The International Forum for Responsible Media Blog

Tag: GDPR (Page 1 of 2)

GDPR Compliance in Light of Heavier Sanctions to Come: at Least in Theory – W. Gregory Voss and Hugues Bouthinon-Dumas

Ridiculously low ceilings on administrative fines hindered the effectiveness of EU data protection law for over twenty years. US tech giants may have seen these fines as a cost of doing business. Now, over two years after the commencement of the European Union’s widely heralded General Data Protection Regulation (GDPR), the anticipated billion-euro sanctions of EU Data Protection Authorities, or ‘DPAs’, which were to have changed the paradigm, have yet to be issued. Continue reading

Data Protection: “You Were Only Supposed to Blow the Bloody Doors Off!”: Schrems II and external transfers of personal data – Lorna Woods

The Court of Justice today handed down the much anticipated ruling on the legality of standard contractual clauses (SCCs) as a mechanism to transfer personal data outside the European Union.  It forms part of Schrems’ campaign to challenge the ‘surveillance capitalism’ model on which many online businesses operate: there are other challenges to the behavioural advertising model ongoing. Continue reading

Learning from the British Airways and Marriott International fines: What does the GDPR standard of “Appropriate Technical and Organisational Measures” actually mean? Part 2 – Ashley Hurst and Nina Lazic

The first part of this article detailed the baseline technical measures that companies should be taking in order to remain GDPR compliant. Alongside these technical measures, it is equally important to ensure that robust organisational measures are in place. Continue reading

Data privacy rules in the EU may leave the US behind – Thomas Holt

File 20190123 135145 1gurwfy.jpg?ixlib=rb 1.1

France made headlines on 21 January 2019 for fining Google US$57 million – the first large fine to be issued for violations of the European Union’s newly implemented General Data Protection Regulations. GDPR, as it’s called, is meant to ensure consumers’ personal information is appropriately used and protected by companies. It also creates procedures to sanction companies who misuse information. Continue reading

« Older posts

© 2021 Inforrm's Blog

Theme by Anders NorénUp ↑