CNIL publiskes recommendation on data sharing with APIs
The CNIL promotes the use of APIs for secure personal data sharing while outlining best practices for their design, deployment, and use.
guidance
German DSK Publishes Decision on the DPIA on Access of Third Country Public Authorities
the German Data Protection Conference issued a compelling statement regarding third country public authorities’ access to personal data.
Even the FBI says you should use an ad blocker
The feds say cybercriminals are buying online ads to impersonate brands with the aim of stealing or extorting money from victims.
UK ICO Publishes New Direct Marketing Guidance and Checklists
ICO published a package of detailed guidance and checklists for direct marketing activities.
New UK guidance on Transfer Risk Assessments
The UK’s Information Commissioner’s Office (ICO) published an update to its guidance on international transfers.
UK ICO Publishes Draft Employee Monitoring Guidance for Consultation
UK’s privacy watchdog launched a public consultation on its draft guidance on employers’ obligations when monitoring at work
German Federal Office for Information Security Publishes Security Requirements for Healthcare Apps
German Federal Office for Information Security published technical guidelines on security requirements for healthcare apps.
The CNIL publishes a guide for DPOs
France’s data prtoection authority has published a guide on appointing and supporting data protection officers.
EU’s data watchdog: International cooperation to fight crime should comply with EU law
EDPS published is Opinion onthe second Protocol to the Budapest Convention on Cybercrime.
CNIL sets parameters for processors’ reuse of data for product improvement
The guidance addresses question: when can a processor use personal data for purposes broader than just strictly providing services to the controller?
Belgian Data Protection Authority Clarifies Key Rules on Biometric Data Processing
The recommendation provides guidance on how to comply with the General Data Protection Regulation (GDPR) when processing biometric data.
Irish Regulator Pushed for ‘Monetisation of Personal Data’ In Data Protection Guidelines, Documents Reveal
The Irish Data Protection Authority pushed for a liberal interpretation of data protection law that would favour social media companies.