Information Management Today

Italian Garante Publishes Updated Guidelines on Cookies and Other Tracking Technologies

Hunton Privacy

AUGUST 12, 2021

Laura Liguori of Portolano Cavallo reports that on June 10, 2021, the Italian Data Protection Authority ( Garante or “DPA”) adopted a new version of its guidelines for cookies and other tracking mechanisms (the “Guidelines”). Below is an overview of the key points: Types of Online Markers and Legal Grounds. Reiteration of Consent.

GDPR

GDPR Analytics Privacy Access

Belgian DPA Releases Guidance Materials and FAQs on Cookies and Other Tracking Technologies

Hunton Privacy

APRIL 15, 2020

On April 9, 2020, the Belgian Data Protection Authority (the “Belgian DPA”) released guidance and a set of frequently asked questions (“FAQs”) regarding the use of cookies and other tracking technologies. Key takeaways from the Belgian DPA’s guidance and the FAQs include: Transparency: Users must be informed about the use of cookies.

Communications

Communications Data collection Access IT

$10,000,000 civil penalty for disclosing personal data without consent

Data Protection Report

APRIL 30, 2024

The order also requires that the company destroy personal data for which it had not received consent and to create a document retention and destruction policy. Its privacy policy stated that the company would treat the data confidentially, and the company would not share data without user consent.

Personal data

Personal data Privacy Information governance Compliance

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Belgian Data Protection Authority Releases Direct Marketing Recommendation

Hunton Privacy

FEBRUARY 25, 2020

The Belgian DPA also emphasizes that it is the data controller’s responsibility to verify, before the data processing takes place, the origin of the data and how data was collected (including on the basis of which legal ground it was collected, by which entity, for which purpose and for how long). Processing Purposes. Lawfulness.

Marketing

Marketing Personal data GDPR Communications

FRANCE: Cookies – new record sanctions for tech giants – CNIL fines Facebook Ireland 60 million euros and Google 150 million euros.

DLA Piper Privacy Matters

JANUARY 8, 2022

and youtube.com to reject cookies as easily as they may accept them and (ii) issued an injunction to remedy to such infringement within 3 months under penalty of 100,000 euros per day of delay. Several clicks were necessary to reject all cookies (3 for Facebook and 5 for Google), when only one click was necessary to accept them all.

GDPR

GDPR Compliance Data collection Government

Developments in Cookie Regulation: French CNIL Declares Intent to Audit Websites for Cookie Compliance

Data Matters

APRIL 26, 2021

On April 2, 2021 the French Data Protection Authority (the “ Commission Nationale de l’Informatique et des Libertés ” or “ CNIL ”) published its intent to start auditing websites for compliance with cookie regulations. The CNIL had determined that a 6-month grace period would apply following publication of the Cookie Guidelines.

Compliance

Compliance Analytics Privacy GDPR

UK ICO Publishes New Guidance on the Use of Cookies and Similar Technologies

Data Matters

JULY 11, 2019

On 3 July 2019, the UK’s Information Commissioner’s Office (“ICO”) published new guidance on cookies and similar technologies (“Guidance”) in conjunction with a new blog post: “Cookies – what does ‘good’ look like?” which aims to provide “myth-busting” advice on common cookies uncertainties. This must be GDPR-standard consent.

GDPR

GDPR Analytics Privacy Personal data

Key Takeaways on eDiscovery/eDisclosure, Info Governance and Collaboration from The Master’s Conference in London

eDiscovery Daily

AUGUST 3, 2023

Cookie cutter approaches are no longer adequate, and legal teams need to adapt to the unique needs of their clients. Know How Data Impacts Cases: With data playing an increasingly crucial role in legal matters, it is essential to have up-to-date Information Governance (IG) policies.

Government

Government Artificial Intelligence Information governance GDPR

Ireland: New DPC Guidance Sets Regulatory Expectations around Use of Website Cookies

DLA Piper Privacy Matters

APRIL 9, 2020

The Irish Data Protection Commission (DPC) has become the latest regulator to issue long-awaited guidance on the use of cookies, offering organisations a clear view of the DPC’s expectations on a range of issues from cookie banners, policies and consent collection processes. Cookie Sweep Survey.

