All General Data Protection Regulation articles – Page 6
-
Article
Third time’s the charm? Agreement in principle reached on U.S.-EU data flows
The United States and European Union have reached an agreement in principle on how to handle transatlantic data flows, a thorny issue that has resulted in two prior frameworks being scrapped by the EU’s top court.
-
Article
New ICO head strives for reassurance in first speech
John Edwards, head of the U.K. Information Commissioner’s Office, said he wants to bring greater certainty for companies regarding their data compliance needs, especially if the government’s drive to reduce regulatory burdens results in the EU withdrawing its data adequacy decision.
-
Article
Momentum building toward Privacy Shield replacement?
Recent comments by EU and U.S. lawmakers and insights from privacy experts suggest a new mechanism to replace the defunct Privacy Shield and ensure safe transatlantic data transfers might soon be introduced.
-
Article
How EU regulators are warning of Russian data protection threats
Regulators in Norway, Germany, Lithuania, Estonia, Denmark, and Sweden address how companies can prepare for increased data protection and cybersecurity risks in the wake of Russia’s invasion of Ukraine.
-
Article
Meta fined $18.6M under GDPR for 2018 data breaches
The Irish Data Protection Commission fined Meta’s Irish subsidiary 17 million euros (U.S. $18.6 million) for a series of personal data breaches that took place nearly four years ago.
-
Article
Clearview AI fined $22M in Italy over unlawful data collection
Facial image aggregator Clearview AI was fined €20 million (U.S. $22 million) for unlawfully processing the biometric and geolocation data of Italian citizens in violation of privacy laws including the General Data Protection Regulation.
-
Article
Amazon transport arm GDPR fine imparts lesson on criminal record checks
Amazon Road Transport was fined €2 million (U.S. $2.2 million) for trying to carry out criminal record checks on freelance truck drivers it wanted to hire without Spanish law to back up the practice.
-
Article
IAB Europe fighting back against ‘grossly unfair’ GDPR fine
Townsend Feehan, chief executive of the European arm of the Interactive Advertising Bureau, discusses the ramifications of her organization’s €250,000 (then-U.S. $286,000) fine under the General Data Protection Regulation in Belgium.
-
Article
Telenor caught in GDPR conundrum over Myanmar subsidiary sale
A complaint filed with the Norwegian Data Protection Authority alleges Telenor’s progressing sale of its Myanmar-based subsidiary violates the EU’s General Data Protection Regulation by potentially exposing its customers in the region to military surveillance.
-
Article
Lawsuit by BitMEX co-founder could test GDPR’s reach over SARs
Ben Delo, co-founder of cryptocurrency exchange BitMEX, filed a complaint against Wise Payments after the company allegedly refused his requests under the General Data Protection Regulation to provide him with personal information it submitted via suspicious activity reports.
-
Article
Strategies for complying with multiple data privacy regimes
Complying with multiple data privacy regimes is not simple, but it is increasingly becoming expected. A panel at CW’s virtual Cyber Risk & Data Privacy Summit offered their advice regarding the current global privacy landscape.
-
Article
Why high-growth companies should prioritize data privacy
A group of experts at CW’s virtual Cyber Risk & Data Privacy Summit explained how complying with data privacy regulations from Day 1 can provide high-growth companies with certain competitive advantages.
-
Article
Transparency key to navigating modern employee monitoring risk landscape
The opening session of Compliance Week’s virtual Cyber Risk & Data Privacy Summit addressed the challenges of using technology to monitor employees while considering regulatory and ethical risks.
-
Article
How Accor manages global data privacy compliance
Marie-Christine Vittet, vice president of compliance at hospitality chain Accor, shares with Compliance Week the company’s journey toward a global data privacy compliance program.
-
Article
Cosmote, parent company OTE fined $10.6M under GDPR
The Hellenic Data Protection Authority fined mobile phone operator Cosmote and its parent company OTE a total of €9.25 million (U.S. $10.6 million) for a data breach caused by a September 2020 cyberattack and for illegally processing customer data.
-
Article
Meta threatens to pull Facebook, Instagram in Europe over GDPR data transfer dispute
Meta Platforms is threatening to pull down Facebook and Instagram in the European Union over concerns it cannot meet data-sharing rules set in the region’s General Data Protection Regulation.
-
Article
IAB Europe fined $286K under GDPR for data processing violations
The European arm of the Interactive Advertising Bureau was fined €250,000 (U.S. $286,000) by the Belgian Data Protection Authority for data privacy violations regarding its Transparency and Consent Framework.
-
Article
REWE International $9M GDPR fine a lesson in managing subsidiary risk
A recent decision by the Austrian Data Protection Authority against food retailer REWE International underlines the fact parent companies are ultimately responsible for how their subsidiaries manage people’s data, even if the offshoot entity operates separately.
-
Article
Italian DPA fines Enel Energia $30.1M under GDPR over telemarketing practices
Italian energy supplier Enel Energia has been fined €26.5 million (U.S. $30.1 million) under the General Data Protection Regulation for aggressive telemarketing.
-
Article
Report: GDPR fines surpass $1B in 2021; breach notifications also rise
Nearly €1.1 billion (U.S. $1.2 billion) worth of fines have been issued against organizations in the past year for violations of the General Data Protection Regulation, according to the latest annual report by law firm DLA Piper.