The study finds that while the General Data Protection Regulation (GDPR) lays down horizontal directly applicable rules in all Member States, there remains variation in the range of national-level legislation linked to its implementation in the area of health.
This paper approaches data portability from a privacy and data protection perspective, noting there may be flow-on effects on competition and benefits for consumers resulting from a data portability implementation.
This paper outlines privacy and data protection concerns of this tracking, profiling and targeting ecosystem that can also be used beyond digital advertising to seek to manipulate the opinion forming process, and there are significant concerns about the consequences of this ecosystem for democracy.
The Court of Justice of the European Union (‘CJEU’) published its updated case-law fact sheet on data protection.
This project is a research and advocacy initiative launched by BEUC and aimed at addressing the issues that plague the digital consumers of today and undermine the digital society as a whole.
These guidelines identify some of the most relevant compliance challenges regarding use of virtual voice assistant (VVA) and provide recommendations to relevant stakeholders on how to address them.
This EPRS in-depth analysis reviews and assesses trade dealings, adequacy challenges and transfer instruments under the EU’s General Data Protection Regulation (GDPR).
The purpose of this document is to provide a practical guide to carrying out legitimate interests assessments (LIAs) in the context of processing data in ad tech, for digital advertising generally, and for RTB, in order to help companies understand their obligations, and how to comply with them in practice.
This document establishes guidelines for the encryption and use of user-provided IDs – notably email addresses and phone numbers – in scenarios when online publishers or marketers offer personalized content or services tied to a user-provided email or phone number.
This study reviews the main legal and regulatory challenges associated with online platform (OP) operations and analyses the incentives for OPs, their users and third parties to detect and remove illegal or harmful and dangerous material, content and/or products.
The purpose of this guidance is to assist elected representatives in having a strong awareness of their obligations and responsibilities as data controllers under the GDPR and the DPA 2018.