GDPR

GDPR Analytics Personal data Compliance

Austrian DPA Finds Data Transfers Resulting from Analytics Cookie Use to Be in Violation of GDPR Data Transfer Requirements

Hunton Privacy

JANUARY 24, 2022

The Austrian DPA ruled that the use of Google Analytics cookies by the website operator violates both Chapter V of the EU General Data Protection Regulation (“GDPR”), which establishes rules on international data transfers, and the Schrems II judgment of the Court of Justice of the European Union. Austrian DPA’s Decision.

Analytics

Analytics GDPR Personal data Data collection

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

Don’t let the Cookies crumble! For companies whose websites still operate a blatantly non-compliant opt-out cookie consent model in the EU, 2020 is the year to rectify this! 2019 saw a number of developments in the area of cookies which can’t be ignored. Take time to reflect (on your policies). In the U.S.,

Privacy

Privacy GDPR Data breaches Risk

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The company regularly monitors the activity of EEA residents, such as by using tracking cookies. The GDPR does not protect the data of legal persons, like corporations, or the deceased. Common legal bases include obtaining user consent, processing data to execute a contract with the user, and processing data for the public interest.

GDPR

GDPR Compliance Personal data Privacy

UK: ICO PUBLISHES SIGNIFICANT NEW GUIDANCE ON COOKIES AND SIMILAR TECHNOLOGIES

DLA Piper Privacy Matters

JULY 4, 2019

The Information Commissioner’s Office (“ ICO “) has published its eagerly awaited guidance on the use of cookies and similar technologies. In it, the UK’s data protection authority has formally recognised the stricter standards of consent and transparency required for cookie usage in the world of the GDPR.

GDPR

GDPR Personal data Privacy Communications

Germany: Bavarian Data Protection Authority announces possible fines after sobering result of website search

DLA Piper Privacy Matters

MARCH 21, 2019

The DPA found that 30 of the 40 audited companies did not sufficiently inform data subjects on their websites and requests that all cookies/trackers are identified and disclosed to the website users as well as that data subjects are informed about the specific purposes for which personal data is processed.

GDPR

GDPR Personal data Risk Retail

BELGIUM: Belgian DPA reveals its strategy for the next 5 years.

DLA Piper Privacy Matters

FEBRUARY 11, 2020

The Belgian Data Protection Authority published its strategic plan setting out its policy priorities and strategic objectives for the next five years. Online data protection , with a special role for cookies and the related transparency and lawfulness obligations. By Patrick Van Eecke, Frederik Ringoot and Thomas Gils.

IT

IT GDPR Compliance Personal data

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

Don’t let the Cookies crumble! For companies whose websites still operate a blatantly non-compliant opt-out cookie consent model in the EU, 2020 is the year to rectify this! 2019 saw a number of developments in the area of cookies which can’t be ignored. Take time to reflect (on your policies). In the U.S.,

Privacy

Privacy GDPR Data breaches Risk

How to Comply with GDPR, PIPL, and CCPA

eSecurity Planet

DECEMBER 22, 2021

PIPL includes several lawful reasons—necessary for a contract, legally necessary, related to an emergency, related to public interest, or previously disclosed data—that businesses can gather and use data without the consent of the individual. The policy, no longer static, must react to certain variables in real-time.

GDPR

GDPR Compliance Data Privacy Privacy

CIPL Submits Comments to UK DCMS Consultation on UK Data Reform

Hunton Privacy

DECEMBER 17, 2021

Last month, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth submitted a response to the UK Department for Digital, Culture, Media & Sport (“DCMS”) on its Consultation on Reforms to the Data Protection Regime (the “Response”). supports DCMS’ proposal to incorporate a test based on the U.S.

GDPR

GDPR B2B Risk Government

Data: A New Direction or Misdirection? ICO Responds to UK Government Consultation on Its Proposed New Data Protection Regime

Data Matters

OCTOBER 26, 2021

Cookies: The ICO encouraged the UK government to “go further” in its proposed reforms to cookies. The ICO agreed that people’s consent via cookie pop-ups is currently not meaningful and expressed support for alternative design-based solutions where people can set their cookie preferences across all websites they visit.

Government

Government GDPR IT Personal data

How Automation can help you in Managing Data Privacy

Security Affairs

OCTOBER 20, 2020

Certain softwares deal with cookies and consent, while others could focus on breach notification. Privacy Policy Management : One of the core parts of any regulation is the need to revamp an organization’s privacy policies. These policies need to be in line with the data privacy regulations in order to comply.

