Legal.digital (Page 4)

Sign in Subscribe

Probe of school surveillance software finds privacy abuses, inaccurate results

Probe of school surveillance software finds privacy abuses, inaccurate results

An investigation into the educational technology company GoGuardian revealed the surveillance software used by schools across the country has routinely invaded students’ privacy and incorrectly flagged non-explicit content as harmful, according to an investigation by the Electronic Frontier Foundation. GoGuardian is used to surveil about 27 million students in 11,

EU Court rules on GDPR right to obtain a first copy of personal data processed free of charge

EU Court rules on GDPR right to obtain a first copy of personal data processed free of charge

Under the General Data Protection Regulation (AVG), any person has the right to ask a processor of personal data to provide access to the personal data relating to him that are being processed. To this end, the data subject may submit a request to the processor. The data subject has

Grindr sues Norway DPA over GDPR interpretations

The dating application Grindr sued the Norwegian data protection authority, Datatilsynet, after it was fined NOK65 million for sharing user locations and advertiser information with marketing partners, NRK reports. The company alleges the authority misinterpreted the EU General Data Protection Regulation in a way that would make it difficult for

CyberEurope: The regulatory evolution of cybersecurity in Europe

CyberEurope: The regulatory evolution of cybersecurity in Europe

We trace the regulatory evolution of cybersecurity in Europe, from the first NIS Directive to the most recent legislative proposals on the subject as part of our series of articles named CyberEurope. “Cybersecurity,” in its most common meaning, means the activity of analyzing and detecting cyber threats, and taking appropriate

EU’s policies to AI: are there blindspots regarding accountability and democratic governance?

EU’s policies to AI: are there blindspots regarding accountability and democratic governance?

Maria Inês Costa (PhD Candidate at the School of Law of the University of Minho. FCT research scholarship holder – UI/BD/154522/2023) ▪ In her recent State of the Union (SOTEU) 2023 speech, the President of the European Commission Ursula von der Leyen addressed several pressing issues, including artificial intelligence

French DPA Issues Guidelines on Data Protection and AI

French DPA Issues Guidelines on Data Protection and AI

On October 11, 2023, the French Data Protection Authority (the “CNIL”) published a new set of guidelines addressing the research and development of AI systems from a data protection perspective. Continue Reading https://www.huntonprivacyblog.com/2023/10/23/french-dpa-issues-guidelines-on-data-protection-and-ai/

Hacker accused of breaching Finnish psychotherapy center facing 30,000 counts

Hacker accused of breaching Finnish psychotherapy center facing 30,000 counts

Finnish prosecutors have charged a hacker on more than 30,000 counts related to allegedly breaching a Helsinki-based private psychotherapy center. The charges include attempted extortion and spreading information that violates private life, according to a statement released this week by Finland’s National Prosecution Authority. Aleksanteri Kivimäki, 26, who

Amsterdam court rejects request under the AVG

Amsterdam court rejects request under the AVG

Rejection of request under the AVG (Machine translated) https://deeplink.rechtspraak.nl/uitspraak?id=ECLI:NL:RBAMS:2023:5743

"Amsterdam court bans technology company from placing tracking cookies without consent"

"Amsterdam court bans technology company from placing tracking cookies without consent"

A technology company may no longer put tracking cookies on a man's computer and/or other devices without his consent because it violates fundamental rights and the AVG. (Machine translated) https://deeplink.rechtspraak.nl/uitspraak?id=ECLI:NL:RBAMS:2023:6530

Rules for AI in the healthcare sector set by the Italian privacy authority

Rules for AI in the healthcare sector set by the Italian privacy authority

The Italian Privacy Authority issued a decalogue of rules on artificial intelligence in the healthcare that sets out principles that can be applicable to both public and private companies using AI. Artificial intelligence (AI) systems are assuming an increasingly prominent role in healthcare services, however, the use of AI in

EU Publications Office publishes Annual Report on Fundamental Rights 2023

EU Publications Office publishes Annual Report on Fundamental Rights 2023

The EU Fundamental Rights Agency's (FRA) Fundamental Rights 2023 Report provides an overview of key developments in the field in 2022, with both successes and areas of concern. The report also presents FRA's views on these developments, including a summary of the evidence supporting these views. (Machine translated) https://ecer.

Overview of reporting obligations in the case of ransomware

Overview of reporting obligations in the case of ransomware

(Machine translated) https://www.rijksoverheid.nl/documenten/rapporten/2023/10/09/tk-bijlage-3-toezegging-overzicht-meldplicht-grote-incidenten-ransomware

EDPS Seminar on the CSAM Proposal: “The Point of No Return?”

EDPS Seminar on the CSAM Proposal: “The Point of No Return?”

