The European Data Protection Board launches a series of recommendations following the CJEU’s decision C-311/18 (Schrems II)

EDPB (European Data Protection Board) brings new light upon the recent decision of the CJEU (The Court of Justice of the European Union), named C-311/18 Schrems II (after the Austrian activist Max Schrems), which clarifies the transfer of personal data to third countries and continues to validate the standard contractual clauses. The CJEU emphasizes once […]

Swedish Giant H&M Fined With Over €30 Million By GDRP For Unlawfully Storing And Collecting Personal Data Of Their Employees

The Swedish clothing company H&M (Hennes & Mauritz) has been fined €35.5 million by the German Data Protection Authority on the 1st of October 2020, after a data leak from a service center from Nuremberg Germany, which revealed the illegal collection of personal data of the employees by the managers. The monitoring activity targeted several […]

Data Protection Regulations and COVID-19

The world is facing an extraordinary situation caused by the COVID-19 pandemic. Governments and private institutions around the world are fighting to alleviate the spread of the virus by implementing care measures which can include personal data processing.   European Commission evaluation report The evaluation report published by the European Commission demonstrates how GDPR (The […]

€17 Million GDPR Fine for Italian Telecom Provider

Wind Tre S.p.A. an Italian company, has been fined for violating the privacy rights of its users under the GDPR (The General Data Protection Regulation). According to the report published by the Italian DPA (Data Protection Authority), the company processed personal data for marketing purposes. Users complained about receiving messages, emails and faxes without their […]