Category: GDPR

DATARINBOW

HAPPY PRIVACY DAY @)!( !!

apps demand access to your private information such as location, contacts and text messages. How would you react if real people demanded the same?

Google Subject to the Biggest Fine Under GDPR

In what is today the biggest fine under the GDPR, the French Data Protection Authority CNIL investigated Google Android transparency in Data procession. The investigation was consecutive to two class actions filed on the 25th of May 2018. One by the Austrian NGO Non Of Your Business (NOYB), another by the French La Quadrature du Net (LQDN). This decision worth a close look.

Navigating the new EU Data Protection Rules

The General Data Protection Regulation, or “GDPR” – “Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC. – was published 4 May 2016. Enforceable after a grace period of two year, from the 28th of May 2018.

Website transparency : Cookies and privacy notice

The General Data Protection Regulation (GDPR) is not against data processing when done in respect with the data subject rights. The amount of electronically available data and curation and storage tools, justify a better protection. Privacy is a Fundamental Human Right, for dignity and freedom.

GDPR Material and Territorial Scopes

There has been and still remains interrogations and uncertainties around the scope of application of the General Data Protection Regulation.

What is Protected by the GDPR ?

The General Data Protection Regulation applies to Personal Data. But do we know what exactly defines Personal Data? The UK ICO recently published a clarification document.

Why Privacy Matters

The crumbs of information left behind, get aggregated and build a picture, sometimes distorted, that follows us.

What to retain from the GDPR after BREXIT

Since the UK referendum vote for BREXIT much has been speculated about the situation of the UK with regard to compliance to the GDPR enforceable from 28 May 2018. Although they are uncertainties, the recent UK Information Commissioner speech has reinforced the opinion that UK businesses need to get ready to comply.

French CNIL’s six first month of GDPR

The CNIL investigated mobile applications using embedded software development kit (SDK) and ad biding gathering personal data even when the application is not in use. The data collection is activated by default, which is contrary to the principal of privacy by design.

After Air Canada Breach Here Comes British Airways

Hundreds of thousands lose bank details as British Airways hacked Data stolen from hundreds of thousands of British Airways customers in major breach A data breach follows a data breach. It’s not IF it’s when. Is your organisation ready to react? The New European Data Protection Regulation that entered into force on May 25 after…
Read more

Consenting to Consent Needs Consent?

UPDATE from the European Commission : Does consent given before 25 May 2018 continue to be valid once the GDPR starts to apply on 25 May 2018? A very much timely clarification from the ICO : Myth#9 We have to get fresh consent from all our customers to comply with the GDPR. Steve Wood, Deputy Commissioner busts…
Read more

Don’t Shoot the GDPR with the Grandma

A deluge of posts and articles have invaded the social media. How the GDPR could forbid a grandma to post her grand children’s photos online?!!!

The Right to be Forgotten is No Censorship

In its landmark decision Google Spain SL, Google Inc. v Agencia Española de Protección de Datos, Mario Costeja González of 13th May 2014, the Court of Justice of the European Union (CJEU) holds that: 1 – A search engine processes personal data; 2 – The search engine is a controller because it determines the purposes and means…
Read more