“I worry that we are caught in a DPA (Data Protection Authority) beauty contest of who issues the bigger fine,” said Ireland Data Protection Commissioner Helen Dixon in her keynote for Daniel Solove’s Privacy+Security Academy Fall Forum Keynote.

Additional Key Takeaways
  • I am hesitant to list our enforcement priorities because I don’t feel that we

Due to the importance of data protection law for employee monitoring practices, a careful and considered approach must be taken when potentially highly intrusive methods, such as tracking employee vehicles, are used. Employees must be informed of the existence of tracking and how it operates, as well as being clearly informed of all the purposes

The French data protection authority (CNIL) recently issued detailed guidance on online cookies and trackers. The guidance includes four documents: Guidelines, Recommendations, FAQs, and a specific statement on audience measurement. Here are some highlights:

  • You can offer users a global consent to a set of purposes if you present, in advance, all the purposes pursued,

The German Federal Motor Transport Authority (KBA) and the Federal Office for Information Security (BSI) recently signed an administrative agreement for cross-departmental cooperation to facilitate and accelerate the safe development of automated and networked driving.

“Anyone who buys a new car today assumes that they will receive a safe vehicle. Modern cars are moving high-performance

How does GDPR apply to the transfer of personal data from an EU entity to an international organization?

“Entities subject to the GDPR that exchange personal data with international organisations have to comply with the GDPR, including its rules on international transfers (Chapter V of the GDPR),” says the European Data Protection Board in a

“It is unknown what the new [Standard Contractual Clauses] will say on ‘Schrems II’ … It would be surprising if the new SCCs did not address the CJEU decision, but it may be overly optimistic to think that they will provide the much-needed certainty that privacy professionals are looking for. The additions are likely to

It’s beginning to look a lot like (a Schrems II solution by) Christmas.

“A revised mechanism allowing companies to transfer Europeans’ data around the world may be ready before Christmas,” said EU digital chief Margrethe Vestager.

“My colleagues Vera Jourova and Didiers Reynders are working very, very hard to look at standard contractual clauses, at

Key Takeaways

  • Particularly

The Data Protection Authority of Rhineland-Palatinate, Germany has issued FAQs on Schrems II, weighing in on the EU-U.S. Privacy Shield and Standard Contractual Clauses. The guidance comes on the heels of FAQs issued recently by Baden-Wuerttemberg’s DPA.

Here’s what the Rhineland-Palatinate authority says about EU-U.S. Privacy Shield:

Privacy Shield

  • The EU-U.S. Privacy Shield can no

In a detailed report titled “Ethics of Connected and Automated Vehicles,” the European Commission sets out key data protection recommendations

Connected and Automated Vehicles (CAVs) are vehicles that are both connected and automated and display one of the five levels of automation according to SAE International’s standard J3016, combined with the capacity to receive and/or