Andreea Lisievici, Author at The PrivacyCraft Blog

Avanza Bank fined 1.34M EUR in Sweden for misconfiguration of Meta pixel

Enforcement, EU law, GDPR, IMY, Meta, Sweden | June 25, 2024

Meta has paused the launch of its AI tools in Europe after a request from Ireland’s Data Protection Commission (DPC). This decision comes after the digital rights group Noyb filed complaints in 11 European countries, criticizing Meta’s vague AI plans and the opt-out requirement for users. Meta planned to use public posts from Facebook and Instagram to train AI models. The DPC’s decision, welcomed by other European authorities, followed intensive discussions with Meta. Meta expressed disappointment, noting it had incorporated regulatory feedback since March.

Avanza Bank fined 1.34M EUR in Sweden for misconfiguration of Meta pixel Read More »

The Privacy Explorer | Week 23 & 24

The Privacy Explorer | June 20, 2024

Welcome to the privacy news recap for week 23 and 24 of 2024! In this edition:
– CNIL Issues Recommendations on GDPR Compliance for AI Systems;
– Danish DPA Adds New Security-Focused Software Testing Measure to Catalogue;
– FRA publishes GDPR in practice – Experiences of data protection authorities,
… and more!

The Privacy Explorer | Week 23 & 24 Read More »

Meta Halts AI Rollout in Europe Following Irish DPC Request

AI, DPC, EU law, GDPR, Meta | June 19, 2024

Meta Halts AI Rollout in Europe Following Irish DPC Request Read More »

noyb Files Complaint Against Google’s Privacy Sandbox

Enforcement, EU law, GDPR, Google, noyb | June 19, 2024

noyb has filed a complaint with the Austrian data protection authority against Google. The complaint argues that Google misled users into enabling an “ad privacy feature” through deceptive pop-ups, which actually track users via the new Privacy Sandbox API. The API replaces third-party cookies with first-party tracking within the Chrome browser. Google used manipulative design techniques, known as dark patterns, to secure user consent, violating GDPR requirements for informed and transparent consent. The complaint demands Google’s compliance with GDPR and suggests imposing a significant fine.

noyb Files Complaint Against Google’s Privacy Sandbox Read More »

noyb Files Complaint Against Microsoft for Violating Children’s Privacy

Enforcement, EU law, GDPR, Microsoft, noyb | June 19, 2024

noyb filed a complaint with the Austrian Data Protection Authority against Microsoft on 4 June 2024, alleging that Microsoft’s 365 Education services violate children’s privacy rights. The complaint claims that Microsoft shifts GDPR responsibilities to schools, which lack control over data processing. Microsoft’s use of tracking cookies without proper consent from minors or their guardians breaches GDPR. noyb calls for an investigation and penalties, arguing that Microsoft’s practices harm children’s data protection rights.

noyb Files Complaint Against Microsoft for Violating Children’s Privacy Read More »