by LOB | 26 Oct 2020 | Cookies, Sanction
The AEPD (Spanish Data Protection Agency) announced on October 21st a sanction of 30,000€ for illegal cookie practices against Iberia, the Spanish national airline. The authority noted that Iberia provided an incomplete information in its first level cookies banner...
by LOB | 26 Oct 2020 | Fuite de données, RGPD, Sanction
The airline British Airways has been fined £20 million by the Information Commissioner’s Office, the British counterpart of the CNIL. The British data protection authority accuses it of poor protection of its customers’ personal data. Indeed, in the summer...
by LOB | 14 Oct 2020 | CNIL, RGPD, Transfert de données
Due to the invalidation of the Privacy Shield that was supposed to govern the exchange of personal data between the European Union and the United States, the CNIL wants to stop the hosting of the health data platform for research by Microsoft. The CNIL is therefore...
by LOB | 14 Oct 2020 | Contrôle, RGPD, Sanction
The Swedish company H&M was fined 35 million euros on October 1, 2020 by the Hamburg Data Protection Commissioner’s Office. It is accused of having collected and stored personal data of employees without their knowledge. Between 2014 and 2019, managers at an...
by LOB | 14 Oct 2020 | RGPD, Transfert de données
Facebook and its subsidiary Instagram have engaged in an arm wrestling match with the Data Protection Commission (the Irish CNIL), which has ordered them to suspend data transfers from Europe to its data centers in the United States. At issue was the invalidation last...
by LOB | 12 Oct 2020 | Données de santé, RGPD
On July 3, 2020, the Bundestag, the German parliament, passed a new law to protect patients’ health data. The law provides for the creation of a digital medical file, or shared medical file, which German health insurance companies will have to offer to their...
by LOB | 12 Oct 2020 | Cookies, RGPD, Sanction
On August 6th, 2020, the Spanish authorities imposed a €3000 penalty on GROW BEATS SL, a company specializing in the sale of headphones and earphones, for non-compliance with the principles related to the deposit of cookies. The Spanish authority found a lack of...
by LOB | 12 Oct 2020 | CNIL, Contrôle, RGPD, Sanction
On Wednesday, July 5th, 2020, the CNIL (the French data protection authority) imposed a sanction of 250,000 € on Spartoo, an online sales company specializing in online ready-to-wear fashion, shoes and bags. Following a control launched in 2018, the CNIL had initiated...
by LOB | 3 Aug 2020 | RGPD, Transfert de données
Following the decision of the European Court of Justice invalidating the Privacy Shield (an agreement that provides adequate protection for data transferred to the United States), what solutions are available to companies transferring personal data to the United...
by LOB | 3 Aug 2020 | RGPD, Transfert de données
On Thursday 16 July 2020, the CJEU (Court of Justice of the European Union) invalidated the Privacy Shield in a resounding but hardly surprising decision. The cause of this invalidation: the American legislation which tolerates, without consideration of the principle...
