London - Paris
Data@datarainbow.eu

Tag: GDPR

Advocating Privacy and Data Protection for More Than a Decade And Still Fighting Resistance is Painful

As the GDPR has now celebrating it’s 6 years and 4 years of enforcement, Here an exhaustive practical case law analysis of the importance of taking appropriate security measures and how things can go wrong.

Non-Material Damage Compensation

Non compliance with the GDPR has three series of legal consequences : We’ve extensively heard of the administrative enforcement by national Data Protection Authorities. The third level is civil liability as set by the Article 82 GDPR.

CNIL Fined Slimpay For its Lack of Security

In the midst of the holiday season, the French Data Protection Authority CNIL issued an administrative sanction to a French company operating in several countries in Europe offering payment solutions.

The modern Cassandra Complex – By “https://www.linkedin.com/in/daniel-aldridge-2a93922b/” Daniel Aldridge Senior Policy & Programmes Manager at BCS, The Chartered Institute for IT

I’m never one to shy away from a niche topic, especially one at the vanguard of politics and technology, so I was happy to speak at the Holyrood Connect event last week on cyber security and data protection post Brexit. Public Sector Cyber Security Northern Ireland Especially as increasingly I feel that we in the…
Read more

Death of 3rd Party Cookies : Is Privacy Protection Possible For The Future AdTech In The EU ?

Let’s talk about the future of the pervasive and privacy intrusive tracking from the AdTech industry. Will a new system really better protect the right to privacy in the EU? First, one should not forget that privacy in the EU is a fundamental human right protected by the Charter of Fundamental Rights of the European Union [1] The AdTech…
Read more

Online Platforms and Popular Technologies 2020

Legal and Regulatory Responses to Technology Challenges In Octobre 2020, I participated to this online event organised by the Practicing Law Institute PLI. I participated, along with EU and US experts, on the first panel on E.U. Developments in Platform Regulation. The material remains available on demand until Octobre 2021. I focused on Chapitre V,…
Read more

Law Firm Internet Security and Data Protection

Mossack Fonseca hack and the Panama Papers scandal should have been a wake up call for all law firms to take clients data security more seriously. Here is Why we Should All Care About Panamapapers even if we have no offshore investment.

GDPR Is Not Shooting The Messenger

There has been questioning around the application of the GDPR to Royal Mail.

Zoom Visio-conférence Pour Les Juristes

Il est impératif de bien évaluer les incidences du choix d’une technologie sur la protection des données. Un avocat manipulant des données sensibles qui lui sont confiées ou du fait de sa mission, est tenu à la plus grande vigilance. L’analyse d’impact s’impose. En son absence, la mise en cause de la responsabilité est à craindre.

Consumer contracts and the validity of consent

Personal data is the hot potato. If you do’t need it, don”t collect it, don’t keep it. Data minimisation will save you many troubles.

Facial Recognition technologies

Facial Recognition technology collect sensitive biometrics data, they are inacurate and put data at risk.

Privacy, Education and Human Dignity

Access to knowledge for everyone in the increasingly-interconnected society has been a tool for democracy. We discuss here the dangers of a world online and the growing concerns about state surveillance, security, privacy and exploitation. We discuss our right to protect our individual freedom. We conclude that privacy is a fundamental Human Rights in order to guarantee human dignity and freedom.

Interview with Cybertalks

Pre GDPR data privacy principles were ignored…and companies are still complacent as the ICO has been slow to fine organisations for failure to comply. Tara Taubman-Bassirian LLM, GDPR, Data Protection and IP consultant – Voted Privacy Hero of the Year, talks to Karla Reffold in a Cybertals interview about GDPR and the rights of Data Subjects.

Interview With the Privacy Professor Rebecca Herold

2018 privacy hero of the year, Tara Taubman-Bassirian, discusses the EU GDPR, the increasing need for protecting privacy in the increasingly technology-rich environment, and some activities for Data Privacy Day on January 28, 2019. What are the benefits of GDPR? Where can it be improved upon? What do companies struggle with most for GDPR compliance? What is a “hot potato” GDPR issue? How are binding corporate rules (BCRs) used for non-adequate countries? How has Brexit impacted GDPR compliance? Why does privacy matter? What are the current largest threats to privacy? What are some activities for Data Privacy Day? Hear Tara discuss these topics, and more, with Rebecca.

UK Watchdog Investigation of British Airways and Marriott Hotels Security Breaches

Following an incident reported to the ICO in September 2018, the Information Commissioners Office (ICO), the UK’s data protection supervisory authority, investigated and uncovered that the personal data of up to 500,000 BA customers had been unlawfully accessed. The BA’s website had been diverted to a dummy site where customer details were harvested by hackers. Some credit cards long number and security codes had been discolosed causing serious security breaches. On 8th of July 2019, the ICO published a Notice of Intent to fine British Airways 183 million £.

Increasing Fines Expected from German DPAs

In Germany, nationwide, fines have been issued in 41 cases because of GDPR violations. Especially small companies are apparently unprepared for the new rules.

How to Understand the GDPR Legitimate Interest

Much confusion around the concept of Legitimate Interest justifying Personal Data Processing. Worth going back to the roots.

GDPR, Data Privacy Day and The Need for Privacy

Data Security and Privacy interview of Tara Taubman-Bassirian by the Privacy Professor, Rebecca Herold, Tuesday at 2 PM PacificJanuary 22nd 2019: GDPR, Data Privacy Day and The Need for Privacy Episode Description 2018 privacy hero of the year, Tara Taubman-Bassirian, discusses the EU GDPR, the increasing need for protecting privacy in the increasingly technology-rich environment,…
Read more

Google Subject to the Biggest Fine Under GDPR

In what is today the biggest fine under the GDPR, the French Data Protection Authority CNIL investigated Google Android transparency in Data procession. The investigation was consecutive to two class actions filed on the 25th of May 2018. One by the Austrian NGO Non Of Your Business (NOYB), another by the French La Quadrature du Net (LQDN). This decision worth a close look.

Navigating the new EU Data Protection Rules

The General Data Protection Regulation, or “GDPR” – “Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC. – was published 4 May 2016. Enforceable after a grace period of two year, from the 28th of May 2018.

PRIVACY BY DESIGN AND BY DEFAULT UNDER THE GDPR

PRIVACY BY DESIGN have been developed and conceptualised since the 90’s by Ann Cavoukian, Ph.D., and for the first time, a mandatory legal text has included its tenets, the GDPR.

Website transparency : Cookies and privacy notice

The General Data Protection Regulation (GDPR) is not against data processing when done in respect with the data subject rights. The amount of electronically available data and curation and storage tools, justify a better protection. Privacy is a Fundamental Human Right, for dignity and freedom.

GDPR Material and Territorial Scopes

There has been and still remains interrogations and uncertainties around the scope of application of the General Data Protection Regulation.

What is Protected by the GDPR ?

The General Data Protection Regulation applies to Personal Data. But do we know what exactly defines Personal Data? The UK ICO recently published a clarification document.

What to retain from the GDPR after BREXIT

Since the UK referendum vote for BREXIT much has been speculated about the situation of the UK with regard to compliance to the GDPR enforceable from 28 May 2018. Although they are uncertainties, the recent UK Information Commissioner speech has reinforced the opinion that UK businesses need to get ready to comply.

French CNIL’s six first month of GDPR

The CNIL investigated mobile applications using embedded software development kit (SDK) and ad biding gathering personal data even when the application is not in use. The data collection is activated by default, which is contrary to the principal of privacy by design.