Swedish DPA Publishes New Accreditation Standards for GDPR Certification Bodies
IMY has established accreditation requirements for certification bodies to enhance GDPR compliance and data protection in Sweden and the EEA.
DPA
X Stops Using European User Data for AI Training
Elon Musk’s X has agreed to stop processing EU users’ data for AI training, following intervention by the Irish Data Protection Commission.
Noyb Challenges Hamburg DPA Over Der Spiegel’s Pay or OK Model
Noyb is suing the Hamburg data protection authority to overturn its ruling that Der Spiegel’s “pay or OK” model is lawful, claiming the authority acted as both advisor and judge.
French Data Protection Authority (CNIL) Gains New Powers
France’s law No. 2024-449 enhances the CNIL’s enforcement powers, enabling document seizure and oversight of digital service regulations.
Regulators Challenge X’s Data Collection for AI Training
X faces scrutiny from UK and Irish regulators over default settings allowing user posts to be used for AI training without explicit consent.
Spanish Court Sentences Minors for AI-Generated Nude Images
Spanish youth court sentences minors for spreading AI-generated nude images, raising concerns about the misuse of AI for harassment and the importance of stricter regulations and education on responsible technology use.
noyb publishes Consent Banner Report: EDPB vs National DPAs
This report by noyb offers insights for companies implementing consent banners, highlighting the varying standards between the EDPB and national DPAs.
Meta Under Investigation in Spain for GDPR Violations
National Court Prosecutor’s Office initiates investigation into Meta’s potential GDPR violations.
Court reduces Spotify GDPR fine to 4 Million Euros
The Administrative Court reduced Spotify AB’s GDPR sanction to 40 million euros.
Vinted Faces €2.4M Penalty from Lithuanian DPA for GDPR Non-Compliance
Lithuanian Data Protection Authority fines Vinted, UAB €2.4M for GDPR violations related to personal data processing, emphasizing compliance and enforcement measures.
Dutch DPA fights algorithmic discrimination
The 2023 benefits scandal in the Netherlands revealed ongoing challenges with algorithmic discrimination, prompting the Dutch Data Protection Authority to enhance oversight and collaboration with European privacy regulators to address privacy violations effectively.
Lithuanian DPA publishes Recommendation on the processing of criminal record data by the employer
Recomendations provide detailed guidance to employers in Lithuania on the legal requirements and best practices for processing criminal record data of employees and job candidates.