Loading

Tag: Privacy

Tag: Privacy
Page 2

Web Scraping is almost always unlawful under the GDPR

Under the GDPR, web scraping is almost always unlawful, except for in very few exceptional cases.    The automatic collection and storage of information from the Internet is referred to as web scraping. Through this process, a computer program automatically extracts data from the internet, for example by scanning social media platforms. Scraping involves the

Facial Recognition Technology: legal clarification from the Netherlands DPA

Netherlands DPA (AP) clarifies legal questions regarding the use of Facial Recognition Technology under the GDPR.   The Dutch Data Protection Authority, Autoriteit Persoonsgegevens (AP) has published a new guide that addresses and clarifies frequently asked legal questions about the use of facial recognition technology. The document is primarily designed for privacy professionals and organisations

Unlawful use of data results in significant fine for canvassing company

Unlawful use of data results in significant fine for canvassing company A company was fined by CNIL for unlawfully using data obtained from a data broker for commercial prospecting purposes.    On April 4, 2024, the French data protection authority, CNIL, imposed a significant fine of 525,000 euros on the company HUBSIDE.STORE. The fine was

EU Supervisory Authorities have a right to order the erasure of unlawfully processed data without a request from the data subject

The CJEU has ruled that EU Supervisory Authorities have a right to order the erasure of unlawfully processed data even without a prior request from the data subject.   The recent ruling by the Court of Justice of the European Union (CJEU) has significant implications for the processing of personal data by organisations within the

Texas Data Privacy and Security Act: An overview

Texas Data Privacy and Security Act brings Texas among the ranks of several states to enact comprehensive data privacy laws.   Texas Data Privacy and Security Act (TDPSA) was passed on June 16th, 2023 and will take effect on July 1, 2024, bringing Texas among the ranks of several states to enact comprehensive data privacy

New Jersey Consumer Data Privacy Act: A comprehensive overview

The New Jersey Consumer Data Privacy Act (NJCDPA), was passed in January 2024, and details distinct requirements for organizations which process the data of New Jersey residents.    The state of New Jersey has implemented a robust framework of data protection laws to safeguard the personal information of its residents. Among the key laws is

Oregon Consumer Data Privacy Act: What organizations should be aware of

The Oregon Consumer Data Privacy Act (OCDPA), scheduled to come into force from June 2024, implements specific requirements for organizations which process the data of Oregon residents.    The Oregon Consumer Data Privacy Act (OCDPA) is a state data privacy law that aims to protect the personal information of Oregon residents. The OCDPA establishes a

”Pay or ok” — Does this new paid subscription model invalidate consent?

There has been much debate about the validity of consent under the GDPR as it relates to the “Pay or ok” paid subscription model on social media and other platforms and websites.   Since November 7, European users of Facebook and Instagram have had the option to pay a subscription in exchange for an ad-free

The Indiana Consumer Data Protection Act: continuing the trend of state level Privacy law in the US

Many US states, including Indiana, have implemented comprehensive privacy laws to protect residents’ information, following trends set by the EU GDPR and fellow US States.   With the rise of data breaches and the increasing use of technology in everyday life, many US states have taken it upon themselves to enact comprehensive privacy laws safeguarding

The Delaware Personal Data Privacy Act: A Comprehensive Overview

With the introduction of the Delaware Personal Data Privacy Act, Delaware has joined the ranks of US states with their own consumer privacy laws.   Governments worldwide are enacting legislation to safeguard individuals’ sensitive information and hold businesses accountable for its protection. The Delaware Personal Data Privacy Act (DPPA) is one such regulation that aims