AI browsers leak personal data
Study finds major AI browser assistants transmit sensitive personal data, likely breaching GDPR and requiring stronger consent, transparency, and technical safeguards.
data minimization
Spains DPA fines hotels over scanning guest identity documents
AEPD fines Iberostar unit €70,000 for requiring full ID copies at booking; authority stresses GDPR data minimisation and that copies are unnecessary and risky for guest registration.
McDonald’s in Poland Fined €3.6 million for Employee Data Exposure and Security Failures
Polish Data Protection Authority fined McDonald’s and its processor over €3.6 million for GDPR violations after employee data exposure due to poor security and oversight.
EDPB Issues Guidelines on Legitimate Interest for Data Processing
The EDPB has issued guidelines on legitimate interests in data processing, emphasizing strict interpretation and the necessity of balancing individual rights.
Schrems wins another case over Meta
Schrem’s privacy case against Meta highlights GDPR violations regarding the processing of personal data on sexual orientation, impacting ad targeting practices.
Belgian Supreme Court rules that GDPR fine may imposed even where a data subject’s personal data were not processed
The Belgian Supreme Court ruled that a data subject has the right to lodge a complaint with the Data Protection Authority against a processing practice that violates the GDPR, even where the data subject’s personal data were not processed.
Brussels Court of Appeal overrules first DPA fine to a private company
On Feb. 19, the Brussels Court of Appeal overruled one of the first decisions of the Belgian Data Protection Authority […]
How to apply the GDPR data minimization principle to online sales
Online services and online sales are some of the areas that have potentially the most to gain and the most […]