Welcome to

The
PrivacyCraft
Blog

Latest Posts

On 18 June 2024, the Norwegian Data Protection Board ruled that the Norwegian Data Protection Authority (DPA) cannot impose daily fines on Meta for not complying with a ban on behavioral marketing on Facebook and Instagram. This decision challenges the DPA's authority under Norwegian law, which allows daily fines. The Board determined that such fines could only apply to Norwegian companies, not international ones. The ban on behavioral advertising remains, but the ruling raises concerns about enforcement disparities between domestic and international businesses.
EnforcementEU lawFacebookGDPRMetaNorway
The Norwegian Data Protection Authority cannot impose daily fines in cross-border cases
The European Data Protection Board published its final Guidelines on Article 37 of the Law Enforcement...
Read More
The European Data Protection Board published its final Guidelines on Article 37 of the Law Enforcement Directive (LED). These guidelines establish standards for appropriate safeguards in data transfers by competent authorities, focusing on legally binding instruments with third countries. Key points include selecting transfer mechanisms, evaluating transfer risks to data subjects, and maintaining enhanced accountability. The guidelines emphasize legal certainty and the necessity of ensuring equivalent data protection levels when personal data is transferred outside the EU.
EDPBGuideline
EDPB Finalizes Guidelines on Law Enforcement Data Transfers
The European Data Protection Board published its final Guidelines on Article 37 of the Law Enforcement...
Read More
The OECD published a report titled "Towards Digital Safety by Design for Children." This report highlights the importance of integrating safety features into digital environments tailored to children. It discusses international guidelines and emphasizes proactive measures such as age assurance and child-centered design. The report also stresses the need for transparency, accountability, and ongoing risk management to protect children's privacy and ensure a safe digital experience.
childrenOECD
OECD Releases Report on Digital Safety for Children
The OECD published a report titled "Towards Digital Safety by Design for Children." This report highlights...
Read More
R.R. Donnelley & Sons Co., a global business communications provider, agreed to a $2.125 million settlement with the US Securities and Exchange Commission for inadequate management of third-party cybersecurity controls. In late 2021, a ransomware attack exposed significant flaws in Donnelley's oversight of its security service provider, leading to data breaches and operational disruptions. The SEC highlighted the company's failure to properly supervise its managed security services provider, which compromised the integrity and confidentiality of sensitive client data.
SECsettlement
R.R. Donnelley Settles SEC Charges Over Third-Party Cybersecurity Failures
R.R. Donnelley & Sons Co., a global business communications provider, agreed to a $2.125 million settlement...
Read More
The California Attorney General announced a $500,000 settlement with Tilting Point Media LLC. The company violated the California Consumer Privacy Act (CCPA) and the Children's Online Privacy Protection Act (COPPA) by collecting and sharing data from children without parental consent in the popular game "SpongeBob: Krusty Cook-Off." The settlement includes injunctive terms mandating compliance with privacy laws, ensuring parental consent, and proper configuration of third-party software in games.
CaliforniasettlementUnited States
California Settles with Tilting Point Media over kids game "SpongeBob: Krusty Cook-Off" Data Violations
The California Attorney General announced a $500,000 settlement with Tilting Point Media LLC. The company...
Read More
2
EnforcementEU lawGDPRIMYMetaSweden
Avanza Bank fined 1.34M EUR in Sweden for misconfiguration of Meta pixel
Meta has paused the launch of its AI tools in Europe after a request from Ireland’s Data Protection Commission...
Read More

Subscribe to my updates

Get all posts delivered to you, so you don’t need to remember to check my blog.

You can unsubscribe at any time.

My newsletter can also include occasional marketing, such as information on my product launches and discounts.

Emails are sent through a processor located in the United States. Read more in the Privacy Notice.

Marketing by
Scroll to Top