The Hungarian Data Protection Authority has recently published its annual report in which it presented a case where the Authority imposed the highest fine to date of ca. EUR 670,000 (HUF 250 million). The case involved the personal data processing of a bank (acting as a data controller) which automatically analyzed the recorded audio of … Read more
The CNIL – French DPA-published its guide for DPOs. This Guide https://lnkd.in/eMXdDeRh analyzes, among other issues why and how to appoint a DPO, what means should be provided to fulfill its mission and the pros and cons of the internal, external and shared DPO roles are compared: 1) If you choose to appoint a member of the … Read more
YouTube and TikTok track users’ personal data more than any other social media apps. A recent study found that YouTube, which is owned by Google, mostly collects your personal data for its own purposes — like tracking your online search history, or even your location, to serve you relevant ads. But TikTok, which is owned … Read more
The Austrian Data Protection Authority has decided on a model case by noyb that the continuous use of Google Analytics violates the GDPR. This is the first decision on the 101 model complaints filed by noyb in the wake of the so-called “Schrems II” decision. In 2020, the Court of Justice (CJEU) decided that the … Read more
Apple unleashing its ‘nutrition label’-style Privacy Labels, Surfshark has combed through the privacy policies of over 200 apps to find out which collect the most data and which collect the least.Key Findings are:– On average, social media apps and food delivery apps collect the most data.– Browsers and image editing apps collect the least.– The … Read more
UK privacy regulator ICO plans to fine facial recognition company Clearview AI €20 million for violating UK privacy law. Clearview collected photos from Facebook, LinkedIn and other websites for training a facial recognition system. This system contains a database of ten billion collected images, according to the ICO. This allows police services to identify unknown … Read more
The Irish Data Protection Commission (DPC) has sent a “draft decision” to the other European Data Protection Authorities on Facebook’s legal trick to bypass the GDPR. noyb has published the relevant documents today https://lnkd.in/eQBMMg7C. In the DPC’s view Facebook can simply choose to include the agreement on data processing in a “contract”, which would make the … Read more
Today the Commission issued modernised standard contractual clauses under the GDPR for data transfers from controllers or processors in the EU/EEA (or otherwise subject to the GDPR) to controllers or processors established outside the EU/EEA (and not subject to the GDPR). These modernised SCCs will replace the three sets of SCCs that were adopted under … Read more