Free tools and resources for Data Protection Officers!

Tag Archives for " GDPR "

What can we learn from Google €50 million fine?

On 21 January 2019, French data protection authority Commission Nationale de l’Informatique et des Libertés (CNIL) imposed a penalty in amount of €50 million onGoogle’s U.S. headquarters – Google LLC – for infringements of General Data Protection Regulation (GDPR). Specifically, for lack of transparency, inadequate information and lack of valid consent regarding the ads personalization.



Continue reading »

Happy Data Protection Day!

Today is international Data Protection Day. Yes, that’s official day! Data Protection Day, or as it is called outside Europe – Privacy Day, is celebrated each January 28th already since 2007.



Continue reading »

Latest bits on privacy and cybersecurity #3

This weeks collection of latest privacy, data protection and cyber-security news and interesting articles. Enjoy the reading!

Six month prison sentence to employee for data misuse

A motor industry employee has been sentenced to six months in prison in the first prosecution to be brought by the Information Commissioner’s Office (ICO) under legislation which carries a potential prison sentence.

Continue reading »

Best picks on privacy

Collection of latest and most interesting news pieces, articles and publications from around the internet. You may also want to check all latest privacy and data protection news.

Facebook fined £500,000 for data breaches in Cambridge Analytica scandal

United Kingdom’s data protection authority ICO fined Facebook with maximum penalty of £500,000 for lack of transparency and failing to protect users’ information.

Continue reading »

The GDPR is on its way towards implementation into French law following a constitutional challenge

Following on from the article published on the dataprotection.blog on 24 January 2018 “French GDPR Implementation Bill – for French Data Protection Authority (“CNIL”) it could not come soon enough!”, Charlotte Gerrish provides us with the latest update on the status of the French GDPR Implementation Bill which, after surviving an attack of “unconstitutionality” before the French Constitutional Council, is now on its way into force.

As we stated back in January 2018, the French legislature had been fairly slow in pushing forward with the implementation of the GDPR into French national law. The progress of the Bill had not been without issues. On 16 May 2018, just 9 days before the GDPR was due to come into force, at least 60 French senators referred the Bill to the Constitutional Council claiming that certain provisions were unconstitutional and therefore contrary to French law and public policy (Affaire No. 2018-765 DC).

Continue reading »

What changes GDPR will bring?

While some tend to portray new European Union (EU) General Data Protection Regulation (“GDPR”) as menacing Apocalypse coming from nowhere, fact is that GDPR is an “upgrade” of existing EU data protection laws. EU Data Protection Directive (Directive 95/46/EC) was adopted already in 1995. In some countries – like Germany and Sweden – data protection laws were introduced even much earlier – in 1970s and 1980s.

GDPR keeps the basic principles of Data Protection Directive and ads new “layer” to it, aiming to unify data protection in all EU countries and bring more rights and control over data use back to individuals. In fact, GDPR incorporates guidance of data protection authorities and best practice in data protection. There almost nothing in GDPR that wouldn’t already exist somewhere. For example, data protection by design and by default principle originated back in 1980s, data protection officers already are mandatory requirement in Germany, and breach notification exist in communication sector for years.

But let’s look what exactly are the changes GDPR brings us.

Continue reading »

>