The investigations of the privacy authority led to โฌ 11 million fines, with 65 inspections performed in Italy, 1,300 investigated entities, and a detailed plan for the second half of 2019.
The guidelines of the EDPB on the performance of the contract as a legal basis under privacy laws of data processing for online services draw attention to how avoiding mistakes in its usage under the GDPR.
The position of the European Court of Justice in the Planet 49 case on consent required for the acceptance of cookies might impact the approach previously validated by the Italian data protection authority on the matter.
The retail and fashion sectors need to deal with new legal issues due to the adoption of IoT technologies as a consequence of the rapid digital revolution of the industry.
Gambling and video gaming companies risk not to be compliant with the GDPR since they adopt a merely formal approach, while the EU privacy regulation could impact their model of business.
The data protection authority of Sweden, Datainspektionen, issued a fine under the GDPR against a school that implemented a facial recognition system to monitor the presence of students in classrooms.
The new Italian privacy rules on commercial information remove considerable restrictions on access by companies to such data, granting the opportunity to exploit new categories of data.
The Greek Data Protection Authority issued a fine of โฌ 150,000 against a major consulting company under the GDPR for unlawful processing of the personal data of its employees.
Privacy compliance might no longer be the same after the $ 5 billion fine against Facebook to be issued by the Federal Trade Commission following the Cambridge Analytica case.