GDPR Archive
The CJEU (European Court of Human Justice) has reached a ruling that is set to reform the way online platforms provide targeted adverts and other personalised content. In its judgement, the CJEU said that it will crack down on tools …
Regulatory bodies across the EU have issued a string of high-profile GDPR (General Data Protection Regulation) fines in August. Among the headlines is a preliminary €60 million fine for the French firm Criteo, a €1.1 million penalty for Volkswagen and …
Spain’s data protection authority has been by far the most active enforcer of the GDPR (General Data Protection Regulation), so news of it levying fines usually goes unreported. The AEPD (Agencia Española de Protección de Datos) levied 175 fines in …
The Irish Court of Appeal has upheld a decision that a hospice employee’s data protection rights were violated in an investigation over workplace conduct. Cormac Doolin became embroiled in the investigation after someone at his workplace, the Dublin-based Our Lady’s …
The EDPB (European Data Protection Board) has published new draft guidelines on how to calculate fines for GDPR (General Data Protection Regulation) violations. Much of the discussion surrounding the GDPR has centred on the disciplinary powers it gives to regulators, …
Organisations share personal data with third parties all the time, but can they be trusted? The GDPR (General Data Protection Regulation) extended the scope of responsibility when it comes to data protection and privacy, so where does that leave you when it comes to security incidents caused by …
We’ve come a long way since the panic and scepticism that accompanied the introduction of the GDPR (General Data Protection Regulation). Several high-profile fines and the continued warnings from regulators have led to a sharp uptick in the number of …
The introduction of the GDPR (General Data Protection Regulation) requires all organisations within its scope to give data subjects the right to review the personal data being held on them. These requirements are broadly consistent with previous laws about personal data access requests, albeit more rigorous. However, …
Cookies are mentioned only once in the EU General Data Protection Regulation (GDPR), but the repercussions are significant for any organisation that uses them to track users’ browsing activity.
Personal data is at the heart of the GDPR (General Data Protection Regulation), but many people are still unsure exactly what ‘personal data’ refers to. There’s no definitive list of what is or isn’t personal data, so it all comes down …
