On October 12, 2022, the UK Information Commissioner’s Office launched a public consultation on its draft guidance on employers’ obligations when monitoring at work.
Continue Reading UK ICO Publishes Draft Employee Monitoring Guidance for Consultation
European Union
President Biden Issues Executive Order on New EU-U.S. Data Transfer Pact
Posted on
On October 7, 2022, President Biden signed Executive Order on Enhancing Safeguards for United States Signals Intelligence Activities, which provides a new framework for legal data transfers between the European Union and the United States. …
Continue Reading President Biden Issues Executive Order on New EU-U.S. Data Transfer Pact
U.S. Department of Justice Announces U.S. – UK CLOUD Act Agreement
Posted on
On October 3, 2022, the U.S. Department of Justice announced that the agreement between the U.S. Government and the UK Government on Access to Electronic Data for the Purpose of Countering Serious Crime entered force, effect the same day. …
Continue Reading U.S. Department of Justice Announces U.S. – UK CLOUD Act Agreement
European Commission Publishes Proposal for Cyber Resilience Act
Posted on
On September 15, 2022, the European Commission presented its proposal for a Regulation on horizontal cybersecurity requirements for products with digital elements. …
Continue Reading European Commission Publishes Proposal for Cyber Resilience Act
Danish DPA Declares Use of Google Analytics Unlawful Without Supplementary Measures
Posted on
On September 21, 2022, Denmark’s data protection authority Datatilsynet announced its guidance that Google Analytics, Google’s audience measurement tool, is not compliant with the EU General Data Protection Regulation. …
Continue Reading Danish DPA Declares Use of Google Analytics Unlawful Without Supplementary Measures
Irish Data Protection Commissioner Fines Instagram for Children’s Privacy Violations
Posted on
On September 5, 2022, the Irish Data Protection Commissioner imposed a €405,000,000 fine on Instagram for violations of the EU General Data Protection Regulation’s rules on the processing of children’s personal data. …
Continue Reading Irish Data Protection Commissioner Fines Instagram for Children’s Privacy Violations
CNIL Proposes 60 Million Euros Fine Against French AdTech Company For Non-Compliance with GDPR
Posted on
Posted in European Union, International
On August 5, 2022, French AdTech company Criteo announced that it had received a report from the French Data Protection Authority on August 3, 2022, claiming various infringements of the EU General Data Protection Regulation and proposing to impose 60 million euros fine against Criteo. …
Continue Reading CNIL Proposes 60 Million Euros Fine Against French AdTech Company For Non-Compliance with GDPR
Irish Data Protection Commission Moves to Block Meta Transfers
Posted on
Posted in European Union, International
Only July 7, 2022, the Irish Data Protection Commission sent a draft decision to other European Union data protection authorities, proposing to block Meta’s transfers of personal data from the EU to the United States. …
Continue Reading Irish Data Protection Commission Moves to Block Meta Transfers
Italian Garante Bans Google Analytics
Posted on
On June 23, 2022, Italy’s data protection authority determined that a website’s use of the audience measurement tool Google Analytics is not compliant with the EU General Data Protection Regulation, as the tool transfers personal data to the United States, which does not offer an adequate level of data protection. …
Continue Reading Italian Garante Bans Google Analytics
EDPB Publishes Guidelines on the Calculation of Administrative Fines Under the GDPR
Posted on
Posted in European Union, International
The European Data Protection Board recently adopted Guidelines 04/2022 on the calculation of administrative fines under the GDPR. This blog entry provides a summary of the Guidelines. …
Continue Reading EDPB Publishes Guidelines on the Calculation of Administrative Fines Under the GDPR