EU and Japan conclude "landmark deal on cross-border data flows"
members
–
1 min read
πͺπΊ & π―π΅ agree cross-border data flows agreement which complement their existing adequacy arrangement.
EDPB clarifies implementation DPF redress mechanisms
members
–
1 min read
π The EDPB clarifies implementation of the Data Protection.. errrr, I mean *Privacy* Framework redress mechanisms!
CJEU C-101/01 Bodil Lindqvist
members
–
4 min read
A key (Directive 95/46/EC) ruling broadly interpreting key definitions (personal and health data, processing) and narrowly applied exceptions, but found that simply putting a website online doesn't necessarily result in transfers.
EDPS: the European Commission's use of MS365 is non-compliant
members
–
10 min read
[Updated 2 April with full writeup] After the EDPS' second investigation into the European Commission's use of Microsoft 365, they found (again) several serious EUDPR violations, notably related to purpose limitation and transfers, and which are still ongoing.
π₯ Swedish Tax Agency greenlights (?) US cloud services
members
–
2 min read
Following the EU-US DPF, the πΈπͺ Tax Agency approves using Microsoft Office 365 and Teams. Despite emphasising that everyone must do their own assessments, I'd say this could strengthen your own cloud services assessments.
Denmark DPA orders municipalities to ensure Google-sharing compliance
members
–
1 min read
π₯ Danish DPA with new decision in their HelsingΓΈrgate/Chromebook case!
European Commission upholds adequacy decisions for 11 third countries and territories
members
–
1 min read
Great news for those who aren't fans of TIAs: the EUC upholds adequacy for Andorra, Argentina, Canada, Faroe Islands, Guernsey, the Isle of Man, Israel, Jersey, New Zealand, Switzerland and Uruguay. β
Sweden DPA stops Google Analytics use and issues fines
members
–
1 min read
The Swedish DPA orders controllers to STOP USING Google Analytics and fines one of them SEK 12 million, following NOYB's 101 transfers campaign.
Your OSS for the EU-US DPF
public
–
4 min read
The European Commission has now adopted its adequacy decision for the EU-US Data Privacy Framework, concluding that the United States ensures an adequate level of protection β comparable to that of the European Union β for personal data transferred from the EU to US
European Commission adopts US adequacy, approves EU-US Data Privacy Framework
members
–
1 min read
…