Does a data protection authority have to impose a fine for a GDPR breach? The European Court of Justice has now addressed this question. From its almost Solomonic
Even six years after the GDPR came into force, there is still trouble due to national laws that conflict with the requirements of the GDPR. One particular example is the
As a general rule in data protection, the processing of personal data is prohibited. Unless the processing is permitted by a legal provision. The most important exceptions
The Irish Data Protection Commission has launched an investigation into Google. There is a suspicion that Google, before training its Pathways Language Model 2 (PaLM 2)
The Dutch data protection authority Autoriteit Persoonsgegevens (AP) has imposed a fine of 290 million euros on Uber. The ride-hailing service is accused of inadequate data protection.
The European Data Protection Supervisor (EDPS) recently published a first guidance document on the use of Generative Artificial Intelligence (GAI). It is aimed at EU institutions, which in it
A recent study by the consumer advice center shows: The large Internet companies use manipulative designs to obtain consent for the merging of personal data.
The top 5 GDPR fines list for the month of July shows that serious breaches of the GDPR are being prosecuted and penalized across Europe. This is what the well-known second-hand portal Vinted
The 2024 Olympic Games in Paris bring with them a multitude of organizational challenges. The French data protection authority CNIL provides an overview of the most important security measures and
The GDPR grants data subjects the right to request information from data controllers about the processing of their data. How the European Court of Justice interprets the right of access