Non compliance with the GDPR has three series of legal consequences : We’ve extensively heard of the administrative enforcement by national Data Protection Authorities. We have less heard of Criminal liabilities for non compliance, especially for the absence of measures of security. The third level is civil liability as set by the Article 82 GDPR.
Non-Material Damage Compensation Article 82 GDPR has created a right for compensation and edict the liability as a result of an infringement of this Regulation: Any person who has suffered material or non-material damage as a result of an infringement of this Regulation shall have the right to receive compensation from the controller or processor…
Read more
WhatsApp issued second-largest GDPR fine of €225 M
Cookies collect visitors data shared with third parties. They require transparency and prior consent.
The AdTech industry has become a monster controlled by very large, and most of the time unknown to the general public, actors, advertising intermediaries and brokers, exchanging personal data on real time bidding platforms. The deals are made only in a fraction of seconds on these data exchanges.
What would be the most effective way of enforcing the GDPR while giving incitement to comply without knocking the company, at the best of customers interest ? Will the ICO ever fine BA and Marriott? Should they ? A proposition for a more effective GDPR enforcement.
Mossack Fonseca hack and the Panama Papers scandal should have been a wake up call for all law firms to take clients data security more seriously. Here is Why we Should All Care About Panamapapers even if we have no offshore investment.
There has been questioning around the application of the GDPR to Royal Mail.
Personal data is the hot potato. If you do’t need it, don”t collect it, don’t keep it. Data minimisation will save you many troubles.
Access to knowledge for everyone in the increasingly-interconnected society has been a tool for democracy. We discuss here the dangers of a world online and the growing concerns about state surveillance, security, privacy and exploitation. We discuss our right to protect our individual freedom. We conclude that privacy is a fundamental Human Rights in order to guarantee human dignity and freedom.
Pre GDPR data privacy principles were ignored…and companies are still complacent as the ICO has been slow to fine organisations for failure to comply. Tara Taubman-Bassirian LLM, GDPR, Data Protection and IP consultant – Voted Privacy Hero of the Year, talks to Karla Reffold in a Cybertals interview about GDPR and the rights of Data Subjects.
2018 privacy hero of the year, Tara Taubman-Bassirian, discusses the EU GDPR, the increasing need for protecting privacy in the increasingly technology-rich environment, and some activities for Data Privacy Day on January 28, 2019. What are the benefits of GDPR? Where can it be improved upon? What do companies struggle with most for GDPR compliance? What is a “hot potato” GDPR issue? How are binding corporate rules (BCRs) used for non-adequate countries? How has Brexit impacted GDPR compliance? Why does privacy matter? What are the current largest threats to privacy? What are some activities for Data Privacy Day? Hear Tara discuss these topics, and more, with Rebecca.
Following an incident reported to the ICO in September 2018, the Information Commissioners Office (ICO), the UK’s data protection supervisory authority, investigated and uncovered that the personal data of up to 500,000 BA customers had been unlawfully accessed. The BA’s website had been diverted to a dummy site where customer details were harvested by hackers. Some credit cards long number and security codes had been discolosed causing serious security breaches. On 8th of July 2019, the ICO published a Notice of Intent to fine British Airways 183 million £.
In Germany, nationwide, fines have been issued in 41 cases because of GDPR violations. Especially small companies are apparently unprepared for the new rules.
Much confusion around the concept of Legitimate Interest justifying Personal Data Processing. Worth going back to the roots.
Data Security and Privacy interview of Tara Taubman-Bassirian by the Privacy Professor, Rebecca Herold, Tuesday at 2 PM PacificJanuary 22nd 2019: GDPR, Data Privacy Day and The Need for Privacy Episode Description 2018 privacy hero of the year, Tara Taubman-Bassirian, discusses the EU GDPR, the increasing need for protecting privacy in the increasingly technology-rich environment,…
Read more
In what is today the biggest fine under the GDPR, the French Data Protection Authority CNIL investigated Google Android transparency in Data procession. The investigation was consecutive to two class actions filed on the 25th of May 2018. One by the Austrian NGO Non Of Your Business (NOYB), another by the French La Quadrature du Net (LQDN). This decision worth a close look.
The General Data Protection Regulation, or “GDPR” – “Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC. – was published 4 May 2016. Enforceable after a grace period of two year, from the 28th of May 2018.
The General Data Protection Regulation (GDPR) is not against data processing when done in respect with the data subject rights. The amount of electronically available data and curation and storage tools, justify a better protection. Privacy is a Fundamental Human Right, for dignity and freedom.
There has been and still remains interrogations and uncertainties around the scope of application of the General Data Protection Regulation.
