The CNIL recently published guidelines on the re-use of personal data by data processors for their own purposes (such as product improvement or development of new products and services) under the GDPR. We have outlined key takeaways from the Guidelines in this blog post.
Continue Reading CNIL Published Guidelines on Re-Use of Personal Data by Data Processors
European Union
EDPS Issues Decision on EU Parliament’s Cookie Violations
Posted on
Posted in European Union, International
The European Data Protection Supervisor recently issued a decision against the European Parliament in a case that resulted from a complaint submitted by certain Members of the European Parliament who alleged that the Parliament’s use of cookies violated data protection law, including requirements regarding the transfer of personal data outside of the EU. …
Continue Reading EDPS Issues Decision on EU Parliament’s Cookie Violations
CNIL Fines Big Tech Companies 210 Million Euros for Cookie Violations
Posted on
On December 31, 2021, the French Data Protection Authority (the “CNIL”) imposed a €150,000,000 fine on Google and a €60,000,000 fine on Facebook (now Meta) for violations of French rules on the use of cookies.…
Continue Reading CNIL Fines Big Tech Companies 210 Million Euros for Cookie Violations
European Commission Defends Irish Data Protection Commissioner
Posted on
Posted in European Union, International
In a letter addressed to certain members of the European Parliament, European Commissioner for Justice Reynders refuted some of the criticism that has been raised against the Irish Data Protection Commissioner. This blog entry provides highlights on the Commissioner’s response. …
Continue Reading European Commission Defends Irish Data Protection Commissioner
EU Parliament Gives Green Light to Digital Markets Act
Posted on
The European Parliament adopted its position on the proposal for a Digital Markets Act, ahead of negotiations with the Council of the European Union. This blog entry examines the key amendments to the DMA by Members of the European Parliament.…
Continue Reading EU Parliament Gives Green Light to Digital Markets Act
European Commission Adopts South Korea Adequacy Decision
Posted on
On December 21, 2021, the European Commission announced that it had adopted its adequacy decision on the Republic of Korea. The adequacy decision allows for the free flow of personal data between the EU and Korea, without any further need for authorization or additional transfer tool. The adequacy decision also covers transfers of personal data between public authorities. …
Continue Reading European Commission Adopts South Korea Adequacy Decision
CIPL Publishes White Paper on the Interplay Between the Draft EU Digital Markets Act and the GDPR
Posted on
The Centre for Information Policy Leadership at Hunton Andrews Kurth recently published a white paper on “Bridging the DMA and the GDPR – Comments by the Centre for Information Policy Leadership on the Data Protection Implications of the Draft Digital Markets Act.” This blog entry provides highlights on the paper.…
Continue Reading CIPL Publishes White Paper on the Interplay Between the Draft EU Digital Markets Act and the GDPR
EU Parliament and Council of the EU Reach Agreement on Data Governance Act
Posted on
Posted in European Union, International
On November 30, 2021, the European Commission issued a press release indicating that the European Parliament and the Council of the EU (i.e., representatives of EU Member States) reached political agreement on the proposed EU Data Governance Act.…
Continue Reading EU Parliament and Council of the EU Reach Agreement on Data Governance Act
The EDPB Issues Guidelines Clarifying What Constitutes an International Data Transfer Under the GDPR
Posted on
Posted in European Union, International
On November 19, 2021, the European Data Protection Board published its draft Guidelines 05/2021 on the interplay between the application of Article 3 of the GDPR, which sets forth the GDPR’s territorial scope, and the GDPR’s provisions on international data transfers.…
Continue Reading The EDPB Issues Guidelines Clarifying What Constitutes an International Data Transfer Under the GDPR
EDPB Releases Statement on the Digital Services Package and Data Strategy; Calls for Ban on Targeted Ads
Posted on
On November 18, 2021, the European Data Protection Board released a statement on the Digital Services Package and Data Strategy. The Digital Services Package and Data Strategy is composed of several legislative proposals that aim to facilitate the further use and sharing of personal data between more public and private parties; support the use of specific technologies, such as Big Data and artificial intelligence; and regulate online platforms and gatekeepers.…
Continue Reading EDPB Releases Statement on the Digital Services Package and Data Strategy; Calls for Ban on Targeted Ads