UK’s Information Commissioner’s Office (ICO) has published guidance on privacy notices under EU General Data Protection Regulation (GDPR). GDPR introduces new requirements for controllers on notifying data subjects about processing of their data. GDPR requires privacy notices to be understandable and accessible. ICO’s guidance provides best practice on communicating privacy information to individuals. Access guidance
IAPP together with EY has published their second annual Privacy Governance Report. 120-pages report is result of data provided by 600 privacy professionals across the globe. It focuses on GDPR and move of other countries towards more robust privacy regulation. Read full report
Yesterday (October 19, 2016) the Court of Justice of the European Union (CJEU) issued its judgment in case Patrick Breyer v. Bundesrepublik Deutschland, in which court recognizes that dynamic IP addresses registered by websites are personal data. CJEU followed the Opinion of the Advocate General delivered earlier this year. In its decision CJEU concluded that […]
Cloud Infrastructure Services Providers in Europe (“CISPE”) – a relatively new coalition of more than 20 cloud infrastructure providers operating in Europe – has recently published its first Code of Conduct for Cloud Infrastructures Services. The CISPE Code of Conduct: Gives a framework to comply with the General Data Protection Regulation Excludes the reuse of […]
Michel Reymond has published a paper “Hammering Square Pegs into Round Holes: The Geographical Scope of Application of the EU Right to Be Delisted” where he explores the extraterritorial effects of the decision of Court of Justice of European Union (CJEU) in so called Google Spain case. In that case CJEU recognized “right to be forgotten” or, according Michel […]
There is a new developments in a privacy case brought by Austrian privacy activist Max Schrems against Facebook. Facebook has questioned the right of Schrems to bring a Europe-wide class action. Now, Austria’s Supreme Court referred the question to the European Court of Justice (CJEU). Read full story
Annual IAPP-EY Privacy Governance Report 2016 has been released and is available for free download. It’s a second year of releasing the report. Report is most comprehensive benchmarking data for privacy. IAPP-EY Privacy Governance Report 2016 contains 126 pages of detailed information from 600 companies around the world that have provided answers to budget, staffing, organizational, and prioritization questions. […]
Dutch police have seized two servers belonging to Switzerland-based VPN provider Perfect Privacy. The VPN provider claims that Dutch police haven’t informed or contacted them about the reason servers were seized and about seizure they were informed by their hosting provider. Despite the seizure of servers, Perfect Privacy promises that no user data was compromised. Full story