Privacy Transformation - Issue 187

PRIVACY

EU confirms draft decision on replacement US data transfer pact

EU confirms draft decision on replacement US data transfer pact

The European Commission has announced a draft decision on US adequacy, paving the way for a replacement EU-US data transfer deal to be adopted next year.

RELATED:

Statement: Commission starts process to adopt adequacy decision for safe data flows with the US

Draft adequacy decision for the EU-US Data Privacy Framework

Noyb: Statement on US Adequacy Decision by the European Commission

Commission starts process to adopt adequacy decision for safe data flows with the US

Commission starts process to adopt adequacy decision for safe data flows with the US

Today, the European Commission launched the process towards the adoption of an adequacy decision for the EU-U.S. Data Privacy Framework, which will foster safe trans-Atlantic data flows and address the concerns raised by the Court of Justice of the European Union in its Schrems II decision of July 2020.

Google must remove data from search results if user proves it is wrong, says ECJ

Google must remove data from search results if user proves it is wrong, says ECJ

Google must remove data from online search results if users can prove that such information is manifestly inaccurate, Europe's top court has said.

Privacy expert sues LinkedIn in first AI defamation case

Privacy expert sues LinkedIn in first AI defamation case

A British privacy expert suing LinkedIn in Ireland is claiming the social media giant’s artificial intelligence (AI) security system has defamed him.

SECURITY & TECH

Microsoft to start multi-year rollout of EU data localization offering on January 1 2023

Microsoft to start multi-year rollout of EU data localization offering on January 1 2023

Microsoft will begin a phased rollout of an expanded data localization offering in the European Union on January 1, it said today.

RELATED: Microsoft 365 faces darkening GDPR compliance clouds after German report

Dark patterns, online ads will be potential targets for the next Commission, Reynders says

Dark patterns, online ads will be potential targets for the next Commission, Reynders says

Transparency in the online advertising market, dark patterns and ‘cookie fatigue’ are all topics on which the European Commission might regulate in the next mandate, the EU’s consumer protection chief told EURACTIV.

Ireland's privacy watchdog engaging with Twitter over data access to reporters

Ireland's privacy watchdog engaging with Twitter over data access to reporters

Elon Musk's desire to stir conspiratorial shit up by giving select outsiders aligned with his conservative agenda access to Twitter systems could land him in serious doodoo with regulators.

Apple Faces Lawsuit Over AirTag Stalking

Apple Faces Lawsuit Over AirTag Stalking

The class-action lawsuit comes from two women who faced stalking incidents involving AirTags.

UK NCSC: Weekly Threat Report

UK NCSC: Weekly Threat Report

The NCSC's threat report is drawn from recent open source reporting.

ENFORCEMENT

Clubhouse app operator fined $2M for GDPR violations

Clubhouse app operator fined $2M for GDPR violations

Alpha Exploration, operator of the social media app Clubhouse, received a penalty from the Italian data protection authority for the unlawful processing of EU citizens’ data in violation of the General Data Protection Regulation.

Portugal statistics office fined record $4.6M for GDPR violations

Portugal statistics office fined record $4.6M for GDPR violations

The government office for national statistics in Portugal was assessed a fine of €4.3 million (U.S. $4.6 million) by the country’s data protection authority for multiple violations of the General Data Protection Regulation that occurred during its 2021 census work.

RESOURCES

ENISA: Cyber Europe 2022: After Action Report

ENISA: Cyber Europe 2022: After Action Report

Findings from a PAN-EUROPEAN cyber crisis Exercise

CONTRIBUTE

Have an interesting article, book, video, podcast or other resource that you would like to share with fellow privacy practitioners? Please do drop me a note.