CNIL Publishes DPIA Guidelines and List of Processing Operations Subject To DPIA
On November 6, 2018, the French Data Protection Authority (the “CNIL”) published its own guidelines on data protection impact assessments […]
DPA
CNIL issues guidaince on Blockchain and the GDPR
When a blockchain contains personal data, the GDPR is applicable. The architecture and characteristics specific to blockchains will, however, have […]
Are you ready to report on GDPR compliance?
Organisations had two years to prepare for GDPR compliance in the run-up to May 25, 2018. Now that the GDPR […]
CNIL Details Rules On Audience and Traffic Measuring In Publicly Accessible Areas
On October 17, 2018, the French data protection authority (the “CNIL”) published a press release detailing the rules applicable to […]
ICO hits Leave.EU and Arron Banks insurance company with £135,000 in fines
An investigation conducted by the Information Commissioner’s Office (ICO) into a data breach suffered by Leave.EU has left the pro-Brexit […]
GDPR: companies should look beyond passwords, says ICO
Online service providers should consider alternatives to passwords to keep their systems secure and meet their obligations under data protection […]
The road to GDPR certifications won’t be a short one
The EU General Data Protection Regulation has been in effect for five months, and yet there has not been much […]
Average fine in UK for data breaches doubles to £146,000 in just a year
The average value of fines issued by the UK’s data protection authority doubled over the last year to reach £146,000. […]
Dutch data watchdog: PSD2 consent must be obtained ‘separately’
Third parties seeking access to payment account information held by banks must distinguish their requests to process customer data distinct […]
Portuguese hospital receives 400,000 € fine for GDPR infringement
On July 17, 2018, the Portuguese Supervisory Authority (“CNPD”) imposed a fine of 400.000 € on a hospital for infringement […]
What’s subject to a DPIA under the GDPR?
Under the European Data Protection Regulation, data protection impact assessments are required when data processing is “likely to result in […]
CNIL Publishes Statistical Review of Data Breaches Since GDPR
Recently, the French Data Protection Authority (the “CNIL”) published a statistical review of personal data breaches during the first four […]