German data retention rules not compatible with EU law, says top court
The Court of Justice of European Union (CJEU) ruled Tuesday that data retention in Germany is not compatible with EU law.
GDPR News
CJEU Advocate General Finds That Data Subjects May in Parallel Lodge a Complaint with a Supervisory Authority and Start Proceedings Before a Court
The Advocate General of the CJEU opined that data subjects should be able to lodge a complaint with a DPA and, in parallel, lodge judicial redress proceedings.
Proliferating privacy laws, changes in data gathering worry marketers
Consumers don’t see value of sharing data and marketers want a “one size fits all” privacy law, the IAB finds.
Irish DPC submits Article 60 draft decision on inquiry into TikTok
The DPC submitted a draft decision in a large scale inquiry into TikTok Technology Limited to other Concerned Supervisory Authorities across the EU.
EU Publishes Draft Cyber Resilience Act
The European Commission published a draft regulation that sets out cybersecurity requirements for “products with digital elements” placed on the EU market.
Lack of resources puts enforcement of individuals’ data protection rights at risk
Chair of the EDPB and EDPS expressed their concerns over their budget next year.
Czech Presidency puts forward narrower classification of high-risk systems in AI Act
A new partial compromise on the AI Act further elaborates on the concept of the ‘extra layer’ that would qualify an AI as high-risk.
Italy backs ban on data tracking in political ads, France hesitates
Italy supports a full ban on targeted advertising based on the tracking of users, but France seems to be on the fence.
Irish data protection watchdog defends handling of social media investigations
Ireland’s regulator has long faced criticism from civil liberties groups in Ireland and across Europe, accusing it of being too soft and too slow.
Czechia pitches compromise on Data Act
The Czech Presidency of the EU Council circulated a new partial compromise on the upcoming data law.
G-7 Privacy Regulators Aim To Ease Turbulent International Data Flows
The goal of the meetings is to gradually align the regulators’ approaches to privacy and better understand domestic rules in each jurisdiction.
CNIL fines Infogreffe 250,000 euros
The CNIL imposed a fine of 250,000 euros on INFOGREFFE for braching several GDPR obligations regarding the retention periods and security of personal data.
