The guidelines on the concepts of the data controller, processor, and joint controllership from EDPS can be used as a useful tool by organizations to assess the proper qualification.
The investigations of the privacy authority led to € 11 million fines, with 65 inspections performed in Italy, 1,300 investigated entities, and a detailed plan for the second half of 2019.
The guidelines on the calculation of GDPR administrative fines from the German data protection authorities can provide valuable support in determining the risk exposure.
The guidelines of the EDPB on the performance of the contract as a legal basis under privacy laws of data processing for online services draw attention to how avoiding mistakes in its usage under the GDPR.
Gambling and video gaming companies risk not to be compliant with the GDPR since they adopt a merely formal approach, while the EU privacy regulation could impact their model of business.
Facebook LIKE button renders the website operator and Facebook joint data controllers according to the ECJ leading to uncertainties in relation to the proper handling of any plugin and third-party cookie under data protection law.
The Greek Data Protection Authority issued a fine of € 150,000 against a major consulting company under the GDPR for unlawful processing of the personal data of its employees.