This opinion provides guidance on the way to interpret and implement the right to data portability as introduced by the GDPR. It aims at discussing the right to data portability and its scope. It clarifies the conditions under which this new right applies taking into account the legal basis of the data processing (either the data subject’s consent or the necessity to perform a contract) and the fact that this right is limited to personal data provided by the data subject. The opinion also provides concrete examples and criteria to explain the circumstances in which this right applies.
TikTok Fined €530 Million for GDPR Violations Over Data Transfers to China
The Irish DPC fined TikTok €530 million for GDPR breaches related to inadequate protection of European user data transferred to […]