French privacy authority new cookie rules enter into force

Apr 9, 2021 9:18:26 AM / by PrivacyPerfect

France's data protection supervisor, the Commission nationale de l'informatique et des libertés, (CNIL) notified the end of the transition period of it’s amended guidelines & recommendations on cookies and other tracers. If your website is accessible in France, chances are website owners have to bring their cookie consent practices in line with the new rules.

Read More

What we can learn from the €475.000 fine

Apr 6, 2021 9:56:11 AM / by PrivacyPerfect

The Dutch data protection authority, Autoriteit Persoonsgegevens (AP), fined B.V. 450,000 euros for violations related to a 2018 breach. The AP alleges the Dutch company did not report a breach involving more than 4.100 customers until 22 days after the reservation service provider was made aware of the incident. The delay fell outside of the 72-hour breach notification requirement. 

Read More

France's highest administrative court clarifies Schrems II requirements

Mar 24, 2021 2:05:37 PM / by PrivacyPerfect

Major impact for everyone in EU-non EU partnerships.

After the Schrems II judgement, privacy pros around the world were at a loss what to do. Now, a judgement by the Conseil d’Etat — France's highest administrative court — seems to have shed light on the situation.

Read More

Could the proposed U.S. federal privacy law be enough for free data flow between the EU and U.S., or is a Privacy Shield replacement ‘years away’?

Mar 11, 2021 5:38:56 PM / by PrivacyPerfect

European Union Justice Commissioner Didier Reynders stated he does not expect a replacement for the EU-US Privacy Shield agreement to come quickly. Reynders said a new data transfer deal between the EU and US could take years rather than months as ‘it may be challenging to find a solution to protect European citizens' data from US intelligence agencies’. 

Read More

Zorg: DPIA op bestaande verwerkingen?

Mar 11, 2021 10:29:17 AM / by


Moet je als zorgaanbieder ook een DPIA doen voor bestaande verwerkingsactiviteiten?

Ja, soms moet je alsnog een data protection impact assessment (DPIA) uitvoeren voor een bestaande verwerking. Dat is als er iets verandert aan het risico van de gegevensverwerking. En de gegevensverwerking vervolgens (na de verandering) een hoog privacyrisico oplevert.


Read More

Data Subject Rights under California privacy laws CCPA and CPRA

Mar 2, 2021 5:49:48 PM / by PrivacyPerfect posted in ccpa

The California Consumer Privacy Act (CCPA) grants California residents rights and control over their personal data. As consumers become increasingly aware of their granted rights, the number of data subject requests received by organisations under the CCPA have also been increasing. Responding to these requests is often a challenge, given the complexity of the process and the tight deadlines. In this blog post, our objective is to provide you with a clear overview of the key information for responding to Consumer Right Requests.

Read More

Dutch healthcare organisations and data breaches - a way forward

Feb 4, 2021 5:24:02 PM / by PrivacyPerfect

Throughout the last couple of years, the healthcare sector in the Netherlands has been one of the frontrunners in terms of the amount of data breaches reported to the Dutch Data Protection Authority (2017, 2018, 2019). With the recent data breach of the GGD, exposing the personal data of tens of thousands getting tested for the coronavirus, the crucial issue of data breaches in the sector has received very strong public attention as well. This blog provides insight into how a data breach can be recognised, what practical steps organisations can take to reduce the risk of a breach, and how organisations can respond. 

Read More

Facebook, Google, Whatsapp... what’s up with the tech giants and privacy nowadays?

Jan 21, 2021 5:45:35 PM / by PrivacyPerfect posted in Facebook, Google

The first days of 2021 had news outlets across the world displaying headlines about recent developments in privacy of the American tech giants. If you yourself are using their services, do read on, as these developments can have a big impact on you, the privacy of your company, and your customers.

Read More

Facebook case: the CJEU's AG opinion is out - should international companies worry?

Jan 14, 2021 5:07:00 PM / by PrivacyPerfect posted in Facebook

On the 13th of January, the Advocate General of the Court of Justice of the European Union (CJEU) Michal Bobek delivered his opinion in case between Facebook and the Belgian Data Protection Authority - Facebook Ireland Limited, Facebook Inc., Facebook Belgium BVBA v Gegevensbeschermingsautoriteit (Case C-645/19)

The opinion follows after the Belgian Data Protection Authority went to court against Facebook for collecting information on the surfing behavior of internet users in Belgium through cookies. The Court of Appeal of Brussels decided to question the CJEU whether the Belgian DPA could indeed start legal proceedings against Facebook.

Read More

How to assess privacy risks in regard to your organisation's website

Dec 18, 2020 12:14:22 PM / by PrivacyPerfect

So, you have a website, or maybe you want to have one for yourself or for your company.
Of course you want to make sure you are sticking to the law and protect the privacy of your visitors - you want to make sure your website is GDPR compliant. But you don’t want to read a book (or, god forbid - the Law!) on the matter. We’ve got your back. This is what you need to know.

Read More

    Lists by Topic

    see all
    harmas_Rajztábla 1-1
    Keep informed!
    Sign up to the Weekly GDPR Digest now.