European Commission guidelines for protecting minors under the Digital Services Act (DSA) are a "major step" toward social media bans that will undermine individuals' rights, the Electronic Freedom Foundation (EFF) said Monday.
The U.K. Information Commissioner's Office Monday fined Scottish charity Birthlink £18,000 ($24,000) for destroying around 4,800 personal records, many of which may be irreplaceable. An investigation found Birthlink had limited knowledge of requirements for data protection.
Filtering web gateways can help meet data-security obligations under the General Data Protection Regulation, but as they're based on data processing, they must also ensure data protection, French privacy watchdog CNIL said Monday in a guidance.
The European Commission has cleaned up its act protecting data related to its use of Microsoft 365, the European Data Protection Supervisor (EDPS) announced Monday.
Arrangements that force website users to pay a fee if they refuse to consent to ad tracking are on the rise in Europe, Austrian advocacy group Noyb said in a report it published Thursday.
Data protection officers (DPOs) often bring economic benefits to companies, especially organizations with a positive approach to General Data Protection Regulation (GDPR) compliance, French data authority CNIL said Wednesday, commenting on results of a survey. In addition, DPOs offer a host of other returns, including leverage to win contract tenders, avoidance of sanctions and data leakage and streamlined data management, it said.
Large amounts of data are needed to train general-purpose AI models, but there's only limited information about the data's origin, the European Commission said Thursday.
The EU General Data Protection Regulation gives people the right to human intervention in algorithmic decisions that affect them, the Dutch Data Protection Authority said Wednesday.
The Polish data authority fined McDonald's and a vendor for the restaurant chain after a data breach occurred in a personnel system the vendor managed.
The U.K. is providing adequate protection for personal data transferred from the EU, the European Commission said Tuesday, initiating the process to adopt a new adequacy decision.