Irish DPC & EDPB Meta Rulings
Earlier this month, the Irish Data Protection Commission (DPC) and European Data Protection Board (EDPB) released the findings in two investigations into Meta’s advertising terms of service. The DPC imposed a combined €390 million fine for violations of GDPR and gave the company three months to bring its practises into legal compliance. The decision and […]
IAPP Europe Data Protection Congress 2022
Introduction The volume of interest at the recent IAPP Europe Data Protection Congress 2022 came as no surprise, as high-profile data protection professionals from far and wide joined together in Brussels for its 11th year. An expansive set of topics included; policy and governance, ePrivacy implementation, artificial intelligence, GDPR enforcement, mergers and acquisitions, data transfers […]
International Conference on Computers, Privacy and Data Protection – CPDP 2022
“For companies, it is not just about limiting risks or complying with the law, but rather about re-branding themselves with different values, far away from exploitative techniques” – CPDP panelist I had the privilege to attend the International Conference on Computers, Privacy and Data Protection – CPDP 2022 last week . This three-day conference bought […]
Ireland: Data protection considerations in the employment context – Part two
The General Data Protection Regulation (Regulation (EU) 2016/679) (‘GDPR’) and the Data Protection Act 2018 (‘the Act’) are the main pieces of legislation regarding data protection in Ireland. The Act supplements the GDPR and includes provisions relating to GDPR derogations, as well as establishes the Data Protection Commission (‘DPC’). In part two of this Insight […]
Ireland: Data protection considerations in the employment context – Part one
The General Data Protection Regulation (Regulation (EU) 2016/679) (‘GDPR’) and the Data Protection Act 2018 (‘the Act’) are the main pieces of legislation regarding data protection in Ireland. The Act supplements the GDPR and includes provisions relating to GDPR derogations, as well as establishes the Data Protection Commission (‘DPC’). In part one of this Insight […]
Purpose Limitation in the GDPR
At the heart of the General Data Protection Regulation (GDPR), lie six fundamental principles for data controllers to follow when processing personal data. These include: Lawfulness, fairness, and transparency Purpose limitation Data minimisation Accuracy Storage limitation Integrity and confidentiality All six principles are subject to the overarching (sometimes called a 7th principle – accountability. For […]
Upcoming Data Protection Legislation – Predictions for 2022
1. EU Directive on representative actions for the protection of the collective interests of consumers 2020/1828 The object of this European Directive is to ensure that a representative action mechanism is available to protect consumer interests in all Member States while providing safeguards to avoid abusive litigation. The Directive applies to infringements by traders of […]
GDPR article 30 – Records of processing activity – ROPAs
The GDPR requires organisations to maintain a Record Of Data Processing Activity, often called a ROPA. This obligation applies to both controllers and processors and their representatives under article 28 (where applicable). There is an exemption for an organization which employs fewer than 250 people, however this will not apply where the processing: is likely […]
Reviewing the core principles of the GDPR
More than three years after the General Data Protection Regulation was introduced, this article revisits the principles that are fundamental to the GDPR and should be embedded in the privacy policies and practices of every organisation. The principles that lie at the core of the GDPR originate largely from the Data Protection Directive (95/46/EC) and, […]
How Your Company Can Use Privacy as a Competitive Advantage
Many companies view GDPR compliance as a necessary evil rather than an opportunity to improve business models and customer experiences. This article takes a closer look at some of the benefits your organisation can gain from using privacy as a key differentiator in your market. Firstly, it’s essential to understand the scope of the General […]