Data Privacy

Data Privacy Privacy GDPR Compliance

BELGIUM: Belgian Data Protection Authority issued 59 sanctions past 12 months

DLA Piper Privacy Matters

JUNE 4, 2020

That being said, the news alert reads as a warning that the BDPA will enhance its inspections efforts (the BDPA also explicitly refers to its earlier request for additional funding for the Inspection Service): “ Up to now, our inspection policy has mainly been reactive: we have followed up the many complaints received.

Marketing

Marketing GDPR Data breaches Personal data

UK Government sets out proposals to shake up UK data protection laws

Data Protection Report

SEPTEMBER 28, 2021

Core elements of the GDPR: legal bases / conditions. For the most part, proposals around the legal bases / conditions are clarifications to help organisations establish the legal basis for processing; others are more aligned with the Government’s goal of facilitating innovation and promoting research.

Government

Government FOIA GDPR Compliance

ITALY: the Garante aligns with CNIL and DSB holding that the use of Google Analytics leads to unlawful transfer of Personal Data

DLA Piper Privacy Matters

JUNE 27, 2022

Still, it can only emerge as a result of a detailed assessment of the data transfer, such as can be carried out with the legal tech tool “ Transfer ” and related methodology developed by DLA Piper. Several European alternatives to Google Analytics are already available on the market today.

Personal data

Personal data Analytics GDPR Privacy

DCMS Consults on National Data Strategy

Hunton Privacy

SEPTEMBER 15, 2021

The consultation will close on November 19, 2021, and the Centre for Information Policy Leadership (“CIPL”) will consult with members to prepare a formal response to the consultation. Organizations are encouraged to provide input on a range of data protection proposals, some of which are outlined below.

GDPR

GDPR Personal data Risk Communications

Cookie Consent Is the New Panic

HL Chronicle of Data Protection

JULY 3, 2018

Judging by the number of calls and the intensity of the discussions about how to comply with the cookie consent requirement in a post-GDPR world, this issue has become a top worry for organisations and data protection officers. As it happens, the law that requires consent for the use of cookies and similar technologies has not even changed.

GDPR

GDPR Computer and Electronics Compliance Privacy

Belgian Privacy Commission Opens Public Consultation on Draft Cookie

Hunton Privacy

MAY 1, 2014

On April 24, 2014, the Belgian Data Protection Authority (the “Privacy Commission”) published a Draft Recommendation regarding cookie usage, inviting all stakeholders to provide their input on the text. The Draft Recommendation provides useful examples of such cookie policies. of the revised e-Privacy Directive 2002/58/EC ).

Privacy

Privacy Communications Authentication Compliance

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The company regularly monitors the activity of EEA residents, such as by using tracking cookies. The GDPR defines the circumstances under which companies can legally process personal data. An organization must establish and document its legal basis before collecting any data. The principles are as follows.

GDPR

GDPR Compliance Personal data Privacy

else 12.16: “It’s not entirely rational”

John Battelle's Searchblog

DECEMBER 16, 2013

This week, Google is on our minds and in the news, cookies are used for surveillance, the ephemeral web isn’t so ephemeral, and we’ve got more friends thinking about our emerging Data Society. NSA uses Google cookies to pinpoint targets for hacking – Washington Post. Surveillance: Cozy or Chilling? – NYTimes.

Privacy

Privacy Personal data Government IT

French court issues decision on legality of Privacy Rules and Terms of Use under data protection and consumer law

Data Protection Report

APRIL 12, 2019

UFC asked the judges to declare Google’s policies unlawful and abusive, on the grounds that they did not respect consumers’ privacy and personal data. UFC Que Choisir also initiated legal proceedings against Twitter and Facebook. The TGI rejected 265 clauses from Twitter policies [1] and 430 from Facebook policies [2].

Privacy

Privacy Personal data IT Data Privacy

The UK Government unveils its post-Brexit plans to shake up data protection laws

Data Protection Report

AUGUST 27, 2021

Procedural” – i.e. the procedural and regulatory steps needed to give legal effect to the adequacy determination. the UK Government has unveiled plans to consult on the future of the UK’s data regime, with the stated aim of making it “even more ambitious, pro-growth and innovation-friendly”.

Government

Government IT Privacy Personal data

European Parliament’s LIBE Committee Approves Amended ePrivacy Regulation

Hunton Privacy

OCTOBER 19, 2017

Also on October 19, 2017, the Centre for Information Policy Leadership at Hunton & Williams (“CIPL”) published a study on the impact of the proposed Regulation (the “Study”). This is bound to lead to legal uncertainty and will be harmful to European businesses. The Study focuses on the proposed new “cookie provisions” (Art.

