The Austrian Data Protection Authority imposed an 18 million EUR fine on the Austrian Postal Service.
Continue Reading
Enforcement
Berlin Commissioner Issues Fine to Deutsche Wohnen SE
Posted on
On November 5, 2019, the Berlin Commissioner for Data Protection and Freedom of Information announced that it imposed a fine of €14.5 million on a major real estate company, which is the highest fine issued in Germany since the EU General Data Protection Regulation became applicable.…
Continue Reading
Facebook Reaches Settlement with ICO over £500,000 Data Protection Fine
Posted on
Facebook reached a settlement with the UK Information Commissioner’s Office, agreeing to pay a fine of 500,000 GBP in relation to the processing and sharing of its users’ personal data with Cambridge Analytica.…
Continue Reading
FTC Enforcement Action Against Deceptive Online Reviews
Posted on
Posted in Enforcement, Marketing
On October 21, 2019, the Federal Trade Commission took action against two companies alleged to have engaged in the business of false online reviews and social media influence.…
Continue Reading
FTC Brings First Case Against Developers of “Stalking” Apps
Posted on
On October 22, 2019, the FTC announced that, for the first time, it has brought a case against a developer of “Stalking” Apps. …
Continue Reading
UK Court of Appeal Permits Activist to Proceed with Claim for Damages Against Google
Posted on
On October 2, 2019, the UK Court of Appeal handed down its judgment on the appeal in Richard Lloyd v. Google LLC, in which Richard Lloyd, a consumer protection advocate, seeks to bring a representative action on behalf of four million Apple iPhone users against Google LLC in the United States. Previously, the High Court had refused to grant permission for the proceedings to be served outside the UK. The Court of Appeal reversed the High Court’s judgment, granting permission for service outside the UK and allowing the representative action to proceed. The judgment is significant as it paves the way for representative actions (equivalent to class actions) for data protection infringements in the UK.
…
Continue Reading
CJEU Reaches Decision in Case Involving Cookie Consent under EU Data Protection Law
Posted on
On October 1, 2019, the Court of Justice of the European Union issued its decision in an important case involving consent for the use of cookies by a German business called Planet49.…
Continue Reading
Belgian DPA Announces Fine for Disproportionate Use of Customers’ eID Card
Posted on
On September 17, 2019, the Belgian Data Protection Authority (the “Belgian DPA”) imposed a fine of EUR 10,000 on a shop for the disproportionate use of customers’ electronic identity cards (the “eIDs ”) – a national identification card.
…
Continue Reading
CJEU Rules “Right to be Forgotten” on Google Limited to the EU in Landmark Case
Posted on
On September 24, 2019, the Court of Justice of the European Union released its judgments in cases C-507/17, Google v. CNIL and C-136/17, G.C. and Others v. CNIL regarding (1) the territorial scope of the right to be forgotten, and (2) the conditions in which individuals may exercise the right to be forgotten in relation to links to web pages containing sensitive data.…
Continue Reading
High Court Dismisses Challenge to Police Use of Facial Recognition Technology
Posted on
On September 4, 2019, the High Court of England and Wales dismissed a challenge against South Wales Police’s use of Automated Facial Recognition technology, determining that the police’s use of AFR had been necessary and proportionate to achieve their statutory obligations.…
Continue Reading