The first GDPR fine was issued in Italy by the Garante for the lack of implementation of privacy security measures following a data breach on the so-called Rousseau platform operating the websites of the Movimento 5 Stelle party.
Cookies privacy consent under the GDPR was tested in the opinion of the EU Advocate General on the Planet49 case, opening interesting questions on the current regime.
When legitimate interest and performance of contract can be used and the level of granularity of privacy consent to justify data processing under the GDPR.
The first Polish GDPR fine is of over € 200K and was issued for lack of provision of privacy information in a scenario where a disproportionate effort was not identified.
Microsoft Xiaoice is one of the most advanced examples of artificial intelligence, but AI systems that are becoming "almost human" lead to major privacy issues that led the Council of Europe to issue guidelines on the topic.
The Italian data protection authority gives interesting insights and raises concerns on its plan of privacy inspections and the activities performed in 2018.