DPIA

Young woman with brown hair tied back, wearing a white shirt, faces forward. Digital facial recognition overlay surrounds her face, with graphics including world map, bar charts, and circular data indicators in a futuristic, transparent interface. Blurred background.

June 16, 2025

Data Protection Commission Issues €550,000 Fine Over DSP Biometric Data Use

The DPC fined the Department of Social Protection €550,000 for GDPR violations related to biometric data processing in Public Services Card registration.

A humanoid robot with blue eyes and a white face is on the left side, displaying a neutral expression. The background features a pattern of interconnected circuit lines and nodes against a dark blue backdrop, symbolizing technology and digital networks.

July 3, 2024

EU Data Protection Supervisor Issues Guidelines on Generative AI

New guidelines by the EDPS provide practical advice on using generative AI tools in EU institutions to comply with data protection laws under Regulation (EU) 2018/1725, emphasizing safeguarding individuals’ personal information and privacy.

A laptop on a wooden table displays a blue screen with a yellow padlock surrounded by twelve stars, symbolizing the European Union. A smartphone lies next to the laptop. The setting appears to be outdoors, with blurred greenery in the background.

February 20, 2023

German DSK Publishes Decision on the DPIA on Access of Third Country Public Authorities

the German Data Protection Conference issued a compelling statement regarding third country public authorities’ access to personal data.

March 3, 2022

When are you switching on E2EE, Dutch govt asks Microsoft

You need to switch on E2EE in group meetings, watch out for US Cloud Act, warns impact assessment.

A person in a plaid shirt gestures with their hands during a meeting. In front is an open laptop displaying a colorful graph or chart, a notebook, and a smartphone on a wooden table. Another person is blurred in the background, suggesting a group discussion.

December 2, 2020

IAB releases DPIA guidance for Digital Advertising under GDPR

IAB has developed and published practical guide to carrying out data protection impact assessments (DPIA) under the EU’s General Data […]

June 3, 2020

UK’s COVID-19 tracing app launched before DPIA completion

It has emerged that the UK’s Coronavirus Test and Trace programme failed to complete a data protection impact assessment (DPIA) […]

August 22, 2019

On privacy impact assessment and leaking data of millions of users

Anonymizing location data is hard. If you absolutely need to do this, better consult someone knowledgable. Privacy impact assessments should […]

August 2, 2019

New DPIA on Microsoft Office and Windows software: still privacy risks remaining

Three new DPIAs, which Privacy Company has carried out for the central Dutch government, show that Microsoft has mitigated the […]

May 9, 2019

The Spanish DPA publishes a list of processing operations for which a DPIA is mandatory

After having received the favorable opinion of the European Data Protection Board, the Spanish Data Protection Agency (“AEPD”) released last […]

March 4, 2019

Belgian DPA Publishes Updated List of Processing Activities Requiring DPIA

The Belgian Data Protection Authority recently published (in French and in Dutch) the updated list of the types of processing activities which require […]

January 7, 2019

ICO updates data protection impact assessment guide

The revised guidance, published by the Information Commissioner’s Office (ICO), contains changes in response to recommendations issued by an EU-wide […]

November 11, 2018

CNIL Publishes DPIA Guidelines and List of Processing Operations Subject To DPIA

On November 6, 2018, the French Data Protection Authority (the “CNIL”) published its own guidelines on data protection impact assessments […]

1 2 3 4