Tag: data subject access requests

Data protection & privacy digest 3 – 17 January 2023: personalised ads dilemma: contract as a legal basis, in-apps tracking via technical identifiers

TechGDPR’s review of international data-related stories from press and analytical reports. Ad Tech: Meta personalised ads, technical identifier system in Apple Store, IAB Europe’s consent mechanism Meta has a few months to reassess the valid legal basis for how Facebook and Instagram use personal data to target advertising in the EU after the media giant […]

Data protection & privacy digest 12 – 24 October 2022: first GDPR certification seal, test databases, password management

TechGDPR’s review of international data-related stories from press and analytical reports. Official guidance: first European data protection seal, GDPR harmonisation rules, data breach notification, children’s data protection, artistic and literary works The EDPB approved the very first European data protection seal, (see the detailed opinion here), under Art. 42 of the GDPR. Europrivacy became the […]

Data protection & privacy digest 27 Sept – 11 Oct 2022: New EU-US data privacy framework is now under EU legislators’ microscope

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: EU-US adequacy procedures, non-material damage in the GDPR, the DSA, Colorado draft privacy law, Andorra data protection regime On 7 October, President Biden signed an Executive Order on ‘Enhancing Safeguards for United States Signals Intelligence Activities’. Along with the Regulations issued by […]

Data protection & privacy digest 13 – 26 September 2022: Google Analytics clash, caller identification, commercial practices & GDPR

TechGDPR’s review of international data-related stories from press and analytical reports. Official guidance: Google Analytics, DP assessment tool, work monitoring, privacy policy check-list, Machine Learning, APIs The Danish data protection authority, following several other European counterparts’ decisions, concludes that the Google Analytics tool cannot be used legally without implementing several additional measures, (eg, effective pseudonymization […]

Weekly digest 11 – 17 July 2022: patient rights, land registers, user-generated health data, targeted ads & privacy

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: patient rights vs data access rights The Belgian data protection authority has clarified the right of access and right to rectification regarding medical records under the GDPR and the patient rights legislation. The subject of the complaint was a medical report drawn […]

Weekly digest 20 – 26 June 2022: future US data privacy law, new ban on GA, ‘watched from home’ employees

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: future US data privacy law, Canada’s Bill C-27 Last week the “American Data Privacy and Protection Act”, (ADPPA), was officially introduced to the US House of Representatives. The document, be it enforced by Congress, promises to provide consumers with foundational data privacy […]

Weekly digest 13 – 19 June 2022: privacy in the digital age, geolocation, access rights, ransom victim-shaming & more

TechGDPR’s review of international data-related stories from press and analytical reports. Legal Processes: UK data protection reform, privacy in the digital age The UK Government published its response to the “Data: a new direction” consultation ahead of data protection reform. During the consultation period, it engaged with a range of stakeholders, including over 40 roundtables […]

Weekly digest January 24 – January 31, 2022: GDPR jurisdictional reach, US surveillance laws, DP Engineering

TechGDPR’s review of international data-related stories from press and analytical reports. Legal Processes and Redress: GDPR jurisdictional reach, CNIL’s regulatory win over Google, CJEU case laws summary A recent UK Court of Appeal decision emphasizes the broad geographic scope of both the EU GDPR and the UK GDPR, but also ongoing uncertainty regarding the jurisdictional […]

Weekly digest December 13 – December 19, 2021: Grindr’s privacy fine, guide for SMEs and developers, 5G smart factories

TechGDPR’s review of international data-related stories from press and analytical reports. Data Breaches, Investigations and Enforcement actions: Grindr’s privacy fine in focus Norway’s Data Protection Authority has handed Grindr, the world’s largest social networking app for LGBTQ people, an over 6 mln euro privacy fine for disclosure of user data to third parties behavioural ads […]

Book a free consultation to discuss your DPO needs and the most suitable package

Request a free consultation