On May 17, 2023, the European Data Protection Board adopted the final version of its Guidelines on facial recognition technologies in the area of law enforcement.
Continue Reading EDPB Adopts Guidelines on Facial Recognition in the Area of Law Enforcement
EU Member States
CJEU Determines that a Mere Infringement of the GDPR is not Sufficient to Require Compensation
On May 4, 2023, the Court of Justice of the European Union issued a judgment in the Österreichische Post case. …
Continue Reading CJEU Determines that a Mere Infringement of the GDPR is not Sufficient to Require Compensation
EDPB Initiates Procedure for Electing a New Chair
On April 26, 2023, the European Data Protection Board (“EDPB”) initiated the procedure for electing a new Chair and Deputy Chair to replace Andrea Jelinek and Ventsislav Karadjov, whose mandates will end on May 25, 2023.
Continue Reading EDPB Initiates Procedure for Electing a New Chair
EDPB issues Its Opinion on the EU-U.S. Data Privacy Framework
On February 28, 2023, the European Data Protection Board issued its Opinion 5/2023 on the European Commission Draft Implementing Decision on the adequate protection of personal data under the EU-U.S. Data Privacy Framework. …
Continue Reading EDPB issues Its Opinion on the EU-U.S. Data Privacy Framework
CNIL Fines TikTok 5 Million Euros Over Cookie Infringements
On January 12, 2023, the French Data Protection Authority announced that it imposed a €5,000,000 fine on social network TikTok at the end of 2022 for violations of applicable cookies rules.
Continue Reading CNIL Fines TikTok 5 Million Euros Over Cookie Infringements
Meta Fined €390 Million by Irish DPC for Alleged Breaches of GDPR, Including in Behavioral Advertising Context
On January 4, 2023, the Irish Data Protection Commission announced the conclusion of two inquiries into the data processing practices of Meta Platforms, Inc. on the Instagram and Facebook platforms. …
Continue Reading Meta Fined €390 Million by Irish DPC for Alleged Breaches of GDPR, Including in Behavioral Advertising Context
New Cybersecurity Directives (NIS2 and CER) Enter into Force
On January 16, 2023, the Directive on measures for a high common level of cybersecurity across the Union and the Directive on the resilience of critical entities entered into force.
Continue Reading New Cybersecurity Directives (NIS2 and CER) Enter into Force
Belgian DPA Approves IAB Europe’s Action Plan For Consent Framework
On January 11, 2023, the Belgian Data Protection Authority announced that it has approved the Interactive Advertising Bureau Europe’s action plan with respect to its Transparency and Consent Framework. …
Continue Reading Belgian DPA Approves IAB Europe’s Action Plan For Consent Framework
CNIL Fines Apple 8 Million Euros Over Personalized Ads
On December 29, 2022, the French Data Protection Authority announced that it imposed an €8,000,000 fine on Apple for violations of the French rules on targeted advertising and the use of cookies and similar tracking technologies.
Continue Reading CNIL Fines Apple 8 Million Euros Over Personalized Ads
European Commission to Start Adequacy Decision Adoption Process for the EU-U.S. Data Privacy Framework
On December 13, 2022, the European Commission launched the process for the adoption of an adequacy decision for the EU-U.S. Data Privacy Framework.
Continue Reading European Commission to Start Adequacy Decision Adoption Process for the EU-U.S. Data Privacy Framework