German Federal Office for Information Security published technical guidelines on security requirements for healthcare apps.
The guidance addresses question: when can a processor use personal data for purposes broader than just strictly providing services to the controller?
The recommendation provides guidance on how to comply with the General Data Protection Regulation (GDPR) when processing biometric data.
The Irish Data Protection Authority pushed for a liberal interpretation of data protection law that would favour social media companies.
The European Commission’s Bruno Gencarelli offers some clarity and updates on the state of EU data transfers at the IAPP Data Protection Congress 2021.
France’s data protection authority, the Commission nationale de l’informatique et des libertés, launched a public debate over its draft recommendation relating to terms of retention and use of data logs.