On September 6, 2019, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth LLP submitted formal comments to the European Data Protection Board (the “EDPB”) on its draft guidelines on processing of personal data through video devices (the “Guidelines”). The Guidelines were adopted on July 10, 2019, for public consultation.

Continue Reading CIPL Submits Comments to the EDPB’s Draft Guidelines on Data Processing Through Video Devices

On August 21, 2019, the Belgian Data Protection Authority published a press release informing of its intention to further investigate a data breach that was notified by Adecco Belgium, a temporary employment agency.
Continue Reading Belgian DPA to Further Investigate Data Breach Affecting Temporary Employment Agency’s Employee Fingerprints

On August 12, 2019, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens, the “Dutch DPA”) announced its intent to approve Nederland ICT’s Data Pro Code (the “Code”), a code of conduct for the ICT sector. Nederland ICT represents data processors from the IT sector. Data processors that process personal data on behalf of and for a data controller can join this code of conduct. The draft decision of the Dutch DPA regarding the Code was published in the Official Journal of the Netherlands (the “Staatscourant”) on August 12 and interested parties have six weeks to submit their opinion on the draft decision.

Continue Reading Dutch DPA to Approve Netherlands Code of Conduct for ICT

On July 29, 2019, the Court of Justice of the European Union released its judgment in case C-40/17, Fashion ID GmbH & Co. KG vs. Verbraucherzentrale NRW eV, ruling that Fashion ID should be considered a joint controller with Facebook regarding the collection and disclosure of personal data to Facebook as a result of embedding the Facebook ‘Like’ button on its website.
Continue Reading CJEU Ruling on Websites Using Facebook ‘Like’ Buttons