Rie Aleksandra - DPO Hub (Page 7)

EDPB Guidelines 2/2024 Article 48 (public consultation)

members – 4 min read

EDPB Guidelines on Article 48 covering official requests from third country public authorities for personal data transfers.

Dec 6, 2024

EDPB urges digital legislation to be aligned with the GDPR

members – 1 min read

The EDPB calls for digital legislation to align with the GDPR, emphasising the importance of legal certainty and coherence. And highlights the need for additional resources to support DPAs and the EDPB in addressing increasingly complex challenges.

Dec 5, 2024

📊 DPO Hub Pulse: AI topic page?

members –

Disclaimer: Work is underway on the legitimate interest topic page, but here’s your chance to weigh in on an AI one.

Dec 4, 2024

🚨 EDPB shares Art. 48 Guidelines (PC) and new Data Protection Seal certification

members – 1 min read

The EDPB just shared new Guidelines! This time for Article 48 and they're on public consultation until 25 Jan 2025. They also announced a new EU Data Protection Seal certification for 'Brand Compliance'.

Dec 3, 2024

CJEU C-169/23 Masdi 28 Nov 2024

members – 4 min read

The Art. 14(5)(c) derogation applies to *all* data not collected from the data subject, including self-generated. DPAs can, as per Art. 14(5)(c), verify if national law has measures to protect data subjects' legitimate interests, but this doesn’t include assessing Art. 32 security measures.

Nov 28, 2024

CJEU C-17/22 HTB Neunte Immobilien Portfolio 12 Sep 2024

members – 5 min read

National case-law could be relevant under Article 6(1)(c) legal obligation. The CJEU offers further guidance on legitimate interest assessments and highlights the importance of the data subjects' 'reasonable expectations'.

Nov 25, 2024

My Meta Pay or Okay experience - now they're cutting the price with 40%

members – 5 min read

Latest: Meta reduces sub prices and offers new free choice with less personalised ads, claiming it "goes beyond what is required in the law". 💸 And gets huge fines: €797.72m from the 🇪🇺 EC for antitrust violations and $25.4m from 🇮🇳 India's competition authority for 2021 privacy notice failures.

Nov 15, 2024

ICO approves first sector-owned UK GDPR Code of Conduct for private investigators

members – 1 min read

🇬🇧 ICO: "This code, which investigators in the private sector can sign up to, will provide certainty and reassurance to those using their services [and] assist investigators to navigate the challenges between conducting investigations whilst respecting people’s privacy rights."

Nov 14, 2024

CJEU C-252/21 Meta Platforms and Others (General terms of use of a social network) 'Bundeskartellamt' 4 Jul 2023

members – 6 min read

The 'Bundeskartellamt' ruling, where the CJEU applies 'strictly' to the legal bases necessity test for the first time. 🔥 You might rely on legitimate interest for direct marketing, network security or product improvement, but the processing must now meet this higher threshold.

Nov 13, 2024

EDPB meeting minutes 7-8 Oct 2024

members – 2 min read

Must-read update! Will we get PCs for Art. 64(2) Opinions? Strategic case coming to an end. Updates on recent Opinions and Guidelines + DPA news: New 🇦🇹 DPA for the legislative sector, 🇸🇪 new Director, 🇪🇸 Director leaving, 🇽🇰 becomes observer, new tools from 🇱🇹&🇭🇷 + lots of DPA networking.

Nov 8, 2024

Takeaways from EDPB's AI models stakeholder event 5 Nov

members – 1 min read

The EDPB has now held their stakeholder event and the Opinion is due by the end of the year. Check out these LinkedIn posts (and comments) to hear how it went!

Nov 6, 2024

CJEU C-621/22 KNLTB (legitimate interests) 4 Oct 2024

members – 3 min read

Article 6(1)(f) allows disclosure for a commercial interest if the processing is *strictly* necessary and not outweighed by the interests, rights or freedoms of the data subjects. The interest doesn't have to be determined by law, but it must be lawful. And CJEU nudges consent again.

Oct 29, 2024