Estonia to limit telecommunication data retention obligation
Estonia’s Ministry of Justice faces challenges in aligning data retention policies with EU regulations while balancing privacy rights and national security.
CJEU
Schrems wins another case over Meta
Schrem’s privacy case against Meta highlights GDPR violations regarding the processing of personal data on sexual orientation, impacting ad targeting practices.
DPA is not obliged to impose sanctions, CJEU rules
Supervisory authorities under GDPR can choose not to impose penalties for data breaches if the controller has already taken corrective actions.
Germany to amend federal privacy law
The Draft Law amending the German Federal Data Protection Act (BDSG) introduces significant changes to data protection regulations in Germany, including the institutionalization of the Data Protection Conference (DSK) and amendments to data subject access rights and scoring practices.
CJEU upholds ruling on fingerprints for ID cards
The European Court of Justice upheld a regulation requiring two fingerprints on identity cards in Germany to combat identity theft, despite some civil rights activists expressing disappointment.
EU Civil Groups Challenge Meta’s Privacy Workaround
Civil society groups urge the EDPB to reject Meta’s “consent or pay” model, fearing it undermines EU privacy laws.
EU court clarifies auctioning of personal data for advertising
EU Court clarifies GDPR rules on personal data auctioning for ads, emphasizing consent and IAB Europe’s joint controller role.
CJEU rules on data storage under Law Enforcement Directive
CJEU decides on the implications of storing personal data of individuals convicted of crimes under EU Directive 2016/680, focusing on the right to erasure and the principle of proportionality.
Patients have the right to first copy of medical records free of charge, CJEU rules
Judgment by the EU top court clarifies the right of individuals to access their personal data undergoing processing.
EU Tribunal Rejects Suspension Request on Data Protection Framework
The President of the European Tribunal rejected a request for a suspension of execution regarding the EU-US data protection framework, stating that the plaintiff failed to prove urgency or potential for serious and irreparable harm.
EU court ruling on Meta may impact first party cookie use
CJEU has issued a ruling that could impact Meta’s ability to track user data across its platforms without explicit consent.