04.09.2019

Smart speakers

The German Data Protection Officer and the Hamburg Data Protection Officer check the GDPR-conformity of Alexa and Siri. As a result, Google stops employees from listening to conversations. Amazon is criticized because Polish workers are listening to the tapes in the home office

Read more

04.09.2019

ICO UK - Update report into adtech and real time bidding

The update report clarifies the views of the ICO on adtech, in particular on the use of personal data in RTB (Real Time Bidding), as well as the planned next steps. The ICO's investigations have raised a number of concerns about data protection practices within the RTB. The following areas have been...

Read more

04.09.2019

Notification obligation after deletion of data at the request of the data subject in accordance with Article 19 GDPR

Art. 19 GDPR regulates the notification obligation after the deletion of personal data if this deletion takes place at the request of the data subject: Art. 19 Notification obligation regarding rectification or erasure of personal data or restriction of processing: "The controller shall communicate...

Read more

04.09.2019

CNIL guidelines on tracking

On 4 July, the French data protection authority CNIL published updated guidelines on the use of cookies and other tracking technologies in application of the ePrivacy Directive and the GDPR. The updated guidelines adopted on 19 July have been published in the French Official Journal and can be...

Read more

09.08.2019

Consent for Social Plugins? The ECJ’s Fashion ID decision

The operator of a website that contains the Facebook "Like" button may be jointly responsible with Facebook for the collection and transmission of the personal data of visitors to its website. However, the operator is generally not responsible for the later processing of this data by Facebook. This...

Read more

21.06.2019

The Internal Privacy Guideline - Tips for the setup

An internal data protection guideline should be established by each controller who processes personal data. The policy is an important part of the data protection management system and must meet some criteria. We give a brief overview of the most important points.

Read more

21.06.2019

How to use the common recruiting tools privacy compliant?

Many companies use recruiting tools in their employee selection process. However, these tools are often not used in compliance with data protection regulations. We briefly summarize what is important to consider when using recruiting tools.

Read more

21.06.2019

Email marketing under GDPR: the so-called "spam prohibition"

Email marketing has been a strongly discussed topic since the entry of the GDPR. Surprisingly, the GDPR has essentially no changes to the old law for email marketing and is overlaid by other legislation. This field is covered by the ePrivacy Directive from 2002 and the national legislation based on...

Read more

21.06.2019

Recommendation on the handling of identity cards issued by the State Commissioner for Data Protection of North Rhine-Westphalia

There is great uncertainty among companies as to when the identity card may be copied. The State Commissioner for Data Protection and Freedom of Information of North Rhine-Westphalia (LDI NRW in German) has issued a recommendation on the use of the identity card (available only in German) with case...

Read more

17.05.2019

Data protection conference position paper - Legitime Interest Assessment when processing data under Art. 6 Abs. 1 lit. f GDPR

At the end of March 2019, the German Data Protection Conference published a supplement to the position statement on the applicability of the Telemedia Act for non-public bodies as from 25 May 2018 (available only in German). At the same time, the supplement serves as an orientation guidance for the...

Read more

Avez-vous des questions ou des recommandations pour nous?

Nous sommes ravis de recevoir vos commentaires.