On January 8, 2014, the French data protection authority, the Commission nationale de l’informatique et des libertés (CNIL), announced that it was imposing a fine of €150,000 on Google, as well as a requirement that Google, within eight days of the decision, publicize the fine on its own website (at www.google.fr) for a period of … Continue Reading
On April 2, the Article 29 Working Party (the “Working Party”) approved a new Opinion on a principle of European data protection law known as the “purpose limitation”. The principle (which stems from Article 6(1)(b) of the Data Protection Directive) requires that data controllers only collect data for “specific”, “explicit” and “legitimate” purposes, and not … Continue Reading
On July 1st, 2012, the Article 29 Working Party (WP29), a group consisting of data protection authorities of all EU Member States, adopted a long-awaited opinion on cloud computing. While acknowledging the advantages of cloud computing, the opinion sets out a number of data protection issues that may arise from the wide-scale deployment of cloud … Continue Reading
On Tuesday, June 12, the Article 29 Working Party (WP29), a group of European data protection authorities, published an opinion on the exemptions available to the new cookie rules introduced by the revised EU ePrivacy Directive. The opinion provides guidance on the implementation of the available exemptions to the requirement to obtain internet users’ informed … Continue Reading
The Article 29 Working Party (WP29) yesterday published an opinion on facial recognition in online and mobile services. The WP29 states this technology requires “specific attention” as it presents “a range of data protection concerns”. The opinion focuses on facial technology being used in three main contexts: identifying people in social networks; authenticating and verifying … Continue Reading
The representatives of IAB Europe and EASA, European advertising and marketing industry associations, met with the Article 29 Working Party, a group of European data protection authorities, on 14 September 2011 to discuss the industry’s self-regulatory code on Online Behavioural Advertising. As we blogged here, the Article 29 Working Party had previously voiced concerns over … Continue Reading
By Dan Cooper and Helena Marttila On 26 August, 2011, the Article 29 Working Party, a group of European data protection authorities, published a letter to the Online Behavioural Advertising Industry regarding the proposed industry self-regulatory framework, known as the Best Practice Recommendation on Online Behavioural Advertising (the “Code”). The letter sets out the main … Continue Reading
w consents can be given over Bluetooth advertising boards; consents for employee pictures to be posted to company intranets; consents regarding electronic health records and full body security scanners; and consents given during the use of an online social network; among others. Written partly in response to a Commission request, the Opinion will no doubt … Continue Reading
Earlier this week the European group of national data protection authorities, collectively the Working Party 29 (“WP 29”), released a new opinion on data protection issues relating to the prevention of money laundering and terrorist financing. The new paper features a slew of new recommendations from the WP 29 that are designed to enhance privacy … Continue Reading
The EU Art 29. Working Party finished its 80th plenary meeting in Brussels last week. This week, the Party released a series of new policy opinions produced during the plenary. The highlights included: A declaration that, in WP 29’s opinion, New Zealand’s data protection regime is now “adequate” for the purposes of international data transfer. This opinion will now be … Continue Reading