Loading

Tag: GDPR

Tag: GDPR
Page 3

Dealing with Data Protection Complaints as a Small Business

The ICO has published a guide for businesses on dealing with data protection complaints.   At times, simply  having data protection policies in place is not enough. Handling the data of customers, employees, and contractors can be a sensitive process and must be handled as such. There are times when businesses may experience data breaches

Czech EU Presidency proposes new data law on government access

The Czech EU Presidency of the EU Council has proposed a partial compromise on the Data Act, defining the scope and protections of Chapter V.   Prague aims to forward the discussion over the proposed Data Act by reaching an agreement on the ability of public agencies to demand access to privately owned data. According

The US CLOUD Act: what is the impact on European companies?

Following the approval of the CLOUD Act in the US, the Dutch Government requested a Memo on its application to EU Entities.   Under the GDPR, EU companies are required to comply with important data protection legislation or face serious monetary sanctions. Some critics have even argued about the GDPR’s extensive extraterritorial scope, which has

The AEPD releases guidance on biometric data and GDPR

The AEPD has released guidance on biometric data to help controllers to securely process this data pursuant to the GDPR. Biometric data may have a significant degree of intrusiveness on the privacy of individuals and, if not properly processed, it may also involve high risks to their rights and freedoms. According to the AEPD, elements

Unlawfully obtaining personal data results in the prosecution of former Health Advisor

A former Health Advisor pleaded guilty to, and was prosecuted for unlawfully obtaining personal data, and was ordered to compensate his victims.    A former Health Advisor has been prosecuted for obtaining the personal data of service users, particularly patients of South Warwickshire NHS Foundation Trust. He was found guilty of accessing the medical records

CJEU ruling on special categories of personal data

A recent CJEU ruling on special categories of personal data may have far reaching implications for online platforms.    On 1 Aug., the Court of Justice of the European Union issued a preliminary ruling on a few legal interpretations referred to them by a Regional Administrative Court in Lithuania. This ruling relates to the processing

Fine imposed on Volkswagen by German Data Protection Commissioner for multiple GDPR violations

A recent fine imposed on Volkswagen by a German Data Protection Commissioner, for multiple GDPR violations amounted to €1.1 million.   The State Commissioner for Data Protection in the German state of Lower Saxony (LfD Lower Saxony) has imposed a fine of €1.1 million on Volkswagen Aktiengesellschaft in accordance with GDPR Article 83. The fine

Inadequate security measures lead to a fine from the Danish DPA

The Danish Data Protection Authority has fined a law firm after a data breach, due to their inadequate security measures.    A law firm in Denmark has been fined over €67,000 for failing to implement basic security measures when establishing remote access to the company’s IT systems. These systems facilitated access to personal data of

Cybersecurity guide published by CNIL of France

The CNIL, in collaboration with the French government, has recently published a cybersecurity guide for French municipalities.    In recent times, cybersecurity has posed major difficulties for several communities in France. As a result, a study was conducted by Cybermalveillance.gouv.fr, a government-sponsored cybersecurity initiative, toward the end of 2021. This study was focused on communities

Data subjects’ consent is required for personalised ads – Italian SA warns TikTok

The Italian supervisory authority issues a formal warning after TikTok makes changes to its privacy policy and fails to get data subjects’ consent.    TikTok has recently made changes to its privacy policy stating that users aged above 18 would receive ‘personalised’ ads. From July 13th, users over 18 would receive ads based on profiling