Privacy Transformation - Issue 67
PRIVACY
Salesforce and Oracle face GDPR lawsuit relating to cookies
The Privacy Collective claims that its lawsuit against the two companies could amount to €10bn in damages being paid out to consumers.
MPs slam UK data regulator for failing to protect people’s rights
The Information Commissioner’s Office has not taken action against the government on key data protection issues during the pandemic, a group of 20 MPs has said
StopCOVID NI app to be extended to children and young people
Children and young people will be able to download the StopCOVID NI app from next month, says Health Minister Robin Swann. The app, which was launched on July 31, has already been downloaded more than 300,000 times but under 18s cannot download it currently.
Decision approving the Binding Corporate Rules of Tetra Pak Group
Interesting in the context of the recent Schrems II ruling, BCRs remain a utilised transfer mechanism, as evidenced by this recent decision by the Swedish Data Protection Authority, approving Binding Corporate Rules of the Tetra Pak Group.
Opinion: ‘Schrems II’ requires a rethink of the CLOUD Act
In a post-“Schrems II” world, as a part of its endeavors to reform its surveillance practices, the U.S. should focus on entering into CLOUD Act–like agreements with the EU or individual EU member states.
SECURITY & TECH
Facebook Says Apple’s New iPhone Update Will Disrupt Online Advertising
Facebook says privacy changes that Apple has made to its newest operating system will cripple the social-media giant’s ability to serve targeted ads to iPhone users while they use outside apps.
Read Facebook's statement on the subject here.
Online security advice fails to help users prioritize problems, report warns
A systematic evaluation of security and privacy advice on the web has cast blame on the industry for failing to prioritize defensive security.
TikTok’s GDPR compliance probed amid accusations of data misuse
Dutch privacy organisation SOMI claims TikTok falls short in protecting young users, and that it is likely violating GDPR.
DATA BREACH
Technical loophole that allows access to details of vehicle owners 'an utter disaster'
A technical loophole within an online system for transferring motor vehicle ownership, allowing the name and address of any vehicle owner to be accessed by motor dealerships, has been described as “an utter disaster”.
Danish DPA discloses personal data breach
Denmark's data protection authority, Datatilsynet, disclosed a breach of personal data at its own facility in early August.
RESOURCES
NHS Scotland - COVID-Related DPIAs
NHS Scotland has released a number of DPIAs assessing the use of personal data in relation to the COVID-19 response.
ICO: 2020 Annual Track survey results
The Annual Track Survey results have been published, giving insights into what people think about data protection and freedom of information, as well as giving a greater understanding of how people look to utilise their rights.
The survey results can be accessed here.
The most iconic DPA decisions on DPOs and what you should take from them
A consolidation of some of the most enlightening decisions outlined by European data protection authorities to help you understand how to address practical problems that companies and privacy professionals usually face.