The Italian Data Protection Authority (the Garante) has issued its first GDPR fine for, among other breaches, unlawful retention of metadata ...

IAPP Research and Insights Director Joe Jones writes about the first proposed reforms of the EU General Data Protection ...

The GDPR defines several roles that are responsible for ensuring compliance: data controller, data processor, and the data protection officer (DPO). The data controller defines how personal data ...

But while the latter pair of GDPR decisions tackled Meta’s lack of a valid legal basis for processing ... and follow the data streams to draw a clear picture of what Meta’s ownership of ...

It was adopted in 2016 and entered into application on 25 May 2018. The GDPR defines: individuals’ fundamental rights in the digital age the obligations of those processing data methods for ensuring ...

The GDPR defines personal data broadly ... As a business owner, it is essential to be aware of and fulfil these obligations. Key responsibilities include: Lawful Basis for Processing: Businesses ...

He also asked it to provide him with a bundle of information that the GDPR empowers individuals to get from entities processing their data when the information has been obtained from somewhere ...

European consumer rights groups have accused Meta, the owner of Facebook ... Union’s signature data privacy law, the General Data Protection Regulation or GDPR. “With its illegal practices ...

What is a lawful basis? The UK GDPR provides a list of reasons that organisations can use to legitimately process personal data. These are known collectively as the Lawful Bases for Processing. (a) ...

TikTok has six months to bring its data processing into compliance, pending any possible appeal. The Irish Data Protection Commission (DPC) found that TikTok violated GDPR laws because it couldn ...