Weekly Privacy News Update – Episode 39


France’s DPA publishes comments on EU Data Governance Act and Data Act

Commission nationale de l’informatique et des libertés (CNIL), the data protection authority of France, and the European Data Protection Board members published their opinions regarding the EU Data Governance Act and the planned Data Act. The DPA summarized its conditions for the two legislation, including suitable provisions that will align with the EU General Data Protection Regulation (GDPR), protecting the rights of EU citizens. The comments were made after the invitation by the European Commission.

Source: CNIL, IAPP

Discussions on UK Online Safety Bill put on hold

The UK parliament will suspend the talks on the UK Online Safety Bill amid the political contest as Prime Minister Boris Johnson steps down. The parliamentary debate on the bill, which has provisions comparable to the EU Digital Services Act, will presumably resume in September after the House of Commons returns from its summer recess and a replacement for Johnson is chosen. According to Member of Parliament Kemi Badenoch, the postponement is the right move since the bill is in no fit state to become law.

Source: Euractiv, Politico

TikTok delays privacy policy update after DPC engagement

TikTok halts its privacy policy update in Europe after an “engagement” with the Irish Data Protection Commission (DPC). The planned policy update in Europe would no longer ask users for consent to receive targeted advertising. According to a TikTok spokesperson, personalized ads will provide the best in-app experience and aligns with industry practices. Spain’s data protection authority, Agencia Española de Protección de Datos, made a preliminary investigation on TikTok’s privacy policy update.

Source: IAPP, Tech Crunch

Greek DPA hands over fines to Clearview AI for GPDR violations

Clearview AI faces a fine of EUR 20 million from the Hellenic Data Protection Authority (DPA) for  EU General Data Protection Regulation violations. The tech company is also banned from collecting and processing the personal data of citizens of Greece. Clearview AI will also need to delete the data they have already collected. The decision to issue the penalty was derived from the complaint by human rights advocacy group Homo Digitalis made last May 2021.

Source: TechCrunch, IAPP

Masha Komnenic CIPP/E, CIPM, CIPT, FIP
More about the author

Written by Masha Komnenic CIPP/E, CIPM, CIPT, FIP

Masha is an Information Security and Data Privacy Specialist and a Certified Data Protection Officer. She has been a Data Protection Officer for the past six years, helping small and medium-sized enterprises achieve legal compliance. She has also been a privacy compliance mentor to many international business accelerators. She specializes in implementing, monitoring, and auditing business compliance with privacy regulations (HIPAA, PIPEDA, ePrivacy Directive, GDPR, CCPA, POPIA, LGPD). Masha studied Law at Belgrade University, and she passed the Bar examination in 2016. More about the author

Related Articles

Explore more resources