Tag: consumer data protection

Data protection & privacy digest 16 Dec – 2 Jan 2023: US signals intelligence redress mechanism, “dormant” privacy risk assessment, data brokerage

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes and redress: US signals intelligence redress mechanism, Google search results removal, California consumer privacy rights, Australia Privacy Act review The US Office of the Director of National Intelligence, (ODNI), published a directive for implementing the signals intelligence redress mechanism created under the […]

Data protection & privacy digest 1 – 15 December 2022: draft US adequacy decision, Microsoft ‘data boundary’ for the EU, Age-appropriate design code

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: draft US adequacy decision, EDPB’s binding decisions, AI Act The EU issued a draft adequacy decision for the United States, saying US safeguards against America’s intelligence activities were strong enough to address EU concerns on data transfers. Previously, personal data could be […]

Data protection & privacy digest 9 – 30 November 2022: Microsoft 365 non-compliance, Meta “data scraping” fine, Amazon Prime class action

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: Microsoft Office 365 cloud services, privacy complaints, lead supervisory authority, NIS2 Directive, Australia data breach penalties The German Data Protection Conference negatively assessed the data processing agreements for Microsoft 365 cloud services, regarding the requirements of Art. 28 of the GDPR. The […]

Data protection & privacy digest 16 – 29 August 2022: data subject complaints, inappropriate reliance on consent & Smart TV reset

TechGDPR’s review of international data-related stories from press and analytical reports. Official guidance: data subject complaints, new business, ID cards, traffic licenses, TCF and OpenRTB, education platforms, insolvency claims, data sent by mistake, DPO The UK Information Commissioner’s Office offers a brief guide on how to deal with data subject complaints, (your staff, contractors, customers), […]

Data protection & privacy digest 2 – 15 August 2022: commercial surveillance, sensitive data “by comparison”, worker electronic monitoring

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: commercial surveillance, sensitive data “by comparison and deduction”, workers electronic monitoring, farming data The CJEU’s recent decision may have a major impact on digital services that use background tracking and profiling to target users with behavioral ads, TechCrunch reports. The EU top […]

Weekly digest 11 – 17 July 2022: patient rights, land registers, user-generated health data, targeted ads & privacy

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: patient rights vs data access rights The Belgian data protection authority has clarified the right of access and right to rectification regarding medical records under the GDPR and the patient rights legislation. The subject of the complaint was a medical report drawn […]

Weekly digest 27 June – 03 July 2022: credential stuffing, misconfigured cloud storage, mobile devices at work, drones & privacy

TechGDPR’s review of international data-related stories from press and analytical reports. Official guidance: credential stuffing, patient privacy, use of drones The latest report from international data protection and privacy authorities has identified credential stuffing as a significant and growing cyber threat to personal information. A credential stuffing attack is a cyber-attack method that exploits an […]

Weekly digest May 9 – 15, 2022: UK data protection reform, and dark patterns invalidating consent

TechGDPR’s review of international data-related stories from press and analytical reports. Legal Processes: UK data protection reform Last week in the Queen’s Speech it was announced that the UK’s data protection regime will be reformed through the introduction of the Data Reform Bill, dataprotectionlawhub.com reports. The Bill’s purpose is to “create a trusted UK data […]

Weekly digest May 2 – 8, 2022: DPO dismissals, shareholders, athletes privacy, passwordless future & more

TechGDPR’s review of international data-related stories from press and analytical reports. Legal Processes and Redress: DPO dismissals, Connecticut privacy draft law, EU Health Data Ius Laboris blogpost explains when data protection officers have special protection from dismissal. Art. 38(3) of the GDPR expressly states that the data protection officer shall not be dismissed or penalised […]

Weekly digest April 25 – May 1, 2022: class actions authorised in EU data protection cases

TechGDPR’s review of international data-related stories from the press and analytical reports. Legal Processes and Redress: consumer data class actions, digital content and services, CCPA & CPRA The ECJ ruled that consumer protection associations may bring representative actions against infringements of personal data protection. Such class action may be brought independently of the specific infringement […]

Book a free consultation to discuss your DPO needs and the most suitable package

Request a free consultation