The EU’s stringent cyber posture, as reflected in the GDPR, while enhancing global norm building, inadvertently hampers small businesses and data-dependent public services due to its high compliance costs and limitations on data sharing.
Advocate General released an opinion on the concepts of “controller”, “joint controller” and “processor”, and also liability system established by the GDPR.
Advocate General of CJEU examined the interpretation of the civil non-material right to damages and duty of care concerning technical and organisational measures under.
Requiring a consent for marketing emails is acceptable prerequisite for lottery participation, says Finnish DPA.
EDPB has acknowledged the considerable improvements made in the proposed EU-U.S. Data Privacy Framework, but still much to be done.
Organizations in the EU have been hesitant to track DEI policies due to a misconception that this is a violation of the GDPR.