Online content and take down requirements- what are the boundaries?

Emma Keeling

De-reference in the EU….. Last month we reported on the Google/CNIL judgment, where the Court of Justice of the European Union (the CJEU) ruled that Google was not necessarily required to de-reference personal data on all its search engine domains in order to comply with the right to be forgotten under the General Data Protection Read More

No Comments

Cookies consent does not escape the GDPR: CJEU issues decision in the Planet49 case

Catherine di Lorenzo

On 1 October 2019, the Court of Justice of the European Union (CJEU) issued its long-awaited decision in the case Planet49 (Case C 673/17). The decision clarifies the requirements for valid cookie consent under Directive 2002/58 (ePrivacy Directive). In particular, the CJEU rejects pre-ticked boxes as a means of providing valid consent to the use Read More

No Comments

CJEU rules that the right to be forgotten does not extend beyond the EU’s borders

LaurieAnne Ancenys

The Court of Justice of the European Union (CJEU) has ruled that there is no obligation for a search engine operator to, in case of a request, de-reference personal information of individuals on all of its search engine’s domain name extensions beyond the territory of EU Member States in order to be in compliance with Read More

No Comments

Plugins from social media platforms “Like” Facebook can trigger joint controllership

Adam Smith

To many consumer-facing businesses, it’s something of a no-brainer to include in their websites social media plugins such as those offered by global platforms like Facebook and Twitter. After all, is there a cheaper and more innocuous way of marketing than by giving website visitors the opportunity to share the products they like with their Read More

No Comments

Operationalising data ethics in the financial services sector

Karishma Brahmbhatt

Financial institutions have become accustomed to managing gigantic volumes of data, ranging from customer data to business intelligence and employee data. However, the financial services sector is being revolutionised by data-driven, and data-generating, technology. With the likes of mobile, blockchain and artificial intelligence reshaping traditional financial services, we are seeing the emergence of a new Read More

No Comments

Should we be Surprised by the Latest ICO Fines?

David Smith

Like many others in the data protection world I was initially taken aback by the size of latest fines proposed by the ICO. The idea of fining British Airways in excess of £183m and Marriott International nearly £100m for data breaches that in pre-GDPR days would have attracted fines of no more than £500,000, and Read More

No Comments