Rie Aleksandra - DPO Hub (Page 2)

Commission to withdraw proposed ePrivacy Regulation

members – 1 min read

According to Euractiv and MLaw, the Commission’s updated draft work programme confirms the ePrivacy Regulation proposal is withdrawed. There are no offical confirmations yet, so stay tuned.

Feb 10, 2025

EDPB meeting minutes 2-3 Dec 2024

members – 1 min read

💡 EDPB members intervene to block new social media guidelines, arguing they interpret joint controllership too broadly and overlook practical consequences and balance against other fundamental rights. Little other news.

Feb 8, 2025

EDPB meeting agendas and minutes

members – 3 min read

Two new meeting minutes published and summarised (see separate writeups). Next meeting: 13 March.

Feb 7, 2025

CJEU C-413/23 P EDPS v Single Resolution Board 6 Feb 2025 AG Opinion

members – 1 min read

A much-anticipated case on the concept of personal data, but the AG only advices the CJEU to set aside the General Court’s ruling and send the case back to decide on the second plea (breach of good administration and fair procedure). We're still in the dark on several aspects.

Feb 6, 2025

CJEU C-492/23 Russmedia Digital and Inform Media Press 6 Feb 2025 AG Opinion

members – 1 min read

AG Szpunar: Marketplace operators are processors for ad data (must protect it) and controllers for advertisers' data (must verify identity). Liability applies if you actively manage, modify or promote content.

Feb 6, 2025

Your OSS for the EU-US DPF

public – 6 min read

2025: New worries - stay tuned. 2024: EDPB adopts first review report. EC publishes first review report, concluding the DPF 'functions effectively'. New review in 3 years. Earlier: Interesting read by C. Kuner on 'Strengthening the EU Legal Edifice for Data Transfers'.

Feb 6, 2025

DPO Hub 2024 CJEU GDPR-related rulings

members – 1 min read

A list of all GDPR-related (plus one) CJEU rulings from 2024 with titles, dates, DPO Hub snippets, tags and CJEU keywords (with key Articles etc.).

Feb 4, 2025

CNIL shares transfer impact assessment (TIA) practical template

members – 1 min read

💬 "CNIL TIA template is one of the best templates available to the public!"

Feb 1, 2025

CJEU GC T-70/23 Data Protection Commission v European Data Protection Board 29 Jan 2025

members – 2 min read

The General Court dismissed DPC's actions against the EDPB and ordered them to pay the costs, meaning they must conduct new investigations and issue new Art. 60(3) draft decisions for the three 2022 Art. 65 Binding Decisions in cases against Meta (Facebook, Instagram, WhatsApp).

Jan 31, 2025

EDPB Opinion 28/2024: AI models

members – 4 min read

UPDATED 27 Jan. A must-read if the subject matter is relevant. Yes, legitimate interest can apply in the context of AI models—but your documentation needs to be thorough. And don’t forget to involve your DPO.

Jan 27, 2025

EDPB Support Pool of Experts (SPE) projects

members – 4 min read

New additions: 'AI: Complex Algorithms and effective Data Protection Supervision' 23 Jan + 'OSS Case Digest: Right of access' 17 Jan. Post: An overview of SPE project so far. Which ones (if any) should you spend time on? Maybe the OSS case digests.

Jan 27, 2025

🇪🇺 Privacy, data protection & security legal landscape

members – 5 min read

Latest: The Council adopts the European Health Data Space (EHDS). EC shares Data Act public consultation summary report, FAQ and DGA practical guide.

Jan 23, 2025