On June 6, 2019, the CNIL announced that it levied a fine of 400,000 Euros on SERGIC, a French real estate service provider. This blog entry provides an overview of the case.
Continue Reading
Enforcement
First Fine Imposed by the Belgian DPA Since GDPR
Posted on
On May 28, 2019, shortly after the appointment of the new Belgian commissioner and the Director of the Litigation Chamber, the Belgian Data Protection Authority imposed its first fine since the EU General Data Protection Regulation became applicable.…
Continue Reading
Irish Data Protection Commissioner Appointed to Second Term
Posted on
On May 27, 2019, the Irish government announced that Helen Dixon, who currently serves as Irish Data Protection Commissioner, was appointed to a second five-year term in her position. Her reappointment was approved by a May 27 Cabinet vote. …
Continue Reading
The EDPB Publishes Updated Enforcement Figures for the First Anniversary of the GDPR
Posted on
On May 22, 2019, the European Data Protection Board published a summary of enforcement actions taken by the European Economic Area Supervisory Authorities for the year following the GDPR’s entry into force. This blog entry provides an overview of the findings.…
Continue Reading
OCR Settles with Medical Imaging Services Company
Posted on
On May 6, 2019, the U.S. Department of Health and Human Services’ Office for Civil Rights announced that it had entered into a resolution agreement and $3 million settlement with Touchstone Medical Imaging. The settlement is the first OCR HIPAA enforcement action in 2019, following an all-time record year of HIPAA enforcement in 2018.…
Continue Reading
ICO Issues GBP 400,000 Fine for Illegal Collection and Sharing of Personal Data
Posted on
On April 9, 2019, the UK Information Commissioner’s Office levied one of its most significant fines under the Data Protection Act 1998 against Bounty (UK) Limited. …
Continue Reading
UK ICO Fines Pensions Release Provider for Unsolicited Marketing Emails
Posted on
The UK Information Commissioner’s Office has issued a Monetary Penalty Notice to pensions release provider Grove Pensions Solutions Ltd, fining it £40,000 after the company used contact details collected by a third party for its direct marketing campaign.…
Continue Reading
EDPB Releases Opinion on Interplay Between the ePrivacy Directive and the GDPR and a Statement on the ePrivacy Regulation
Posted on
On March 12, 2019, the European Data Protection Board adopted an opinion on the interplay between the EU Directive on Privacy and Electronic Communications and the General Data Protection Regulation.…
Continue Reading
EDPB Releases Overview on the Implementation and Enforcement of the GDPR
Posted on
On February 26, 2019, the European Data Protection Board presented its first overview on the implementation of the GDPR and the roles and means of the national supervisory authorities to the European Parliament. This blog entry provides highlights from the report.…
Continue Reading
Draft CCPA Regulations Expected Fall 2019
Posted on
As we previously reported, the California Consumer Privacy Act of 2018 delays the California Attorney General’s enforcement of the CCPA until six months after publication of the Attorney General’s implementing regulations, or July 1, 2020, whichever comes first. The California Department of Justice anticipates publishing a Notice of Proposed Regulatory Action concerning the CCPA in Fall 2019.…
Continue Reading