Sensitive data has a special status, and its use is, with some exceptions, strictly prohibited. The data controller must therefore be extremely vigilant if they are to handle them.   Sensitive data is very specific personal data. In the event of disclosure, their...

The 27 European internet control agencies must further harmonise their activities. The European Data Protection Board (EDPB) works to develop the standardisation of the methodologies of the data protection bodies of the different Member States.    Entered into force...

The CNIL (the French data protection authority) has given notice to several organisations to comply with the use of Google Analytics due to the transfer of data to the United States without sufficient guarantees for the rights of European users. What other solutions...

The fourth anniversary of GDPR raises many questions. While record fines have been imposed in recent months, totalling more than a billion euros, companies are still struggling to consider compliance as a strategic project.   Launched on 25th May 2018, GDPR...

In a GDPR compliance process, being aware of the pitfalls to avoid can be useful. We have identified five mistakes that can easily block the path towards full adherence. According to the GDPR barometer published by Data Legal Drive in 2021, a significant number of...

A record-breaking year for fines issued to businesses. Free Mobile, AG2E La Mondiale and Carrefour were all targeted for GDPR infringements, all of which could have been avoided with a bit more care.   2021 was a banner year in Europe on the business front for...

As a surge in data and security breaches unfolds, flaws in multi-system software have started to appear.   Data protection is regulated throughout the UK and EU by the Information Commissioner’s Office (ICO). Focusing on individual data privacy rights, GDPR...

Despite the seemingly endless Covid pandemic , DPOs must continue to find their way towards GDPR conformity while also considering what added benefits this can bring to their companies. The issues of cybersecurity and digital sovereignty  must also be addressed due to...

What is Data Protection Day? Data Protection Day has been held annually in Europe since 2007 to reinforce awareness of data privacy best practices and the safeguards organisations should have in place. It is a regular reminder for organisations to review the data...