The European Consumer Organisation (BEUC) has taken action against Google for violations of the EU General Data Protection Regulation (GDPR). BEUC’s press release reads that the tech giant would be unfairly steering consumers towards its surveillance system when they sign up to a Google account, instead of giving them privacy by design and by default...
Privacy and cybersecurity have progressively become crucial in due diligence for mergers and acquisitions (M&As). The Global Banking and Finance Review published an interesting article which underlines how challenging it can be to scrutinise privacy compliance and cybersecurity processes during M&As, especially in the case of past or ongoing data breaches. The article analyses the...
The Coordinated Supervision Committee of the European Data Protection Board (CSC – EDPB) was created in 2018 in accordance with Article 62 of the GDPR, which provides that the European Data Protection Supervisor (EDPS) and the national supervisory authorities, each acting within the scope of their respective competences, shall cooperate actively within the framework of...
Today, at 8.00 am BST, join the PrivacyRules Asian-update session at the PrivSec event With a fast-developing and diverse set of laws and regulations, aligning your privacy program to ensure legal compliance across the APAC region can be challenging. Our panel of experts will explore APAC’s latest developments in data protection laws. Additionally, to allow...
The US Federal Trade Commission (FTC) has ordered CafePress t-shirt and merchandise site former owner to pay a USD 500,000 fine for a data breach it suffered in 2018, but which it also covered up, that impacted more than 23 million customers. The FTC found out that CAfe Press failed to protect their personal data,...
In a recent audit, the US Government Accountability Office (GAO) has recommended the US Department of Health and Human Services (HHS) to establish a mechanism to improve the effectiveness of its data breach reporting process. HHS sets standards for protecting electronic health information and enforces compliance with them, where data breaches for entities under the...
While yet to be adopted, it is useful to some of the key goals of the EU Digital Services Act which aims at ensuring a safe and accountable online environment. On the related website, we can read that for the first time a common set of rules on intermediaries’ obligations and accountability across the single...
The Washington Post publishes an interesting article on the privacy concerns after the Supreme Court decision overturning the Roe vs. Wade precedent which established the right to abortion in the US. The Post speculates that menstrual-tracking apps might provide data which could also be used to identify possible abortions, with clear privacy concerns. Read the Washington...
American Headquarters:
PrivacyRules Ltd.
151 West 4th Street
Suite 200
Cincinnati, OH 45202, USA
European Office:
Via dei Della Robbia 112
50132, Firenze
Italy (IT)