The CJEU ruled GDPR does not create a mandatory right to a preventive injunction but allows compensation for moral harm even for non‑serious distress, and injunctions cannot replace damages.
Court of Justice rules SRB should have informed Banco Popular claimants before sharing their comments, clarifies assessment of pseudonymisation and controller-focused identifiability under EU data law.
Meta appeals the General Court’s dismissal of its challenge to EDPB Opinion 08/2024, arguing procedural and legal errors on reviewability, liability, judicial protection, and reasoning.
Eu court dismissed Latombe’s annulment of the EU‑US Data Privacy Framework, allowing data transfers to continue while advocates signal likely further legal challenges.
The EU has started the process for a GDPR adequacy decision with Brazil, enabling secure cross-border data flows if safeguards, oversight and remedies meet EU standards.
The CNIL fined Google (€325M) and SHEIN (€150M) for cookie and ad consent breaches, stressing free, informed consent and sanctioning covert tracking and cookie-wall practices.
Searchable links to Grok chat transcripts have exposed hundreds of thousands of user conversations, raising serious GDPR and privacy concerns about shared AI chats.
The Austrian Federal Administrative Court confirmed that newspaper Der Standard breached the EU’s data protection rules by using a “pay […]
Ombudsman complaints and a Parliament–Council split have prolonged the appointment of the next EDPS, centering on independence concerns over a Commission insider versus continuity with the incumbent.
Study finds major AI browser assistants transmit sensitive personal data, likely breaching GDPR and requiring stronger consent, transparency, and technical safeguards.
AEPD fines Iberostar unit €70,000 for requiring full ID copies at booking; authority stresses GDPR data minimisation and that copies are unnecessary and risky for guest registration.
EDPS finds the European Commission’s Microsoft 365 use compliant with Regulation (EU) 2018/1725 after contractual, technical and organisational measures addressed purpose limitation, transfers and disclosures.