On September 21, 2022, Denmark’s data protection authority Datatilsynet announced its guidance that Google Analytics, Google’s audience measurement tool, is not compliant with the EU General Data Protection Regulation.
Continue Reading Danish DPA Declares Use of Google Analytics Unlawful Without Supplementary Measures
Data Controller
Italian Garante Bans Google Analytics
Posted on
On June 23, 2022, Italy’s data protection authority determined that a website’s use of the audience measurement tool Google Analytics is not compliant with the EU General Data Protection Regulation, as the tool transfers personal data to the United States, which does not offer an adequate level of data protection. …
Continue Reading Italian Garante Bans Google Analytics
EDPB Publishes Guidelines on the Calculation of Administrative Fines Under the GDPR
Posted on
Posted in European Union, International
The European Data Protection Board recently adopted Guidelines 04/2022 on the calculation of administrative fines under the GDPR. This blog entry provides a summary of the Guidelines. …
Continue Reading EDPB Publishes Guidelines on the Calculation of Administrative Fines Under the GDPR
Thailand’s Personal Data Protection Act Enters into Force
Posted on
On June 1, 2022, Thailand’s Personal Data Protection Act entered into force after three years of delays.
Continue Reading Thailand’s Personal Data Protection Act Enters into Force
Connecticut Enacts Consumer Privacy Law
Posted on
On May 10, 2022, Connecticut Governor Ned Lamont signed An Act Concerning Personal Data Privacy and Online Monitoring, after the law was previously passed by the Connecticut General Assembly in April. Connecticut is now the fifth state to enact a consumer privacy law.
Continue Reading Connecticut Enacts Consumer Privacy Law
Utah Becomes Fourth U.S. State to Enact Consumer Privacy Law
Posted on
Posted in U.S. State Law
On March 24, 2022, Utah became the fourth state in the U.S., following California, Virginia and Colorado, to enact a consumer data privacy law, the Utah Consumer Privacy Act. The law will take effect on December 31, 2023.
Continue Reading Utah Becomes Fourth U.S. State to Enact Consumer Privacy Law
EDPB Adopts Guidelines on Codes of Conduct as Tools for Transfers
Posted on
Posted in European Union, International
On February 22, 2022, the European Data Protection Board adopted its final Guidelines 04/2021 on Codes of Conduct as tools for transfers, following a public consultation that took place in 2021.
Continue Reading EDPB Adopts Guidelines on Codes of Conduct as Tools for Transfers
French CNIL Releases 2022 Enforcement Priorities
Posted on
On February 15, 2022, the French Data Protection Authority published its enforcement priority topics for 2022, which focused on direct marketing, monitoring teleworking employees and cloud computing. …
Continue Reading French CNIL Releases 2022 Enforcement Priorities
CNIL Published Guidelines on Re-Use of Personal Data by Data Processors
Posted on
Posted in European Union, International
The CNIL recently published guidelines on the re-use of personal data by data processors for their own purposes (such as product improvement or development of new products and services) under the GDPR. We have outlined key takeaways from the Guidelines in this blog post.
Continue Reading CNIL Published Guidelines on Re-Use of Personal Data by Data Processors
EDPS Issues Decision on EU Parliament’s Cookie Violations
Posted on
Posted in European Union, International
The European Data Protection Supervisor recently issued a decision against the European Parliament in a case that resulted from a complaint submitted by certain Members of the European Parliament who alleged that the Parliament’s use of cookies violated data protection law, including requirements regarding the transfer of personal data outside of the EU. …
Continue Reading EDPS Issues Decision on EU Parliament’s Cookie Violations