Privacy Transformation - Issue 187
PRIVACY
EU confirms draft decision on replacement US data transfer pact
The European Commission has announced a draft decision on US adequacy, paving the way for a replacement EU-US data transfer deal to be adopted next year.
RELATED:
Statement: Commission starts process to adopt adequacy decision for safe data flows with the US
Draft adequacy decision for the EU-US Data Privacy Framework
Noyb: Statement on US Adequacy Decision by the European Commission
Commission starts process to adopt adequacy decision for safe data flows with the US
Today, the European Commission launched the process towards the adoption of an adequacy decision for the EU-U.S. Data Privacy Framework, which will foster safe trans-Atlantic data flows and address the concerns raised by the Court of Justice of the European Union in its Schrems II decision of July 2020.
Google must remove data from search results if user proves it is wrong, says ECJ
Google must remove data from online search results if users can prove that such information is manifestly inaccurate, Europe's top court has said.
Privacy expert sues LinkedIn in first AI defamation case
A British privacy expert suing LinkedIn in Ireland is claiming the social media giant’s artificial intelligence (AI) security system has defamed him.
SECURITY & TECH
Microsoft to start multi-year rollout of EU data localization offering on January 1 2023
Microsoft will begin a phased rollout of an expanded data localization offering in the European Union on January 1, it said today.
RELATED: Microsoft 365 faces darkening GDPR compliance clouds after German report
Dark patterns, online ads will be potential targets for the next Commission, Reynders says
Transparency in the online advertising market, dark patterns and ‘cookie fatigue’ are all topics on which the European Commission might regulate in the next mandate, the EU’s consumer protection chief told EURACTIV.
Ireland's privacy watchdog engaging with Twitter over data access to reporters
Elon Musk's desire to stir conspiratorial shit up by giving select outsiders aligned with his conservative agenda access to Twitter systems could land him in serious doodoo with regulators.
Apple Faces Lawsuit Over AirTag Stalking
The class-action lawsuit comes from two women who faced stalking incidents involving AirTags.
UK NCSC: Weekly Threat Report
The NCSC's threat report is drawn from recent open source reporting.
ENFORCEMENT
Clubhouse app operator fined $2M for GDPR violations
Alpha Exploration, operator of the social media app Clubhouse, received a penalty from the Italian data protection authority for the unlawful processing of EU citizens’ data in violation of the General Data Protection Regulation.
Portugal statistics office fined record $4.6M for GDPR violations
The government office for national statistics in Portugal was assessed a fine of €4.3 million (U.S. $4.6 million) by the country’s data protection authority for multiple violations of the General Data Protection Regulation that occurred during its 2021 census work.
RESOURCES
ENISA: Cyber Europe 2022: After Action Report
Findings from a PAN-EUROPEAN cyber crisis Exercise
CONTRIBUTE
Have an interesting article, book, video, podcast or other resource that you would like to share with fellow privacy practitioners? Please do drop me a note.