[GDPRhub] Datatilsynet (Norway) - 23-114365TVI-TOSL/08 and 23-114359TVI-TOSL/08 Oslo’s District Court rejected Meta’s request to issue a temporary injunction against the Norwegian DPA’S earlier ban on behavioural advertisement under Article 6(1)(b) and (f) GDPR. https://gdprhub.eu/index.php?title=Datatilsynet_(Norway)_-_23-114365TVI-TOSL/08_and_23-114359TVI-TOSL/08 #gdpr #avg

[Bits off Freedom] Technologie raakt sommige groepen mensen in onze samenleving harder dan anderen (en dat zou niet zo mogen zijn) 12-09-2023 @bitsoffreedom https://www.bitsoffreedom.nl/2023/09/12/technologie-raakt-sommige-groepen-mensen-in-onze-samenleving-harder-dan-anderen-en-dat-zou-niet-zo-mogen-zijn/ #gdpr #avg

[GDPRhub] IMY (Sweden) - DI-2021-1905 The Swedish DPA, IMY, issued a penalty fee of SEK 35 million against the Trygg-Hansa. The insurance company had serious security flaws resulting in 650,000 customers' data being accessible online from October 2018 to February 2021. https://gdprhub.eu/index.php?title=IMY_(Sweden)_-_DI-2021-1905 #gdpr #avg

[GDPRhub] IMY (Sweden) - Mål nr 1930-23 On appeal, the Swedish Administrative Court (First Instance), upheld the Swedish DPA’s decision to fine the Board of Region Darlana for attaching patient names to summons for health care visits by mail. https://gdprhub.eu/index.php?title=IMY_(Sweden)_-_M%C3%A5l_nr_1930-23 #gdpr #avg

@jon What's your definition of private? #AVG here in Karlsruhe is considered the largest private German railway company, but in reality it is anything but private.
https://de.wikipedia.org/wiki/Albtal-Verkehrs-Gesellschaft

[GDPRhub] AEPD (Spain) - PS-00243-2023 Spanish DPA decided that non-existing contracts between subprocessors and processors can justify initiating a sanctioning procedure. Especially when the controller was not notified about subprocessors being involved in the data processing activities. https://gdprhub.eu/index.php?title=AEPD_(Spain)_-_PS-00243-2023 #gdpr #avg

[NLD_AP] Besluit vergunning collectieve horecaontzegging Purmerend 11-09-2023 https://www.autoriteitpersoonsgegevens.nl/documenten/besluit-vergunning-collectieve-horecaontzegging-purmerend #avg #gdpr

Forthcoming: 14-09-2023 Opinion NADA and Others C-115/22 (Approximation of laws) https://eur-lex.europa.eu/legal-content/NL/ALL/?uri=CELEX:62022CN0115 #ecj #gdpr #avg

[GDPRhub] APD/GBA (Belgium) - 128/2023 The Belgian DPA ordered, based on Article 58(2)(c), a controller to comply with a request for information in line with Article 15(1) and erasure in line with Article 17(1) after the controller failed to reply to an access request. https://gdprhub.eu/index.php?title=APD/GBA_(Belgium)_-_128/2023 #gdpr #avg

[GDPRhub] AEPD (Spain) - PS/00428/2022 The Spanish DPA fined a Community €1,500 for unduly exposure of personal data to third parties that appeared in a Decree of Execution of Judicial Titles that was placed on a public bulletin board, in violation of Article 5(1)(f) and Article 32 GDPR. https://gdprhub.eu/index.php?title=AEPD_(Spain)_-_PS/00428/2022 #gdpr #avg

[Bits off Freedom] Waarom nauwkeurige algoritmes er toch vaak naast zitten 07-09-2023 @bitsoffreedom https://www.bitsoffreedom.nl/2023/09/07/waarom-nauwkeurige-algoritmes-er-toch-vaak-naast-zitten/ #gdpr #avg

[NLD_AP] Advies Wijzigingswet beperking toegang UBO-registers 07-09-2023 https://www.autoriteitpersoonsgegevens.nl/documenten/advies-wijzigingswet-beperking-toegang-ubo-registers #avg #gdpr

[Bits off Freedom] Monthly update on human rights & tech: August 2023 06-09-2023 @bitsoffreedom https://www.bitsoffreedom.nl/2023/09/06/monthly-update-on-human-rights-tech-august-2023/ #gdpr #avg

[NLD_AP] Brief VNG over verwerking van persoonsgegevens van bijstandsgerechtigden 06-09-2023 https://www.autoriteitpersoonsgegevens.nl/documenten/brief-vng-over-verwerking-van-persoonsgegevens-van-bijstandsgerechtigden #avg #gdpr

[NLD_AP] Ontwerpbesluit gedragscode toegangsbeleid ISPS-bedrijven 06-09-2023 https://www.autoriteitpersoonsgegevens.nl/documenten/ontwerpbesluit-gedragscode-toegangsbeleid-isps-bedrijven #avg #gdpr

[NLD_AP] Privacy Gedragscode Toegangsbeleid ISPS-bedrijven 06-09-2023 https://www.autoriteitpersoonsgegevens.nl/documenten/privacy-gedragscode-toegangsbeleid-isps-bedrijven #avg #gdpr

[NLD_AP] Ontwerpbesluit gedragscode toegangsbeleid ISPS-bedrijven 06-09-2023 https://www.autoriteitpersoonsgegevens.nl/actueel/ontwerpbesluit-gedragscode-toegangsbeleid-isps-bedrijven #avg #gdpr

[GDPRhub] AEPD (Spain) - PS/00076/2023 The Spanish DPA ordered a controller to reply to a data subject's request to delete personal data, to an objection of processing of data for marketing purposes, transfer to third parties and profiling https://gdprhub.eu/index.php?title=AEPD_(Spain)_-_PS/00076/2023 #gdpr #avg

[GDPRhub] DPC (Ireland) - 20.07.2023 (case number redacted) The Irish DPC found that Airbnb was in violation of Articles 5, 12, 15 and 17 GDPR for an incomplete response to an access request and delays in addressing an erasure request. No fine was issued. https://gdprhub.eu/index.php?title=DPC_(Ireland)_-_20.07.2023_(case_number_redacted) #gdpr #avg

[GDPRhub] AEPD (Spain) - PS-00450-2022 The Spanish DPA fined a landlord €1,500 for installing camera, which captured a shared area, with only partial consent from all the tenants it affected. This resulted in a breach under Article 6(1) GDPR. https://gdprhub.eu/index.php?title=AEPD_(Spain)_-_PS-00450-2022 #gdpr #avg