‘Mere Upset’ Not Sufficient for GDPR Compensation Claims
On 6 October 2022, Advocate General Manuel Campos Sánchez-Bordona issued an opinion concerning the right to...
Activity of the personal data supervisory authority of Monaco in 2021
The Personal Data Supervisory Authority (hereinafter "CCIN") has published its 13th Activity Report covering the...
Responsible use of AI based tools in medical diagnosis and treatment – the AI...
In 2021, the Norwegian Data Processing Authority (DPA) established a regulatory test environment (“sandbox”) for...
The Panamanian Data Protection Law
The Data Protection Law entered into force in March 2021, two years after its publication on March 29, 2019. This...
Facial Recognition Technology and Data Protection: How to comply?
The development of facial recognition technology has introduced many possibilities to increase cybersecurity,...
Data Protection and Press Freedom in the panamanian framework
In 2022, the Panamanian Data Protection Authority sanctioned the digital media for publishing a public document...
Transfers of personal data in early stages of technology transactions or M&As.
As part of negotiations, due diligence, preliminary reviews and analysis, a party may request or need certain...
UK ICO's new approach to publishing details of complaints, breach reports and...
The UK Information Commissioner's Office (ICO) has started routinely publishing information about complaints made...
Canada’s Proposed Artificial Intelligence and Data Act (AIDA)
This article summarizes the substantive highlights and legislative progress of the proposed Artificial Intelligence...
Bulgarian DPA on the Admissibility of Ongoing Access to Municipality’s Video...
Bulgarian DPA issued an opinion on the questions from a Bulgarian City Municipality regarding requested ongoing...
Argentina - Changes in the Classification and Ranking for Infringements to the...
Trough Resolutions No. 240/2022 and 244/2022 the Agency for Access to Public Information through Resolutions No....
What information needs to provided when personal information will be processed...
If an entity collecting data is not fully transparent about the information that is being collected and how it...
Nothing about #SchremsX: What should companies do while EU bodies discuss the...
New US adequacy draft opinion is out. Everyone is talking about #SchremsIII (and IV and X), so I will not. Instead...
What the President of Eurocloud Swiss says about digital sovereignty
Martin Andenmatten (Glenfis, Switzerland)
Slovenia’s DPA Finds Cloud Computing Provider a (Joint) Controller of Personal...
Slovenia’s Information Commissioner (IC) ordered a cloud computing provider (a public administration body) to enter...
Multiple online pharmacies under investigation for the use of Facebook Pixel
The Swedish Authority for Privacy Protection (“the Swedish DPA”) is currently investigating four online pharmacies...
Analysis of the recent activity of the Portuguese Supervisory Authority - What...
It has been perceived that the sanctioning activity of the Portuguese Supervisory Authority has been fundamentally...
Biden’s Executive Order – A UK Perspective
This article discusses the content of and responses to President Biden’s executive order implementing the new EU-US...
Data Act – one of the key regulation proposals for the EU data economy of the...
Data is certainly a valuable commodity for the digital economy and society. As part of the 2020 European Data...
Directive (EU) 2019/1937 on the protection of persons who report breaches of...
Directive (EU) 2019/1937 of the European Parliament and of the Council of 23 October 2019 on the protection of...