GDPR

GDPR Communications Analytics Metadata

Government publishes consultation on post-Brexit data reforms

DLA Piper Privacy Matters

SEPTEMBER 10, 2021

Changes to the rules on cookies. The changes to the Privacy and Electronic Communications Regulations 2003 (PECR) have been well trailed in the media and seek to address the frustrations with cookie pop ups. amending the threshold for response (e.g. be able to refuse a request if the request is vexatious).

Government

Government Paper Personal data GDPR

Key lessons from the first major GDPR fines for cyber breaches

Privacy and Cybersecurity Law

JANUARY 18, 2021

It was the successful attack, by the controllers (and their legal counsel), on the application of a draft policy on fines which pegged the level of fines to turnover, and from which the ICO was eventually pushed to depart following robust representations and legal arguments.

GDPR

GDPR Cybersecurity Data breaches Risk

Reflecting on the UK Inaugural DaTA Conference: Top Five Trends to Watch as Global Regulators Step up Enforcement in Digital Markets

Data Matters

JUNE 27, 2022

As emphasized by Bill Kovacic, professor of law and policy at George Washington University, regulatory activity should not be confused with accomplishment. Collaboration between regulators and industry.

Marketing

Marketing Data science Privacy Artificial Intelligence

GDPR – The Year in Review

HL Chronicle of Data Protection

MAY 29, 2019

The Dutch DPA issued guidance (7.3.2019) stating that cookie walls are not compliant with the GDPR, as the consent resulting from a cookie wall is not freely given. In this situation, the ePD rule applies and data controllers cannot avail themselves of a legal basis for processing other than consent. Enforcement Actions.

GDPR

GDPR Personal data Privacy Information architecture

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

Update to Privacy Policy / Notices. AG Becerra says requiring the AG’s office to provide “legal counsel at taxpayers’ expense to all inquiring businesses creates the unprecedented obligation of using public funds to provide unlimited legal advice to private parties.” If Unchanged, The New Law Will Change The Way You Use Cookies.

Privacy

Privacy Sales Compliance Cybersecurity

2019 end-of-year review part 1: January to June

IT Governance

DECEMBER 27, 2019

The penalty, which was by far the biggest GDPR fine in the eight months that the Regulation had been in effect, related to two violations: Google had failed to adequately explain to its users why it was collecting their data, and it didn’t document a legal basis for doing so.

Data breaches

Data breaches GDPR Passwords Personal data

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

Update to Privacy Policy / Notices. AG Becerra says requiring the AG’s office to provide “legal counsel at taxpayers’ expense to all inquiring businesses creates the unprecedented obligation of using public funds to provide unlimited legal advice to private parties.” If Unchanged, The New Law Will Change The Way You Use Cookies.

Privacy

Privacy Sales Education Compliance

UK Court Ruling Allows Claims Against Google for Misuse of Private Information

Hunton Privacy

APRIL 2, 2015

The claimants were users of Apple’s Safari browser who argued that during certain months in 2011 and 2012, Google collected information about their browsing habits via cookies placed on their devices without their consent and in breach of Google’s privacy policy. The Court of Appeal ruled on two important issues.

Privacy

Privacy Data breaches IT

Google Granted Permission to Appeal to the UK Supreme Court

Hunton Privacy

AUGUST 6, 2015

As we reported previously , the claimants in this case were users of Apple’s Safari browser who argued that during certain months in 2011 and 2012, Google collected information about their browsing habits via cookies placed on their devices without their consent and in breach of Google’s privacy policy.

Privacy

Privacy IT

Belgian DPA decision on IAB Transparency and Consent Framework

DLA Piper Privacy Matters

MARCH 2, 2022

The TC String allows the relevant vendors to analyse the preferences of the user to see whether there is a legal basis to process the personal data of the user for the relevant marketing purposes. IAB Europe does not foresee any participant compliance control under the TCF policy rules (breach of articles 24.1, 13 and 14 GDPR.

GDPR

GDPR Personal data IT Compliance

UK: How real is the threat of data protection group litigation in the UK?

DLA Piper Privacy Matters

NOVEMBER 6, 2018

Many insurers are actively marketing cyber insurance policies though as with all insurance cover, care needs to be taken to ensure that the cover offered is sufficient to address the potential losses and claims arising. Standard exclusions and policy terms may also present barriers to successful claims for the unwary insured.

