The French multinational retailer Carrefour has been fined €3m for multiple data protection failings. Data protection agency CNIL has fined two companies of the Carrefour Group for breaches of GDPR in several areas, including the obligation to inform individuals, use of cookies, limiting the retention of data, the obligation to facilitate the exercise of rights […]
data subject rights
Four Republican senators have introduced a privacy bill that would override state privacy laws, other than ones requiring notifications of data breaches. The proposed law would require companies to obtain consumers’ affirmative consent before transferring their “sensitive” information — which the bill defines as including financial account numbers, persistent identifiers, precise geolocation data, and data […]
The removal of nearly 200 links from Google search in Germany about a princess’ drunken rampage in Scotland raises questions about who has the ‘right to be forgotten.’ In 2014, German princess Theodora Sayn-Wittgenstein, 27 at the time, attended the University of St Andrews’ charity Oktoberfest, got drunk, assaulted police officers and first responders, and […]
On the 6 th of July 2020, the Dutch Data Protection Authority published its decision to impose a fine of 830,000 EUR on Stichting Bureau Krediet Registratie (BKR). BKR keeps an electronic file of the loans and debts people have in the Netherlands, stored in a central database. The fine has been imposed due to […]
On May 4, 2020, the Hungarian Government issued a Decree that suspends, during the COVID-19 created state of emergency, the one-month deadline that controllers have under the GDPR to reply to data subject rights requests. According to the Decree, the normal one-month deadline to reply to data subject rights requests will start running once the […]
Google won a battle over the right to be forgotten after France’s top administrative court canceled a fine of 100,000 euros ($111,000) for failing to remove contentious search results globally. France’s Council of State threw out the 2016 penalty, following guidance from the European Union’s highest court which last year backed the Alphabet Inc. unit […]
The EU’s General Data Protection Regulation (GDPR) is being misused by employers across Europe as trade unions are denied access to information required to recruit and organise workers, a new study has found. The trends highlighted in ETUC’s report bring to light the recent challenges for trade unions to mobilise their networks as a result […]
The Croatian data protection authority (AZOP) has imposed a fine of EUR 20m for violating the EU General Data Protection Regulation. Since October 2018, AZOP had been receiving multiple complaints from citizens regarding one of Croatia’s credit institutions based in Zagreb, whereby citizens were asking the institution for a request for information but were being […]
Facebook is now offering users a feature that lets them see what data it has collected about their activities beyond Facebook. But Facebook “Download Your Information” feature only gives you part of the picture. Information about advertisers uploading lists with your personal information is limited in time and prevents users from exercising their rights Source: […]
Google is planning to move its British users’ accounts out of the control of European Union privacy regulators, placing them under U.S. jurisdiction instead. The shift, prompted by Britain’s exit from the EU, will leave the sensitive personal information of tens of millions with less protection and within easier reach of British law enforcement. Source: […]