EU
Facial recognition: 20 million euros penalty against CLEARVIEW AI
Following a formal notice which remained unaddressed, the CNIL imposed a penalty of 20 million euros and ordered CLEARVIEW AI to stop collecting and using data on individuals in France without a legal basis and to delete the data already collected. How does the CLEARVIEW AI’s facial recognition service works?…
Read More »Is the U.S. executive order the solution to data transfer?
The President of the United States has adopted the executive order to create the EU-US Data Privacy Framework, but is this the solution to the transfer of personal data out of the EEA? The big news is that President Biden signed the executive order from which the European Commission’s adequacy…
Read More »First reaction: Executive Order on US Surveillance unlikely to satisfy EU law
More than six months after an “agreement in principle” between the EU and the US, US President Joe Biden has signed the long-awaited Executive Order that is meant to respect the European Court of Justice’s (CJEU) past judgments. This is meant to overcome limitations in EU-US data transfers. The CJEU…
Read More »The EU-US Data Privacy Framework: A new era for data transfers?
The newly released White House executive order implementing the long-awaited EU-U.S. Data Privacy Framework clears a path for trans-Atlantic business and diplomacy alike. Since the Court of Justice of the EU’s “Schrems II” decision invalidated Privacy Shield more than two years ago, personal data flows from the EU to the U.S. have…
Read More »Google Faces Record $4 Billion Fine In Europe After Losing Android Antitrust Appeal
TOPLINE: Google may have to pay a record €4.125 billion ($4.12 billion) fine to the European Union in an antitrust case linked to its Android operating system for smartphones after losing a court appeal on Wednesday, a ruling that is likely to bolster the bloc’s ability to crackdown on big…
Read More »Instagram fined €405M for violating kids’ privacy
The Irish Data Protection Commission has fined Meta-owned social media platform Instagram €405 million for violations of the General Data Protection Regulation. The fine, which is the second-highest fine under the GDPR after a €746 million penalty against Amazon, is the third for a Meta-owned company handed down by the Irish regulator. In…
Read More »The Data Protection Commission is broken. Here is how to fix it
The EU General Data Protection Regulation (GDPR) came into effect in May 2018. It made Ireland’s Data Protection Commission (DPC) the lead EU supervisory authority for all companies that have their European headquarters here. This quirk of the law made Ireland a central jurisdiction in the global digital economy. It…
Read More »NOYB open letter on the new EU – US data deal
Max Schrems, through his organisation, ‘My Privacy is None of your Business’ (“noyb.eu”) has issued an open letter to U.S. and EU officials about the announcement of an ‘agreement in principle’ for a new Trans-Atlantic Data Privacy Framework (“letter”). The letter coincides with a visit to Washington, D.C. by a delegation of several members of the…
Read More »30 Biggest GDPR Fines So Far (2020, 2021, 2022)
The EU General Data Protection Regulation (GDPR) is among the world’s toughest data protection laws. Under the GDPR, the EU’s data protection authorities can impose fines of up to up to €20 million (roughly $20,372,000), or 4% of worldwide turnover for the preceding financial year – whichever is higher. Since the…
Read More »Record GDPR fine by the Hungarian Data Protection Authority for the unlawful use of artificial intelligence
The Hungarian Data Protection Authority (Nemzeti Adatvédelmi és Információszabadság Hatóság, NAIH) has recently published its annual report in which it presented a case where the Authority imposed the highest fine to date of ca. EUR 670,000 (HUF 250 million). The case involved the personal data processing of a bank (acting…
Read More »
Schrems II Judgment Day
The Court of Justice of the European Union (“CJEU“) issued its judgment today in …
