Rie Aleksandra - DPO Hub (Page 3)

EDPB meeting minutes 16 Oct and 4 Nov 2025

members – 2 min read

2 x meeting minutes today! 🚨 Guidelines: Joint AI Act ↔ EU data protection law interplay; Political advertisements; Web scraping in the context of generative AI | 🚨 Irish, French & Dutch DPAs investigate data brokers | 🇧🇷 & 🇬🇧 adequacy decisions

Dec 12, 2025

CJEU C-492/23 Russmedia Digital and Inform Media Press 2 Dec 2025

members – 5 min read

🧨 CJEU rules contrary to the AG: marketplace operators are *controllers* for ads data instead. This has major implications for marketplaces. (And what about DSA?) Also check out CJEU's recorded debrief with President Lenaerts.

Dec 10, 2025

'Pay or OK' – 'Consent or Pay' resources

members – 5 min read

Meta to launch new model in Jan | ICO shares guidance for the public

Dec 8, 2025

Your OSS for the EDPB

members – 3 min read

Overview page for all things EDPB: Guidelines, Opinions, Recommendations, Members, Meetings, Strategy & Work Programs, CEF, SPE, OSS, Art. 65 Decisions, WP29, CSC

Dec 4, 2025

Norway DPA fines Grindr NOK 65 million for invalid consent

members – 3 min read

🔥 25 Nov: Grindr won't appeal after the Borgarting Court of Appeal upheld the record NOK 65m (~€5.5m) fine against them for disclosing users' special category personal data to third parties for behavioural advertising without a valid consent.

Nov 25, 2025

The European Data Protection Supervisor – EDPS

members – 2 min read

New TechSonar report out – trends 2025/2026: Agentic AI, AI companions, Automated proctoring, AI-driven personlised learning, Coding assistants, Confidential computing. Overview page for all things EDPS.

Nov 25, 2025

Welcome! Start here 👇

members – 2 min read

Bumping this as reminder – to make the most out of your subscription, read through this post: How to use DPO Hub effectively and find your way around.

Nov 23, 2025

CJEU C-654/23 Inteligo Media 13 Nov 2025

members – 7 min read

If a user creates a free account and gets access to articles, newsletters and the option to pay for further content, this falls under Art. 13(1) and (2) ePD as 'sale of a service' and 'direct marketing', and you don't need a legal basis under Art. 6 GDPR, in line with Art. 95 GDPR.

Nov 13, 2025

EDPB meeting minutes 7-8 Oct 2025

members – 3 min read

Nov 9, 2025

EDPB meeting minutes 11 Sep 2025

members – 2 min read

DSA ↔ GDPR interplay guidelines | 🇧🇷 Brazil & 🇬🇧 UK adequacy decisions | Helsinki Statement – practical implementation & Commission on simplifying breach reporting | EDPS C-413/23 update | BCRs: 🇮🇪 Shopify, 🇱🇺 Northern Trust, Ferrero Group, 🇳🇴 Mowi.

Nov 8, 2025

CJEU T-553/23 Latombe v Commission 3 Sep 2025

members – 4 min read

🔥 Latombe to appeal! New CJEU case number: C-703/25 P | "The General Court dismisses the action for annulment" and the EU-US DPF remains valid.

Oct 31, 2025

UK ICO fines Capita £14 million for breach after weak security and slow reaction

members – 8 min read

After first flagging a fine with a potential starting point of £97m, the 🇬🇧 DPA heavily reduced it after several mitigating factors we can all learn from. A decision packed with practical lessons for DPOs, data protection and security teams alike!

Oct 26, 2025