Insurance

Insurance Data breaches Personal data GDPR

CCPA Enforcement Date Rapidly Approaching: California Attorney General Proposes Regulations for Final Review With July 1, 2020 Less Than One Month Away

Data Matters

JUNE 4, 2020

If the OAL approves the proposed final regulations, they will be finalized and enforceable by the AG, subject to any legal challenges. These compliance steps might include the following: Finalize updates to privacy policies. This submission signals the end of the AG’s CCPA regulation drafting process that began in early 2019.

Privacy

Privacy Compliance Sales IT

EU: NEW GUIDELINES ON ONLINE SERVICES AND ‘PERFORMANCE OF A CONTRACT’ BASIS FOR PROCESSING

DLA Piper Privacy Matters

APRIL 17, 2019

Two examples of activities which are likely to fall into the latter category are (i) service improvement / development of the website; and (ii) advertising of related services (including online behavioural advertising facilitated by cookie technologies) on the website. · Purpose limitation. The principle of purpose limitation (i.e.

Personal data

Personal data Privacy Sales Risk

Italian Garante Publishes Updated Guidelines on Cookies and Other Tracking Technologies

Belgian DPA Releases Guidance Materials and FAQs on Cookies and Other Tracking Technologies

Webinars

Trending Sources

$10,000,000 civil penalty for disclosing personal data without consent

Webinars

Belgian Data Protection Authority Releases Direct Marketing Recommendation

FRANCE: Cookies – new record sanctions for tech giants – CNIL fines Facebook Ireland 60 million euros and Google 150 million euros.

Developments in Cookie Regulation: French CNIL Declares Intent to Audit Websites for Cookie Compliance

UK ICO Publishes New Guidance on the Use of Cookies and Similar Technologies

Key Takeaways on eDiscovery/eDisclosure, Info Governance and Collaboration from The Master’s Conference in London

Ireland: New DPC Guidance Sets Regulatory Expectations around Use of Website Cookies

Austrian DPA Finds Data Transfers Resulting from Analytics Cookie Use to Be in Violation of GDPR Data Transfer Requirements

The Privacy Officers’ New Year’s Resolutions

How to implement the General Data Protection Regulation (GDPR)

UK: ICO PUBLISHES SIGNIFICANT NEW GUIDANCE ON COOKIES AND SIMILAR TECHNOLOGIES

Germany: Bavarian Data Protection Authority announces possible fines after sobering result of website search

BELGIUM: Belgian DPA reveals its strategy for the next 5 years.

The Privacy Officers’ New Year’s Resolutions

How to Comply with GDPR, PIPL, and CCPA

CIPL Submits Comments to UK DCMS Consultation on UK Data Reform

Data: A New Direction or Misdirection? ICO Responds to UK Government Consultation on Its Proposed New Data Protection Regime

How Automation can help you in Managing Data Privacy

BELGIUM: Belgian Data Protection Authority issued 59 sanctions past 12 months

UK Government sets out proposals to shake up UK data protection laws

ITALY: the Garante aligns with CNIL and DSB holding that the use of Google Analytics leads to unlawful transfer of Personal Data

DCMS Consults on National Data Strategy

Cookie Consent Is the New Panic

Belgian Privacy Commission Opens Public Consultation on Draft Cookie

GDPR compliance checklist

else 12.16: “It’s not entirely rational”

French court issues decision on legality of Privacy Rules and Terms of Use under data protection and consumer law

The UK Government unveils its post-Brexit plans to shake up data protection laws

European Parliament’s LIBE Committee Approves Amended ePrivacy Regulation

Government publishes consultation on post-Brexit data reforms

Key lessons from the first major GDPR fines for cyber breaches

Reflecting on the UK Inaugural DaTA Conference: Top Five Trends to Watch as Global Regulators Step up Enforcement in Digital Markets

GDPR – The Year in Review

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

2019 end-of-year review part 1: January to June

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

UK Court Ruling Allows Claims Against Google for Misuse of Private Information

Google Granted Permission to Appeal to the UK Supreme Court

Belgian DPA decision on IAB Transparency and Consent Framework

UK: How real is the threat of data protection group litigation in the UK?

CCPA Enforcement Date Rapidly Approaching: California Attorney General Proposes Regulations for Final Review With July 1, 2020 Less Than One Month Away

EU: NEW GUIDELINES ON ONLINE SERVICES AND ‘PERFORMANCE OF A CONTRACT’ BASIS FOR PROCESSING

Stay Connected