GDPR

Technology  Law 

Personal Data Processing News

This time we focus on the most important findings from the published information regarding inspections and decisions of the Office for Personal Data Protection in the first half of 2019. We are also reporting on further development concerning codes of conduct and certifications, on the procedure in the event of a security breach and procedure for informing customers about personal data processing, on an important decision related to cookies, and on an effort to unify the procedure for issuing penalties in Germany, and possibly the whole EU. 

22. 11. 2019
Law 

Legal News in e-Commerce, Blockchain and FinTech

The latest news in the area of e-commerce includes the adoption of an EU regulation for multilateral platforms, a bill that may enable the utilisation of banking identities in online legal acts, new obligations concerning Strong Customer Authentication and progress achieved in the implementation of new consumer directives. As a matter of interest, we are also presenting a study focusing on appropriate forms of communicating legal information. 

18. 10. 2019
Law 

Uncertainties regarding the processing of biometric data persist; experts’ opinions on their processing differ

In recent months, the Office for Personal Data Protection (the “Office”) has attracted the attention of both the professional and non-professional public with its decisions or statements on the processing of biometric data, specifically in relation to dynamic biometric signature and attendance systems. As there are a number of open issues with regard to the new data protection legislation, the opinions and approaches of experts regarding the conditions under which data may be processed differ as well. What does the professional debate currently deal with? 

19. 9. 2019
Technology  Law 

Personal Data Processing News [July 2019]

Personal data protection does not go unnoticed even in the summer. Great attention was attracted in particular by the British data protection authority ICO, which announced the possibility of imposing fines worth of millions of pounds on British Airways and Marriott. The European Data Protection Board also kept busy and adopted a series of important documents at its last meeting. The fate of standard contractual clauses and the Privacy Shield as a tool for transferring personal data to third countries and the US remains in the centre of attention. 

6. 8. 2019
Law 

GDPR in practice: The General Data Protection Regulation starts achieving its intended goal

For a number of companies and consumers, 25 May 2018 was a revolutionary milestone in terms of personal data importance. Partly given the significant attention paid by the media, consumers and organisations started recognising their respective rights and obligations. The regulation, which was approved in April 2016 and came into effect two years later, resulted in a number of changes in the functioning of the affected organisations. What changes were they? What is the public perception of the GDPR? Has anything changed in practice at all? 

7. 3. 2019
Law 

Google Receives a Fine of EUR 50 Million for Violating the GDPR

On 21 January 2019, the French equivalent of the Czech Office for the Protection of Personal Data (the “OPPD”), Commission nationale de l'informatique et des libertés (the “CNIL”), imposed a fine of EUR 50 million on GOOGLE LLC for violating the General Data Protection Regulation (the “GDPR”). The fine was imposed for lack of transparency in processing personal data, for insufficiently informing data subjects, and for invalid consents relating to the personalisation of advertising. This is by far the greatest sanction imposed to date since last May, when the Regulation came into effect. 

27. 1. 2019
Law 

11 pieces of advice and recommendations to get the better of the personal data protection regulation

The General Data Protection Regulation or the GDPR was one of the most discussed topics last year. Its compulsory implementation in practice, which occurred in May 2018, was preceded by stormy debates, careful preparations of stakeholders and uncertainty about the practical consequences the regulation would produce. At a business breakfast held at the end of the last week, we assessed the first six months of the GDPR’s implementation. We have selected the 11 most interesting pieces of advice and recommendations to help you find out whether the steps you have taken are in line with the regulation and what to do to achieve compliance. 

22. 1. 2019