On 23 October from 13:00 to 15:00 CET, the EDPS organises a seminar dedicated to the ongoing legislative works on the Commission’s Regulation Proposal on Child Sexual Abuse Material (CSAM).The EDPS issued an own-initiative Opinion on two proposed directives on liability for defective products and on

Survey of Current Universal Opt-Out Mechanisms

Survey of Current Universal Opt-Out Mechanisms

With contributions from Aaron Massey, FPF Senior Policy Analyst and Technologist, Keir Lamont, Director, and Tariq Yusuf, FPF Policy InternSeveral technologies can help individuals configure their devices to automatically opt out of web services’ requests to sell or share personal information for targeted advertising. Seven state privacy laws require that

CNIL offers opinions on AI's data protection compliance

CNIL offers opinions on AI's data protection compliance

France's data protection authority, the Commission nationale de l'informatique et des libertés, released initial opinions on artificial intelligence deployments' compliance with the EU General Data Protection Regulation. The CNIL said the GDPR offers an "innovative and protective framework" for AI while noting how specific GDPR principles can apply to various

"Limburg court rules: Removal of 2 out of 3 cameras in neighbor dispute"

"Limburg court rules: Removal of 2 out of 3 cameras in neighbor dispute"

Summary judgment, neighbors, removal of 3 cameras in connection with sound recordings, award as to 2 of the 3 cameras. Plaintiffs seek removal of 3 cameras placed by defendants (neighbors) on their property. It is established that the cameras record sound within a distance of several meters from the cameras.

How tech corporations like Google, Meta and Amazon should assess impacts on our rights

How tech corporations like Google, Meta and Amazon should assess impacts on our rights

A new policy paper by EDRi members ECNL and Access Now outlines key recommendations on how to make fundamental rights impact assessments meaningful under the European Union's Digital Services Act (DSA). https://edri.org/our-work/how-tech-corporations-like-google-meta-and-amazon-should-assess-impacts-on-our-rights/

Croatia's DPA fines debt collection agency over GDPR violations

Supervisory Authorities

Croatia's DPA fines debt collection agency over GDPR violations

Croatia's Personal Data Protection Agency fined debt collection agency EOS Matrix 5.47 million euros for alleged EU General Data Protection Regulation violations. A complaint filed with the AZOP in March claimed the agency processed the data of a large number of individuals without authorization, including 294 minors. Among its

Amnesty International says EU action fails to address spyware

Amnesty International says EU action fails to address spyware

A report from Amnesty International and the European Investigative Collaborations accuses the EU of being unable to effectively regulate spyware and surveillance technologies, according to Euractiv. The groups say the European Commission and the Council of the European Union do not enforce their own export laws and need to limit

"Dispute between neighbors over security cameras: Request for penalty payment rejected in summary proceedings at Gelderland District Court"

"Dispute between neighbors over security cameras: Request for penalty payment rejected in summary proceedings at Gelderland District Court"

Summary judgment. Dispute between neighbors over security cameras. Claim to impose penalty payment rejected. Urgent interest lacking. (Machine translated) https://deeplink.rechtspraak.nl/uitspraak?id=ECLI:NL:RBGEL:2023:5400

Italy's DPA releases guide for privacy in schools

Italy's DPA releases guide for privacy in schools

Italy's data protection authority, the Garante, released recommendations on how schools can protect the privacy of students, staff and families. The guidelines cover topics including how photos taken on school trips should be managed, regulatory updates and how to protect privacy while using education technology.Full story https://iapp.org/

Spain's AEPD releases encryption assessment tool

Spain's AEPD releases encryption assessment tool

Spain's data protection authority, the Agencia Española de Protección de Datos, released a browser app to assess the security of online encryption systems. The tool is meant to give guidance on what encryption standards to look for while processing personal data and does not transmit any information back to the

Research report Automated algorithm search

Research report Automated algorithm search

The report describes the progress of the Netherlands Cybersecurity Strategy (NLCS) in its 1st year of implementation in 2022. (Machine translated) https://www.rijksoverheid.nl/onderwerpen/digitale-overheid/documenten/rapporten/2023/09/07/onderzoeksrapport-geautomatiseerd-zoeken-naar-algoritmen

Zwarte mensen vaker niet herkend door antispieksoftware Proctorio

Zwarte mensen vaker niet herkend door antispieksoftware Proctorio

Gezichten van mensen met een zwarte huidskleur worden veel minder goed herkend door tentamensoftware Proctorio, blijkt uit onderzoek van RTL Nieuws. De software, die fraude moet herkennen, zoekt bij online tentamens naar het gezicht van een student. Dat zwarte gezichten beduidend slechter worden herkend, leidt tot discriminatie, zeggen deskundigen die

23andMe scraping incident leaked data on 1.3 million users of Ashkenazi and Chinese descent

23andMe scraping incident leaked data on 1.3 million users of Ashkenazi and Chinese descent

Genetic testing giant 23andMe confirmed that a data scraping incident resulted in hackers gaining access to sensitive user information and selling it on the dark web. The information of nearly 7 million 23andMe users was offered for sale on a cybercriminal forum this week. The information included origin estimation, phenotype,