After declaring Google Analytics is illegal, the Austrian DPA has declared Google’s IP anonymisation an insufficient protection measure for data transfers between the EU and the US. The Authority has also rejected the notion of a “risk based approach” had been submitted by Google. Find the decision, redacted by the NGO None of Your Business...
The Office of the Privacy Commissioner of Canada adopted a joint statement underlining that the heads of Canada’s privacy protection authorities recommend new laws to delineate when the use of facial recognition by police is acceptable. The Facial recognition has emerged as a tool of significant interest for police agencies in Canada. Used responsibly and...
The Spanish government declared that the smartphones of the Prime Minister Pedro Sánchez and the Defense Minister Margarita Robles were infected last year with the spyware Pegasus. Manufacturers claim it is only available to state agencies. The government spokesman, in addition to announcing the opening of an investigation by the Audencia Nacional, said that the...
ISO – International Organization for Standardization has published the ISO Draft International Standard 27557 which provides guidelines for organizational privacy risk management. The document provides guidance to organizations for integrating risks related to the processing of PII as part of an organizational privacy risk management program. It distinguishes between the impact to an individual that...
According to the new directives issued by the Indian Government, organisations have six hours to report cybersecurity incidents. The requirement was proposed by India’s Computer Emergency Response Team (CERT-In) after identifying specific gaps at the origin of security incidents requiring more aggressive measures. Read more in this article from BleepingComputer.
The Danish DPA appreciates the efforts of the European Commission to secure an agreement with the United States on a plan that allows the flow of personal data across the Atlantic, yet they currently stand as a simple draft framework agreement. The draft is not yet concrete enough to make a difference to firms that...
The official press release reads that Members of the European Data Protection Board (EDPB) have agreed to further enhance cooperation on strategic cases and to diversify the range of cooperation methods used. Andrea Jelinek, Chair of the European Data Protection Board, underlines that “strong and swift enforcement is crucial for ensuring a consistent interpretation of...
American Headquarters:
PrivacyRules Ltd.
151 West 4th Street
Suite 200
Cincinnati, OH 45202, USA
European Office:
Via dei Della Robbia 112
50132, Firenze
Italy (IT)
