DPC Opens GDPR Inquiry into TikTok’s Transfers of EEA Data to China
The DPC has launched an inquiry into TikTok’s transfer of EEA user data to China, focusing on GDPR compliance and the legality of cross-border data transfers.
GDPR News
EDPB and EDPS Back GDPR Changes to Ease Administrative Burden
The EDPB and EDPS support the Proposal to simplify GDPR record-keeping rules by raising the employee threshold to 750 and extending measures to small mid-cap enterprises.
German Court Awards Facebook User €5,000 for Extensive Surveillance by Meta’s Business Tools
The Leipzig court awarded €5,000 to a Facebook user for GDPR violations by Meta’s Business Tools, establishing a precedent for compensation in European data protection cases.
Irish DPA Publishes 2025 Case Studies
The Irish Data Protection Commission’s 2025 case studies reveal key trends in GDPR enforcement, with fines up to €1.2 million for breaches involving access requests, security failures, and transparency issues.
CNIL Analysis Shows GDPR’s Economic Impact on Cybersecurity and Identity Theft Prevention
GDPR has significantly reduced cyber damages in the EU by encouraging better cybersecurity investments and lowering identity theft losses by up to €1.4 billion.
Germany’s Data Watchdog Calls for DeepSeek Ban
Germany’s data watchdog accuses DeepSeek of unlawful data transfers to China, prompting potential EU-wide app bans under GDPR rules.
New Regulation to Strengthen GDPR Enforcement and Cross-Border Cooperation
The EU’s new Draft Regulation aims to speed up GDPR enforcement by improving cooperation between data protection authorities and setting clear investigation deadlines.
Commission Officially Extends EU-UK Data Adequacy Decisions by Six Months
The EU Commission extended data adequacy decisions with the UK by six months to assess the new UK Data Bill while ensuring uninterrupted cross-border data flow.
Norway Proposes Law to Ban Social Media for Children Under 15
Norway proposes a law banning social media use for children under 15, raising GDPR consent age, and enhancing protections against online harm.
Data Protection Commission Issues €550,000 Fine Over DSP Biometric Data Use
The DPC fined the Department of Social Protection €550,000 for GDPR violations related to biometric data processing in Public Services Card registration.
Meta AI App Shares Private User Conversations Publicly Without Consent
Meta’s AI app exposes users’ private conversations publicly without clear consent, raising serious GDPR privacy and data protection concerns.
Swedish Court Uphelds GDPR Fine on Spotify for Data Processing Failures
Court upheld Spotify AB’s 5.2 million euros fine for failing to provide clear GDPR information and safeguards for personal data processing and transfers.