Chat to a DPO
Chat to a DPO

Tag: Privacy

Home
Tag: Privacy
Read More
  Zandilli Lucien

Using AI in recruitment: Recommendations for business owners

The ICO has published recommendations for business owners on using AI in recruitment processes lawfully and ethically.   Artificial intelligence (AI) is transforming recruitment by saving time and improving efficiency for businesses of various sizes and across industries. Businesses are using AI tools to source potential candidates, summarize CVs, as well as score applicants. However,
November 21, 2024 Comments (0) Share
Read More
  Zandilli Lucien

ePrivacy Directive Article 5(3): Device Tracking and User Consent

Understanding Article 5(3) of the ePrivacy Directive and its Implications on Device Tracking and User Consent   The ePrivacy Directive, specifically Article 5(3), restricts the storage and access of information on users’ devices without their consent, except under specific conditions. This legislation plays a crucial role in protecting users from unauthorized storage and access to
October 31, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Legitimate interest as a legal basis: Guidance from the EDPB

Controllers must ensure necessary, proportionate, processing which respects the rights of data subjects, ensuring GDPR compliance.   When processing personal data under the General Data Protection Regulation (GDPR), controllers must ensure that their actions are lawful. Specifically, if relying on Article 6(1)(f) of the GDPR, the processing must be based on a legitimate interest. This
October 24, 2024 Comments (0) Share
Read More
  Zandilli Lucien

CNIL fined Cegedim Santé €800,000 for unlawful processing of sensitive health data

CNIL imposed a €800,000 fine on Cegedim Santé for the unauthorized and unlawful processing of sensitive health data.   In 2021, Cegedim Santé, a company specializing in management software for general practitioners and health centers, came under scrutiny from the French data protection authority, CNIL. The company provides software to around 25,000 medical practices and
September 26, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Hong Kong’s AI model framework: the Personal Data (Privacy) Ordinance

The Hong Kong PCPD’s AI Model Framework provides guidelines for organisations using AI systems that process personal data, emphasising compliance with the PDPO.   On June 11, 2024, the Hong Kong Office of the Privacy Commissioner for Personal Data (PCPD) unveiled its Artificial Intelligence Model Personal Data Protection Framework (Model Framework). This framework serves as
August 29, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Right to be forgotten: how unfit data deletion protocol resulted in a fine from Dutch DPA

A company was fined by the Dutch Data Protection Agency for failure to delete data after receiving such requests, thereby violating individuals’ right to be forgotten under the GDPR.   The Dutch Data Protection Authority (DPA) has imposed a fine of 6,000 euros on a recruitment company. The company was fined for failing to delete
June 13, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Data Protection and AI chatbots: Advice from the ICO

Following an investigation into the technology company Snap Inc, the ICO has published data protection advice with the use of AI chatbots.   Lately, it has become increasingly common for businesses and organisations to offer the option of an AI chatbot for website visitors and app users. Whether it be a social media chatbot, or
June 6, 2024 Comments (0) Share
Guidance on the Use
Read More
  Zandilli Lucien

Guidance on the Use of Wi-Fi Tracking Technology

The AEPD has published guidance on the use of wi-fi technology in compliance with the GDPR.    In a collaborative effort to address the growing concerns surrounding Wi-Fi tracking technology, the Spanish Data Protection Agency (AEPD), in conjunction with the Catalan Data Protection Authority, the Basque Data Protection Authority, and the Transparency and Data Protection
May 30, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Web Scraping is almost always unlawful under the GDPR

Under the GDPR, web scraping is almost always unlawful, except for in very few exceptional cases.    The automatic collection and storage of information from the Internet is referred to as web scraping. Through this process, a computer program automatically extracts data from the internet, for example by scanning social media platforms. Scraping involves the
May 16, 2024 Comments (0) Share
Read More
  Zandilli Lucien

Facial Recognition Technology: legal clarification from the Netherlands DPA

Netherlands DPA (AP) clarifies legal questions regarding the use of Facial Recognition Technology under the GDPR.   The Dutch Data Protection Authority, Autoriteit Persoonsgegevens (AP) has published a new guide that addresses and clarifies frequently asked legal questions about the use of facial recognition technology. The document is primarily designed for privacy professionals and organisations
May 9, 2024 Comments (0) Share