Sign in Subscribe

Privacy Transformation - Issue 31

PRIVACY

ECJ says Facebook data transfers to US ‘valid’ in Max Schrems case

ECJ says Facebook data transfers to US ‘valid’ in Max Schrems case

Judges follow recommendations in advocate general opinions in four out of five cases

The DPC is holding a DPO Conference on 31 March 2020

The DPC is holding a DPO Conference on 31 March 2020

SAVE THE DATE: The DPC is holding a DPO Conference on 31 March 2020 in The Helix, Dublin.

Surveillance is a fact of life, so make privacy a human right

Surveillance is a fact of life, so make privacy a human right

America needs more and better protections over personal data, says Lawrence Cappello of the University of Alabama.

ICO procedural errors in handling Eldon/Leave EU investigation exposed

ICO procedural errors in handling Eldon/Leave EU investigation exposed

The Information Commissioner’s Office will be hoping that procedural bungles do not jeopardise its proposed audit and fines of Eldon Insurance and Leave EU,

Facial recognition technology latest woe at national children’s hospital

Facial recognition technology latest woe at national children’s hospital

For the new national children’s hospital, 2019 has been bookended by criticisms over escalating costs: in January Fianna Fáil’s health spokesperson Stephen Donnelly accused the project of being a “complete and catastrophic failure”.

DATA BREACH

'We're sorry': 15M LifeLabs customers may have had data breached in cyberattack

'We're sorry': 15M LifeLabs customers may have had data breached in cyberattack

Hackers may have obtained the personal data of 15 million LifeLabs customers after a systems breach, and this includes addresses, passwords, birthdays, health card numbers and even lab results.

ENFORCEMENT

Administrative fine of 35 000 EUR imposed by Swedish Data Protection Authority

Administrative fine of 35 000 EUR imposed by Swedish Data Protection Authority

The Swedish DPA has issued an administrative fine of 35 000 EUR against Mrkoll.se – a website that publishes personal data of all Swedes above the age of 16 – for infringement of the Credit Information Act and the GDPR. The website has carried out credit information activity in a way that is not in compliance with the law.

Romanian DPA - €2,000 administrative fine

Romanian DPA - €2,000 administrative fine

The company did not comply with measures ordered by the National Supervisory Authority.

RESOURCES

AI policy initiatives (2016-2019) - European Union Agency for Fundamental Rights

As part of the background research for the Agency’s project on ‘Artificial intelligence (AI), Big Data and Fundamental Rights’, FRA has collected information on AI-related policy initiatives in EU Member States in the period 2016-2019. The collection currently includes over 260 initiatives.

The IAPP's top resources of 2019

The IAPP's top resources of 2019

A look at thee IAPP's most-accessed resources of 2019.

Design Pattern: Safely Exporting Data

The UK National Cyber Security Centre (NSCC) has published guidance that provides an architecture pattern to will help share data, while maintaining the security of core networks and systems.

Read next