Es wird gefiltert nach: November 2018


Uber fined £385,000 in the UK and €600,000 in the Netherlands

Uber US and Uber Netherlands were considered to be joint controllers which made them both separately liable for claims of customers of Uber. Uber was fined after a 'serious breach' allowing hackers to download worldwide 54 million customer data. ...Mehr lesen

EDM erhält 4-Sterne-Zertifikat

Der Cloud-Dienst des Österreichischen Bundesministeriums für Nachhaltigkeit und Tourismus erhält neuerlich das StarAudit-Zertifikat. Auditoren bestätigen ein außerordentlich hohes Niveau in Bezug auf Datenschutzmanagementprozesse und Informationssicherheit. ...Mehr lesen

Slovenia’s ICO defines DPO’s additional tasks that could result in a conflict of interests

Paragraph 6, Article 38 of the General Data Protection Regulation (GDPR) allows the Data Protection Officer (DPO) to fulfil other tasks and duties (beside serving as the DPO) for the controller or processor, provided however, that fulfilling such additional assignments ...Mehr lesen

The Spanish DPA (AEPD) issues guidelines regarding the management and notification of security breaches according to GDPR

The Agencia Española de Protección de Datos ( AEPD) presented guidelines regarding the management and notification of security breaches in compliance with GDPR. ...Mehr lesen

Turkey: Data Protection Matters in M&A Transactions

Privacy issues in mergers and acquisitions take the attention of transaction parties among other things in these days. ...Mehr lesen

Cybersecurity und Cloud Computing: So erreicht Europa den ultimativen Wettbewerbsvorteil am digitalen Weltmarkt

Die DSM Cloud Stakeholder Konferenz, mit Informationen aus erster Hand über „The EU Cyber Security Package and GDPR Code of Conduct for Cloud Procurement in Europe” ...Mehr lesen

With Legislative Decree 101/2018, Italy harmonized the national privacy legislation to the GDPR

With Legislative Decree n. 101/2018 the Italian legislator has finally taken the last necessary step in order to coordinate the local privacy law to the GDPR. This intervention, in particular, entailed the repealing of the rules considered incompatible with the European ...Mehr lesen

Doping control in sport – how about personal data?

As the legal representatives of the Slovak Anti-doping Agency (hereinafter referred to as “SADA”), we have taken part in several proceedings known as anti-doping rule violations (hereinafter referred to as “ADRV”). ADRV is considered as conduct of an athlete which ...Mehr lesen

List of personal data processing activities that must be subject to a Data Protection Impact Assessment (“DPIA”)

The CNPD (Portuguese Data Protection National Commission), as the Portuguese supervisory authority, has approved Regulation nr. 1/2018 (“Regulation”), pursuant to Articles 35, no. 4 and 57, no. 1, k) of the General Data Protection Regulation (“GDPR”), that provides a ...Mehr lesen

In-vehicle emergency call systems (e-call) in Turkey

In-vehicle emergency call (eCall) systems, which have been in use for a long time, are defined as systems within vehicles being activated either automatically or manually, that establish connection with the 112 emergency call centers in cases of an emergency. ...Mehr lesen