On November 25, 2022, Ireland’s Data Protection Commission released a decision fining Meta Platforms, Inc. €265 million for a 2019 data leak involving the personal information of approximately 533 million Facebook users worldwide.
Continue Reading Irish Data Protection Commission Fines Meta €265 Million for Privacy Violations
Data Protection Authority
Italian Supreme Court Grants Global Delisting Order Under National Law
On November 15, 2022, the Italian Supreme Court held that an Italian court or competent data protection authority has jurisdiction to issue a global delisting order. …
Continue Reading Italian Supreme Court Grants Global Delisting Order Under National Law
The UK ICO and Ofcom to Work Together on Online Safety and Data Protection
On November 25, 2022, the UK Information Commissioner’s Office and the UK’s communications regulator, Ofcom, issued a joint statement setting out how they intend to work together to “ensure coherence between the data protection and the new online safety regimes.”…
Continue Reading The UK ICO and Ofcom to Work Together on Online Safety and Data Protection
UK ICO Publishes New Guidance and a Tool for Transfer Risk Assessments
On November 17, 2022, the UK Information Commissioner’s Office published updated guidance on international transfers that includes a new section on transfer risk assessments and a transfer risk assessment tool. …
Continue Reading UK ICO Publishes New Guidance and a Tool for Transfer Risk Assessments
CIPL Publishes White Paper on Protecting Children’s Data Privacy
On October 20, 2022, the Centre for Information Policy Leadership at Hunton Andrews Kurth published a white paper entitled Protecting Children’s Data Privacy, Policy Paper I, International Issues and Compliance Challenges.
Continue Reading CIPL Publishes White Paper on Protecting Children’s Data Privacy
UK Information Commissioner’s Office Fines Construction Company £4.4 Million for Breach of Security Obligations
On October 24, 2022, the UK Information Commissioner’s Office issued a £4.4 million fine to Interserve Group Limited for failing to keep employee personal data secure, which violates Article 5(1)(f) and Article 32 of the GDPR, during the period of March 2019 to December 2020.
Continue Reading UK Information Commissioner’s Office Fines Construction Company £4.4 Million for Breach of Security Obligations
UK ICO Issues TikTok Notice of Intent with Possible £27 Million Fine for Children’s Privacy Violations
On September 26, 2022, the UK Information Commissioner’s Office confirmed in a statement that it issued TikTok Inc. and TikTok Information Technology UK Limited a notice of intent to potentially impose a £27 million fine for failing to protect children’s privacy. …
Continue Reading UK ICO Issues TikTok Notice of Intent with Possible £27 Million Fine for Children’s Privacy Violations
Danish DPA Declares Use of Google Analytics Unlawful Without Supplementary Measures
On September 21, 2022, Denmark’s data protection authority Datatilsynet announced its guidance that Google Analytics, Google’s audience measurement tool, is not compliant with the EU General Data Protection Regulation. …
Continue Reading Danish DPA Declares Use of Google Analytics Unlawful Without Supplementary Measures
Irish Data Protection Commissioner Fines Instagram for Children’s Privacy Violations
On September 5, 2022, the Irish Data Protection Commissioner imposed a €405,000,000 fine on Instagram for violations of the EU General Data Protection Regulation’s rules on the processing of children’s personal data. …
Continue Reading Irish Data Protection Commissioner Fines Instagram for Children’s Privacy Violations
Irish Data Protection Commission Moves to Block Meta Transfers
Only July 7, 2022, the Irish Data Protection Commission sent a draft decision to other European Union data protection authorities, proposing to block Meta’s transfers of personal data from the EU to the United States. …
Continue Reading Irish Data Protection Commission Moves to Block Meta Transfers