On April 9, 2019, the UK Information Commissioner’s Office levied one of its most significant fines under the Data Protection Act 1998 against Bounty (UK) Limited.
Continue Reading
Penalty
Nigeria Issues New Data Protection Regulation
Posted on
Nigeria’s National Information Technology Development Agency recently issued the Nigeria Data Protection Regulation 2019. This blog entry provides key elements of the Regulation.…
Continue Reading
Dutch DPA Updates Policy on Administrative Fines
Posted on
On March 14, 2019, the Dutch Data Protection Authority published a press release announcing its policy for calculating administrative fines.…
Continue Reading
CIPL Issues White Paper on Principles for a Revised U.S. Privacy Framework
Posted on
The Centre for Information Policy Leadership at Hunton Andrews Kurth LLP has issued a white paper on Ten Principles for a Revised U.S. Privacy Framework.…
Continue Reading
FTC Issues Record $5.7 Million COPPA Penalty Against Musical.ly
Posted on
Posted in Children’s Privacy, U.S. Federal Law
On February 27, 2019, the Federal Trade Commission announced a record $5.7 million civil penalty against popular video creation and sharing app Music.ly (now known as TikTok) for violations of U.S. children’s privacy rules.…
Continue Reading
European Commission Issues GDPR Infographic
Posted on
Posted in European Union, International
On January 25, 2019, the European Commission issued an infographic on compliance with and enforcement and awareness of the GDPR since it took force on May 25, 2018.…
Continue Reading
CNIL Fines Google €50 Million for Alleged GDPR Violations
Posted on
On January 21, 2019, the CNIL imposed a fine of €50 million on Google LLC under the GDPR, its first fine under the GDPR and the highest fine imposed by a supervisory authority within the EU under the GDPR to date.…
Continue Reading
Advocate General Finds Search Engine Operators May Limit the Scope of Right to Be Forgotten to the EU
Posted on
Posted in European Union, International
On January 10, 2019, Advocate General Szpunar of the Court of Justice of the European Union issued an Opinion in the case of Google v. CNIL, which is currently pending before the CJEU. In its Opinion, the Advocate General provided his views concerning the territorial scope of the right to be forgotten under the EU Data Protection Directive.…
Continue Reading
CNIL Fines French Telecom Operator for Data Security Failure
Posted on
On December 27, 2018, the CNIL announced that it imposed a fine of €250,000 on the French telecom operator Bouygues Telecom for failure to protect the personal data of the customers of its mobile package. This blog entry provides details on the decision.…
Continue Reading
CNIL Fines Uber for Data Security Failure Related to 2016 Data Breach
Posted on
On December 20, 2018, the CNIL announced that it imposed a fine of €400,000 on Uber France SAS for failure to implement some basic security measures which resulted in the 2016 Uber data breach.…
Continue Reading