DPO Hub
  • Home
  • Topics
  • Filter
  • EDPB
  • CJEU
  • MM
  • Bookmarks
  • Community ↗️
Sign in Sign up
Sign up Sign in
  • Home
  • Topics
  • Filter
  • EDPB
  • CJEU
  • MM
  • Bookmarks
  • Community ↗️
  • Terms
  • Privacy
  • Archive (all posts)
  • GDPR.Fan ↗️
Unlock full access to see the entire library by subscribing to a paid plan.
Sign up
Bookmarks
Rie Aleksandra

Rie Aleksandra

https://www.linkedin.com/in/riealeksandra/
316 posts
EDPB's controversial ‘Consent or Pay’ Opinion is here
EDPB consent personalised ads

EDPB's controversial ‘Consent or Pay’ Opinion is here

members – 2 min read
[Updated 24 April with highlighted file + 🎙️] Is the EDPB trying to "rewrite the entire economic model of Big Tech and the adtech industry in the EU"? 🤔 Controversial Opinion just published!
Apr 24, 2024
Rie Aleksandra Rie Aleksandra
EDPB Annual report 2023
EDPB

EDPB Annual report 2023

members – 1 min read
Today, the EDPB shared their 2023 annual report. Read the press release directly here and grab both the report and its Executive Summary.
Apr 23, 2024
Rie Aleksandra Rie Aleksandra
Denmark DPA changes data processing agreement SCCs
resource

Denmark DPA changes data processing agreement SCCs

members – 1 min read
🇩🇰 DPA changes sub-processor third-party beneficiary clause in their SCCs for data processing agreements as per Article 28(8). Agreements signed before this are still valid.
Apr 22, 2024
Rie Aleksandra Rie Aleksandra
New CJEU ruling + AG opinion DPAs might dread (C-768/21 Land Hessen)
CJEU

New CJEU ruling + AG opinion DPAs might dread (C-768/21 Land Hessen)

members – 1 min read
Breaching GDPR rights doesn't automatically result in non-material damage, and controllers can't (ever?) escape liability simply because someone under their authority didn't follow instructions, and an AG Opinion may disrupt DPAs workload. 😬
Apr 11, 2024
Rie Aleksandra Rie Aleksandra
CJEU C-101/01 Bodil Lindqvist 6 Nov 2003
CJEU scope exceptions

CJEU C-101/01 Bodil Lindqvist 6 Nov 2003

members – 4 min read
A key (Directive 95/46/EC) ruling broadly interpreting key definitions (personal and health data, processing) and narrowly applied exceptions, but found that simply putting a website online doesn't necessarily result in transfers.
Apr 9, 2024
Rie Aleksandra Rie Aleksandra
CJEU C-46/23 Ujpesti Polgarmesteri Hivatal 14 Mar 2023
CJEU erasure

CJEU C-46/23 Ujpesti Polgarmesteri Hivatal 14 Mar 2023

members – 1 min read
DPAs can order controllers to delete unlawfully processed data without a prior request from a data subject, and regardless of where the data came from (the data subject or elsewhere).
Mar 26, 2024
Rie Aleksandra Rie Aleksandra
CJEU C-740/22 Endemol Shine Finland 7 Mar 2024
CJEU key definitions processing

CJEU C-740/22 Endemol Shine Finland 7 Mar 2024

members – 3 min read
Orally disclosing personal data = 'processing' and potentially subject to the GDPR, and sharing criminal data orally (or in writing) isn't allowed to fulfill a public access request.
Mar 26, 2024
Rie Aleksandra Rie Aleksandra
DPA decision ePrivacy lawfulness

Denmark DPA says cookie walls are legal - and not

members – 2 min read
Update 26 Mar 2024: the DPA rejects reopening the cases, upholding that analytics/statistics aren't a necessary part of the alternative to paid access.
Mar 26, 2024
Rie Aleksandra Rie Aleksandra
fine employment principles

France DPA fines Amazon €32m for invasive employee monitoring

members – 3 min read
[22 March update: Amazon has appealed] The 🇫🇷 CNIL fined Amazon for excessively intrusive monitoring, using several illegal indicators and unsecure video surveillance software, without sufficiently informing employees and visitors.
Mar 22, 2024
Rie Aleksandra Rie Aleksandra
public sector transfers

🔥 Swedish Tax Agency greenlights (?) US cloud services

members – 2 min read
Following the EU-US DPF, the 🇸🇪 Tax Agency approves using Microsoft Office 365 and Teams. Despite emphasising that everyone must do their own assessments, I'd say this could strengthen your own cloud services assessments.
Mar 22, 2024
Rie Aleksandra Rie Aleksandra
CJEU C-479/22 P OC v Commission 7 Mar 2024
CJEU key definitions personal data

CJEU C-479/22 P OC v Commission 7 Mar 2024

members – 3 min read
The CJEU returned a case to the General Court as they disagreed on the latter's interpretation of the concept of personal data, which is to be interpreted broadly, such as a press release with several data points that could identify someone.
Mar 21, 2024
Rie Aleksandra Rie Aleksandra
breaches data minimisation

France: unemployment breach impacts 43m dating back 20 years

members – 1 min read
🇫🇷 Massive breach and what we can learn immediately from it: data minimisation, deletion, breach response plans - and communication that people actually understand!
Mar 20, 2024
Rie Aleksandra Rie Aleksandra
Ready to get started now?
Subscribe to get access to premium content or contact us if you have any questions.
Subscribe Contact us
DPO Hub
☕️ Where GDPR pros come to save time and sanity
Navigation
  • Home
  • Topics
  • Filter
  • EDPB
  • CJEU
  • MM
  • Bookmarks
  • Community ↗️
Quick links
  • Terms
  • Privacy
  • Archive (all posts)
  • GDPR.Fan ↗️
Tags
CJEU DPA decision EDPB fine lawfulness
©2025 DPO Hub - Made with 💛 in 🇳🇴
Great! Next, complete checkout for full access to DPO Hub.
Welcome back! You've successfully signed in.
You've successfully subscribed to DPO Hub.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.