The European Data Protection Board recently published Guidelines on the Targeting of Social Media Users, which aim to provide practical guidance on the role and responsibilities of social media providers and those using targeting services.
Continue Reading EDPB Published Guidelines on the Targeting of Social Media Users
European Union
EDPB Publishes Guidelines on the Concepts of Controller and Processor in the GDPR
Posted on
Posted in European Union, International
On September 7, 2020, the European Data Protection Board released draft Guidelines 07/2020 on the concepts of controller and processor in the EU General Data Protection Regulation. We provide a summary of the key takeaways from the guidelines. …
Continue Reading EDPB Publishes Guidelines on the Concepts of Controller and Processor in the GDPR
EDPB Creates Taskforces on Complaints and Supplementary Measures for Data Transfers Following Schrems II Decision
Posted on
Posted in European Union, International
On September 4, 2020, the European Data Protection Board announced that it established two taskforces following the judgment of the CJEU in the Schrems II case. …
Continue Reading EDPB Creates Taskforces on Complaints and Supplementary Measures for Data Transfers Following Schrems II Decision
European Parliament Meeting on Future of EU-U.S. Data Flows
Posted on
On September 3, 2020, the Committee on Civil Liberties, Justice and Home Affairs of the European Parliament held a meeting to discuss the future of EU-U.S. data flows following the Schrems II judgment of the Court of Justice of the European Union.…
Continue Reading European Parliament Meeting on Future of EU-U.S. Data Flows
German DPA Issues Guidance on Data Transfers Following Schrems II
Posted on
Posted in European Union, International
On August 24, 2020, the Data Protection Authority of the German federal state of Baden-Württemberg issued guidance on international data transfers following the judgment of the Court of Justice of the European Union in the Schrems II case.…
Continue Reading German DPA Issues Guidance on Data Transfers Following Schrems II
CNIL Adopts Its First Sanction as Lead Supervisory Authority, Fining French Online Shoe Retailer
Posted on
On August 5, 2020, the French Data Protection Authority announced that it has levied a fine of €250,000 on a French online shoe retailer for various infringements of the GDPR. This is the first penalty under the GDPR enforced by the CNIL as the lead supervisory authority in cooperation with other EU supervisory authorities.…
Continue Reading CNIL Adopts Its First Sanction as Lead Supervisory Authority, Fining French Online Shoe Retailer
European Commission and U.S. Department of Commerce to Discuss Enhanced EU-U.S. Privacy Shield Framework
Posted on
On August 10, 2020, European Commissioner for Justice Didier Reynders and U.S. Secretary of Commerce Wilbur Ross released a joint press statement following the ruling of the Court of Justice of the European Union in the Schrems II case.…
Continue Reading European Commission and U.S. Department of Commerce to Discuss Enhanced EU-U.S. Privacy Shield Framework
EU Council Imposes First-Ever Sanctions against Cyber Attacks
Posted on
On July 30, 2020, the Council of the European Union imposed for the first time restrictive measures against six individuals and three entities responsible for or involved in various cyber attacks. …
Continue Reading EU Council Imposes First-Ever Sanctions against Cyber Attacks
Belgian DPA Fines Belgian Telecommunications Provider for Several Data Protection Infringements
Posted on
Posted in European Union, International
On July 30, 2020, the Litigation Chamber of the Belgian Data Protection Authority (the “Belgian DPA”) imposed a €20,000 fine on Belgian telecommunications provider Proximus N.V. (“Proximus”) for several data protection infringements related to Proximus’ public directory. In particular, the claimant requested that Proximus remove his contact details from the public directory and inform other publishers of public directories not to publish his personal data. Despite informing the claimant that it was going to proceed accordingly, Proximus still published his personal data in its public directory and shared it with other publishers of public directories.
…
Continue Reading Belgian DPA Fines Belgian Telecommunications Provider for Several Data Protection Infringements
Department of Commerce Publishes FAQs Regarding Impact of Schrems II Decision
Posted on
The U.S. Department of Commerce has issued two new sets of FAQs in light of the CJEU’s recent decision to invalidate the EU-U.S. Privacy Shield in Schrems II. …
Continue Reading Department of Commerce Publishes FAQs Regarding Impact of Schrems II Decision