GDPR

AI Risks and Data Protection in Optical Character Recognition (OCR)

EDPB publishes report on data protection risks of AI for Optical Character Recognition (OCR)

AI, DPA guidance, EDPB, EU law, GDPR |

On 27 June 2024, the EDPB published the results of a project under the Support Pool of Experts program, assessing data protection risks associated with AI-powered Optical Character Recognition (OCR). Conducted by external expert Isabel Barbera and completed in September 2023, the report identifies significant privacy risks in OCR technology, such as data breaches, unlawful data storage, and the unlawful handling of sensitive information. The findings emphasize the need for robust safeguards and strict compliance with data protection regulations to mitigate these risks effectively

EDPB publishes report on data protection risks of AI for Optical Character Recognition (OCR) Read More »

EDPB publishes Checklist for AI auditing

EDPB publishes Checklist for AI auditing

AI, DPA guidance, EDPB, EU law, GDPR |

The EDPB, in collaboration with the Spanish data protection authority (AEPD), initiated a project to enhance the GDPR compliance of AI systems. This project includes the development and piloting of tools and a checklist to inspect and audit AI systems. Key elements involve model card requirements, system maps, bias identification and testing, adversarial audits, and the publication of audit reports. These measures aim to improve transparency and accountability in AI systems, facilitating better oversight by data protection authorities.

EDPB publishes Checklist for AI auditing Read More »

EDPB publishes Standardised Messenger Audit

EDPB publishes Standardised Messenger Audit

audit, DPA guidance, EDPB, EU law, GDPR, messaging apps |

The EDPB initiated the Standardised Messenger Audit project within the Support Pool of Experts program, prompted by the German Federal Data Protection Authority (DPA). Completed in November 2023 by Prof. Mathieu Cunche, the project developed a detailed test catalogue for GDPR-compliant messenger services. This catalogue, structured around GDPR requirements, assists data protection authorities and companies in evaluating and enhancing data privacy measures in messaging applications used for both personal and business communication.

EDPB publishes Standardised Messenger Audit Read More »

The Nordic Data Protection Authorities, led by Denmark's Datatilsynet, released guidelines to protect children's data in online gaming. This document emphasizes four key GDPR principles: fairness, transparency, data minimization, and accountability. It aims to guide game developers in ensuring responsible data practices, highlighting the special protections required for children's personal data. These guidelines were formulated in response to the growing digital gaming industry and the need for enhanced privacy measures for young players.

Nordic DPAs Publish Guidance to Strengthen Children’s Data Protection in Online Gaming

children, DPA guidance, EU law, GDPR, Guideline |

The Nordic Data Protection Authorities, led by Denmark’s Datatilsynet, released guidelines to protect children’s data in online gaming. This document emphasizes four key GDPR principles: fairness, transparency, data minimization, and accountability. It aims to guide game developers in ensuring responsible data practices, highlighting the special protections required for children’s personal data. These guidelines were formulated in response to the growing digital gaming industry and the need for enhanced privacy measures for young players.

Nordic DPAs Publish Guidance to Strengthen Children’s Data Protection in Online Gaming Read More »

The Belgian Data Protection Authority published its 2023 annual report, highlighting a year of renewal and strengthened collaboration internally and with European partners. Key initiatives focused on cookie compliance and enhanced support for data protection officers (DPOs). The DPA participated in significant decisions involving TikTok and Meta, reflecting its commitment to robust data protection. Complaints and mediation requests rose, with notable focus on direct marketing and data breaches, underscoring the DPA's ongoing dedication to privacy and public awareness.

Belgium DPA Publishes 2023 Annual Report

Belgium, EU law, GDPR |

The Belgian Data Protection Authority published its 2023 annual report, highlighting a year of renewal and strengthened collaboration internally and with European partners. Key initiatives focused on cookie compliance and enhanced support for data protection officers (DPOs). The DPA participated in significant decisions involving TikTok and Meta, reflecting its commitment to robust data protection. Complaints and mediation requests rose, with notable focus on direct marketing and data breaches, underscoring the DPA’s ongoing dedication to privacy and public awareness.

Belgium DPA Publishes 2023 Annual Report Read More »

Scroll to Top