Data Protection Authority

On August 2, 2021, the Italian Data Protection Authority announced that it had levied a €2,500,000 fine on Deliveroo Italy s.r.l. for the unlawful processing of personal data of approximately 8,000 Deliveroo riders and various infringements of the GDPR.
Continue Reading Italian Garante Fines Deliveroo 2.5M Euros for Unlawful Processing of Personal Data

On July 16, 2021, the Luxembourg data protection authority (Commission nationale pour la protection des donées, “CNPD”) imposed a record-breaking €746 million fine on Amazon Europe Core S.à.r.l. for alleged violations of the EU General Data Protection Regulation (“GDPR”). The CNPD also ordered Amazon to revise certain of its practices.
Continue Reading Luxembourg DPA Fines Amazon 746 Million Euros for GDPR Violations

On June 29, 2021, the UK Department for Digital, Culture, Media and Sport (“DCMS”) published guidance for businesses on child online safety, which includes guidance on data protection and privacy, age-appropriate content, positive user interactions, and protecting children from online sexual exploitation and abuse.

Continue Reading DCMS and ICO Publish Guidance on Protecting Children Online

The Centre for Information Policy Leadership at Hunton Andrews Kurth recently submitted its comments on the Irish Data Protection Commissioner’s consultation on its Draft Regulatory Strategy for 2021-2026, in which the DPC sets out its vision for the next five years.
Continue Reading CIPL Responds to Irish DPC Consultation on Draft Regulatory Strategy

On June 17, 2021, Senator Kirsten Gillibrand (D-NY) announced the reintroduction of the Data Protection Act of 2021, which would create an independent federal agency, the Data Protection Agency, to “regulate high-risk data practices and the collection, processing, and sharing of personal data.”
Continue Reading Senator Gillibrand Announces Renewed Data Protection Act 2021

Earlier this month, the Belgian Data Protection Authority released its 2020 Annual Report, which showed the Belgian DPA’s focus on the supervision of initiatives to fight the COVID-19 pandemic involving data processing, while not losing sight of its other priorities outlined in its Strategic Plan 2020-2025.
Continue Reading Belgian Data Protection Authority Releases 2020 Annual Report

On June 4, 2021, the European Commission published the final version of the implementing decision on standard contractual clauses for transfers of personal data to third countries under the EU General Data Protection Regulation, as well as the final version of the new standard contractual clauses.
Continue Reading European Commission Publishes Final Version of Updated Standard Contractual Clauses