Rie Aleksandra - DPO Hub (Page 2)

Welcome! Start here 👇

members – 2 min read

Bumping this as reminder – to make the most out of your subscription, read through this post: How to use DPO Hub effectively and find your way around.

Aug 30, 2025

10x CJEU in Sep + Community Learning Seasons: risks, DPIAs

members – 3 min read

🚨 Two key CJEU rulings: EDPS v SRB on personal data & pseudonymisation (3 Sep.) and Latombe v Commission on the EU-US DPF (4 Sep.), plus one more ruling and seven Advocate General opinions. Buckle up!

Aug 29, 2025

The DPO role: Key resources

members – 3 min read

Latest: 🇳🇴 New DPO podcast series | Key DPO role resources: CJEU, EDPB, DPAs, EDPS, GDPR commentaries and more

Aug 25, 2025

The UK Data (Use and Access) Act (DUAA) 2025

members – 9 min read

ICO launches consultations for amendments | Get quickly up to speed on the new UK Data (Use and Access) Act. 💬 "there is no need to panic. Many of the changes empower rather than require, and even if embraced could be done so incrementally."

Aug 25, 2025

'Pay or OK' – 'Consent or Pay' resources

members – 3 min read

Latest: 🇦🇹 court rules newspaper's Pay or OK model not OK – likely heading for a CJEU referral next | Consent or Pay resources while we wait for the EDPB's Guidelines

Aug 24, 2025

CJEU C-422/24 Storstockholms Lokaltrafik 1 Aug 2025 AG Opinion

members – 2 min read

AG Medina: When personal data is collected through body cameras worn by ticket inspectors working for a public transport company (🇸🇪 SL), Article 13 applies, not Article 14, as it’s collected directly from the data subject.

Aug 6, 2025

The European Data Protection Supervisor – EDPS

members – 2 min read

Overview page for all things EDPS.

Aug 5, 2025

EDPS audit of the Commission's MS365 use

members – 11 min read

28 July: EDPS closes its investigation into the European Commission’s use of Microsoft 365, now deeming it compliant after previously finding serious EUDPR violations, notably on purpose limitation and international transfers.

Jul 29, 2025

EDPB meeting minutes 3-4 Jun 2025

members – 2 min read

🚨 AI & Data Protection Training | EDPB-EDPS opinion simplifying Art. 30(5) ROPA | Scientific research GLs discussed but redacted (as was "Smart TVs") | New 🇪🇪 CJEU case & 🇧🇪 IAB Europe update – but no further details | Joint EC-EDPB DMA ↔ GDPR interplay guidelines | 🇫🇷 rec. coming for email pixels.

Jul 27, 2025

EU and China discuss new Cross-Border Data Flow Communication Mechanism

members – 1 min read

Last year, EU and China began discussing a new Cross-Border Data Flow Communication Mechanism for non-personal data. On 17 July, a second meeting took place. First sector out: automative.

Jul 23, 2025

🇮🇪 DPC fines TikTok €530m for China transfers

members – 3 min read

10 July: DPC launches new investigation into China transfers. Earlier: transparency breach by failing to disclose the third countries involved and didn't explain the nature of the transfers in its privacy policy --> get compliant in six months or stop the transfers (but order paused until Oct).

Jul 22, 2025

CNIL shares transfer impact assessment (TIA) practical template

members – 2 min read

NB: On 9 July, CNIL appears to have updated the webpage with that date, though there don’t seem to be any actual changes – and the PDFs are still from January. Either way, here’s a quick reminder! 💬 "CNIL TIA template is one of the best templates available to the public!"

Jul 22, 2025