GDPR

Netherlands DPA Issues Guidance on Social Media Use in Education

Netherlands DPA Issues Guidance on Social Media Use in Education

DPA guidance, GDPR, Netherlands, social media |

Dutch Data Protection Authority (AP) has advised educational institutions to use social media only if clear agreements are made with social media companies regarding the handling of student and teacher data. The AP highlighted significant risks associated with social media, emphasizing the need for transparent data handling and consent procedures. Institutions must ensure compliance with GDPR and prioritize data protection.

Netherlands DPA Issues Guidance on Social Media Use in Education Read More »

AG Opinion on the exemption to provide information under Art. 14(5)c GDPR

AG Opinion on the exemption to provide information under Art. 14(5)c GDPR

AG Opinion, GDPR, Transparency |

Advocate General Medina issued an opinion on interpreting GDPR Article 14(5)(c), addressing whether data controllers must inform data subjects about data generated by the controllers themselves. Medina clarified that Article 14(5)(c) exempts controllers from this obligation if obtaining or disclosing data is required by law and the law provides appropriate protective measures. Additionally, supervisory authorities can review whether these laws offer sufficient protection.

AG Opinion on the exemption to provide information under Art. 14(5)c GDPR Read More »

Bavarian Data Protection Authority Issues Joint Controllership Guidance

Bavarian Data Protection Authority Issues Joint Controllership Guidance

DPA guidance, GDPR, Germany, Joint controllership |

The Bavarian Data Protection Authority released new guidance on joint controllership under GDPR Article 26. This document clarifies the roles and responsibilities when two or more entities jointly determine the purposes and means of processing personal data. It aims to alleviate concerns and provide practical recommendations, emphasizing the legal necessity of a transparent agreement delineating each party’s obligations. This guidance helps entities navigate the complexities of shared data responsibilities, enhancing accountability and transparency in data processing activities.

Bavarian Data Protection Authority Issues Joint Controllership Guidance Read More »

Multistakeholder Expert Group’s Report on GDPR Application

EU law, GDPR |

On 10 June 2024, the Multistakeholder Expert Group on GDPR published a comprehensive report evaluating GDPR application. The report highlights increased data protection awareness and compliance among stakeholders. However, it also identifies ongoing issues such as legal fragmentation, difficulties in applying specific provisions, and challenges for SMEs. Concerns include transparency obligations, the interplay with other regulations like AML and PSD2, and complexities in data transfers. The report calls for enhanced guidance and consistency in GDPR application across EU member states.

Multistakeholder Expert Group’s Report on GDPR Application Read More »

FRA publishes “GDPR in practice – Experiences of data protection authorities”

EU law, GDPR |

The European Union Agency for Fundamental Rights (FRA) report analyzes the challenges faced by data protection authorities (DPAs) in the implementation of the General Data Protection Regulation (GDPR). Key findings include inadequate resources threatening DPAs’ mandates, high volumes of complaints, public misunderstanding of data protection laws, and challenges posed by new technologies. The report emphasizes the need for additional tools and stronger cooperation between DPAs, highlighting significant discrepancies in resources and capacities across Member States. This report complements the European Commission’s evaluation of GDPR.

FRA publishes “GDPR in practice – Experiences of data protection authorities” Read More »

Scroll to Top