidelines on AI audits

AEPD, the Spanish data protection authority, has published Guidelines on the requirements that should be implemented for conducting audits of data processing activities that embed AI. Early this month, the Spanish DPA, AEPD, published Guidelines on the requirements that should be considered when undertaking audits of personal data processing activities which involve AI elements. The
January 15, 2021 Comments (0) Share
Read More
  Zandilli Lucien

Doctors fined by CNIL: The French DPA has sanctioned two health professionals over poor data protection.

Two doctors have been fined by CNIL for having insufficient data protection, and neglecting to notify of a recent data breach.    Last month, in France, CNIL announced that two doctors were found to be in breach of articles 32 and 33 of the GDPR. Following a September 2019 online check, the two doctors had
January 13, 2021 Comments (0) Share
Read More
  Zandilli Lucien

ICO urges UK businesses: ensure compliance to data protection law before the end of the UK’s transition.

ICO urges UK businesses to ensure compliance to data protection law before the end of the UK’s transition on December 31st 2020.    December 31st 2020 will officially end the transitionary period for the UK, out of the EU, and the ICO is calling on UK businesses to ensure that if they are impacted by
December 23, 2020 Comments (0) Share
Read More
  Zandilli Lucien

Google and Amazon fined: CNIL has fined the two major companies for unlawful cookies.

Google and Amazon, fined by CNIL of France, for placing cookies on users’ computers without getting prior consent or giving satisfactory information. The CNIL reported last week that both companies have been sanctioned, for their misuse of cookies which breached the French Data Protection Act. Following several investigations from December 12th 2019 to May 19th
December 16, 2020 Comments (0) Share
Read More
  Zandilli Lucien

Healthcare providers’ broad data access authorisations lead to fines of over 2.9 million euros.

Healthcare providers’ broad data access authorisations lead to fines of over 2.9 million euros in Sweden.    The Swedish DPA, after reviewing eight healthcare providers found that there were deficiencies in the way that they protected access to electronic health records. The assessments primarily examined whether the health care providers had conducted the needs’ and
December 9, 2020 Comments (0) Share
Read More
  cristinac

Draft of new Standard Contractual Clauses published by the European Commission

On 12 November 2020, the European Commission published a draft Implementing Decision on new Standard Contractual Clauses for the transfer of personal data to third countries. The CJEU judgement in the Schrems II case has brought to light some deficiencies in the current guarantees applied to international data transfers. Apart from invalidating the Privacy Shield,
December 4, 2020 Comments (0) Share
Read More
  Zandilli Lucien

Marketing Executive banned by the Insolvency Service for thousands of unsolicited marketing calls.

Marketing executive banned by the Insolvency Service for six years after making 75,500 unsolicited marketing calls. A former director of a marketing company has been banned from acting as a director or directly or indirectly becoming involved, in the promotion, formation or management of a company, without the permission of the court. For the next
December 2, 2020 Comments (0) Share
Read More
  Zandilli Lucien

EDPB releases statement of clarification on the concepts of controller and processor

EDPB releases statement of clarification on the concepts of controller and processor, as well as other key functional concepts in the GDPR. The concepts of controller, joint controller and processor play such a key role in the application of the GDPR that it is imperative that these roles and their functions be clear. As a
November 27, 2020 Comments (0) Share
Read More
  Zandilli Lucien

ICO fines Ticketmaster UK Limited 1.39 million Euros, over chatbot cyber attack.

ICO fines Ticketmaster UK Limited 1.39 million Euros under the GDPR, for failing to prevent chatbot cyber attack.   The ICO has fined Ticketmaster UK in relation to a recent data breach which potentially affected over 9 million customers across the EU. This data breach was orchestrated via a chatbot which the company installed on
November 18, 2020 Comments (0) Share
Read More
  Zandilli Lucien

First Code of Conduct under the GDPR approved by the Spanish DPA.

The first Code of Conduct under the GDPR has been approved by the Spanish DPA. The Spanish Agency for Data Protection (AEPD), in enforcing the General Data Protection Regulation and the Data Protection Law and guarantee of digital rights, has approved the first code of conduct based on the provisions of articles 40 and 41
November 16, 2020 Comments (0) Share