Data Protection Archive
On 5 September, the highest body of the European Court of Human Rights (ECHR) restricted employers’ power to monitor the private messages of their employees. The ruling overturns a lower court’s decision to back an organisation that sacked one of …
We’re back to the drawing board when it comes to personal data transfers between the EU and the US. The EU–US Data Privacy Framework was announced this time last year, with the hope of creating a legal precedent that would …
In a major development for GDPR (General Data Protection Regulation) enforcement, the European Commission has announced a review plan to help data protection authorities apply the Regulation’s rules correctly. It follows repeated criticism that regulators are not doing enough to …
Last month, the European Court of Justice gave a ruling that clarifies the way organisations should interpret individuals’ right of access under the GDPR (General Data Protection Regulation). The ruling stated that when submitting a DSAR (data subject access request), …
The GDPR (General Data Protection Regulation) has been in effect for half a decade, but many of us still fail to grasp its core principles and apply its requirements, a new report has revealed. According to ISACA’s Privacy in Practice …
Last month, the Dutch government proposed sweeping changes to the country’s Anti-Money Laundering and Anti-Terrorism Financing Act, which would give banks new powers to investigate suspicious activity. Existing laws have been criticised for failing to adequately prevent financial crimes, but …
Spain’s data protection authority is at it again. The body, which handed out 143 GDPR (General Data Protection Regulation) fines in the first nine months of the year, has issued 18 more penalties in October. Although none of the fines …
After a drawn-out investigation, the Irish DPC (Data Protection Commission) has confirmed that it intends to fine Instagram for several data protection violations. And the fine, should it stand, is a big one: €405 million. It’s the second largest penalty …
The CJEU (European Court of Human Justice) has reached a ruling that is set to reform the way online platforms provide targeted adverts and other personalised content. In its judgement, the CJEU said that it will crack down on tools …
Regulatory bodies across the EU have issued a string of high-profile GDPR (General Data Protection Regulation) fines in August. Among the headlines is a preliminary €60 million fine for the French firm Criteo, a €1.1 million penalty for Volkswagen and …