On January 12, 2023, the French Data Protection Authority announced that it imposed a €5,000,000 fine on social network TikTok at the end of 2022 for violations of applicable cookies rules.
Continue Reading CNIL Fines TikTok 5 Million Euros Over Cookie Infringements
EU Member States
Meta Fined €390 Million by Irish DPC for Alleged Breaches of GDPR, Including in Behavioral Advertising Context
On January 4, 2023, the Irish Data Protection Commission announced the conclusion of two inquiries into the data processing practices of Meta Platforms, Inc. on the Instagram and Facebook platforms. …
Continue Reading Meta Fined €390 Million by Irish DPC for Alleged Breaches of GDPR, Including in Behavioral Advertising Context
New Cybersecurity Directives (NIS2 and CER) Enter into Force
On January 16, 2023, the Directive on measures for a high common level of cybersecurity across the Union and the Directive on the resilience of critical entities entered into force.
Continue Reading New Cybersecurity Directives (NIS2 and CER) Enter into Force
Belgian DPA Approves IAB Europe’s Action Plan For Consent Framework
On January 11, 2023, the Belgian Data Protection Authority announced that it has approved the Interactive Advertising Bureau Europe’s action plan with respect to its Transparency and Consent Framework. …
Continue Reading Belgian DPA Approves IAB Europe’s Action Plan For Consent Framework
CNIL Fines Apple 8 Million Euros Over Personalized Ads
On December 29, 2022, the French Data Protection Authority announced that it imposed an €8,000,000 fine on Apple for violations of the French rules on targeted advertising and the use of cookies and similar tracking technologies.
Continue Reading CNIL Fines Apple 8 Million Euros Over Personalized Ads
European Commission to Start Adequacy Decision Adoption Process for the EU-U.S. Data Privacy Framework
On December 13, 2022, the European Commission launched the process for the adoption of an adequacy decision for the EU-U.S. Data Privacy Framework.
Continue Reading European Commission to Start Adequacy Decision Adoption Process for the EU-U.S. Data Privacy Framework
Irish Data Protection Commission Fines Meta €265 Million for Privacy Violations
On November 25, 2022, Ireland’s Data Protection Commission released a decision fining Meta Platforms, Inc. €265 million for a 2019 data leak involving the personal information of approximately 533 million Facebook users worldwide.
Continue Reading Irish Data Protection Commission Fines Meta €265 Million for Privacy Violations
Public Access to Information on Company Beneficial Ownership is a Violation of Privacy According to the CJEU
On November 22, 2022, the Court of Justice of the European Union determined in a preliminary ruling that the general public’s access to information on beneficial ownership constitutes a serious interference with the fundamental rights to respect for private life and to the protection of personal data, enshrined in Articles 7 and 8 of the Charter of Fundamental Human Rights. …
Continue Reading Public Access to Information on Company Beneficial Ownership is a Violation of Privacy According to the CJEU
Italian Supreme Court Grants Global Delisting Order Under National Law
On November 15, 2022, the Italian Supreme Court held that an Italian court or competent data protection authority has jurisdiction to issue a global delisting order. …
Continue Reading Italian Supreme Court Grants Global Delisting Order Under National Law
EU Digital Markets Act Enters into Force
On November 1, 2022, the Digital Markets Act entered into force. This blog entry provides a summary of the compliance requirements of the Act.
Continue Reading EU Digital Markets Act Enters into Force