On June 23, 2022, Italy’s data protection authority determined that a website’s use of the audience measurement tool Google Analytics is not compliant with the EU General Data Protection Regulation, as the tool transfers personal data to the United States, which does not offer an adequate level of data protection.
Continue Reading Italian Garante Bans Google Analytics
Cookies
CNIL Unveils 2021 Annual Activity Report
The French Data Protection Authority recently published its Annual Activity Report for 2021.
Continue Reading CNIL Unveils 2021 Annual Activity Report
Google to Launch Google Analytics 4 in an Attempt to Address EU Privacy Concerns
On March 16, 2022, Google announced the launch of its new analytics solution, Google Analytics 4, which will no longer store IP address.
Continue Reading Google to Launch Google Analytics 4 in an Attempt to Address EU Privacy Concerns
French CNIL Rules EU-U.S. Data Transfers Through the Use of Analytics Cookie to be Unlawful
On February 10, 2022, the French Data Protection Authority ruled that transfers of personal data from the EU to the U.S. through the use of an analytics cookie to be unlawful.
Continue Reading French CNIL Rules EU-U.S. Data Transfers Through the Use of Analytics Cookie to be Unlawful
Belgian DPA Finds IAB Europe Transparency and Consent Framework in Violation of the GDPR
On February 2, 2022, the Litigation Chamber of the Belgian Data Protection Authority imposed a 250,000 Euro fine against the Interactive Advertising Bureau Europe for several alleged infringements of the GDPR, following an investigation into IAB Europe’s Transparency and Consent Framework.
Continue Reading Belgian DPA Finds IAB Europe Transparency and Consent Framework in Violation of the GDPR
EDPS Issues Decision on EU Parliament’s Cookie Violations
The European Data Protection Supervisor recently issued a decision against the European Parliament in a case that resulted from a complaint submitted by certain Members of the European Parliament who alleged that the Parliament’s use of cookies violated data protection law, including requirements regarding the transfer of personal data outside of the EU. …
Continue Reading EDPS Issues Decision on EU Parliament’s Cookie Violations
CNIL Fines Big Tech Companies 210 Million Euros for Cookie Violations
On December 31, 2021, the French Data Protection Authority (the “CNIL”) imposed a €150,000,000 fine on Google and a €60,000,000 fine on Facebook (now Meta) for violations of French rules on the use of cookies.
Continue Reading CNIL Fines Big Tech Companies 210 Million Euros for Cookie Violations
Irish DPC Draft Decision Permits Facebook to Rely on Contractual Necessity for Behavioral Advertising
The Irish Data Protection Commissioner has submitted a draft decision on Facebook Ireland Limited’s data protection compliance to other European regulators under the cooperation mechanism of the EU General Data Protection Regulation. The DPC proposed a fine for infringements of the transparency obligations under the GDPR, specifically with respect to the legal basis upon which Facebook relied. …
Continue Reading Irish DPC Draft Decision Permits Facebook to Rely on Contractual Necessity for Behavioral Advertising
EDPB Creates Cookie Banner Taskforce
On September 27, 2021, the European Data Protection Board announced that it established a taskforce to coordinate the response to complaints filed with several EU data protection authorities by the non-governmental organization None of Your Business in relation to cookie banners.
Continue Reading EDPB Creates Cookie Banner Taskforce
DCMS Consults on National Data Strategy
On September 10, 2021, the UK Government Department for Digital, Culture, Media & Sport launched a consultation on its proposed reforms to the UK data protection regime to reflect DCMS’s effort to deliver on Mission 2 of the National Data Strategy. The consultation will close on November 19, 2021, and CIPL will consult with members to prepare a formal response to the consultation.
Continue Reading DCMS Consults on National Data Strategy