#PrivacyNews
Подборка новостей из мира зарубежной приватности от Олега Блинова:
🔸 France: CNIL fines Accor €600,000 for various direct marketing violations (https://www.dataguidance.com/news/france-cnil-fines-accor-600000-various-direct-marketing). People making reservations with Accor hotels are automatically added to a newsletter containing commercial offers due to a pre-ticked consent box. CNIL found Accor responsible for violating the obligation to obtain consent of the data subject to process personal data for direct marketing purposes, according to Article L. 34-5 of the Code.
🔸 Italy: Garante fines UniCredit €70,000 for failing to satisfy data subject access request (https://www.dataguidance.com/news/italy-garante-fines-unicredit-70000-failing-satisfy). UniCredit did not satisfy the data subject access request of the complainant. UniCredit stated that no response had been given because they had not filing the data request form on the bank’s Privacy Portlet. The DPA responded that preparation of a form may constitute an organisational modality aimed at facilitating the interested parties, but should not be a condition for a valid request.
🔸 Australia: Federal Court imposes $60M fine on Google LLC for misleading consumers (https://www.dataguidance.com/news/australia-federal-court-imposes-60m-fine-google-llc) Google was in breach of the Australian Consumer Law by representing to Android users that the setting noscriptd ‘Location History’ was the only Google account setting that affected whether Google collected, kept, and used personal location data, where in fact, another Google account setting noscriptd ‘Web & App Activity’ also enabled Google to collect the same.
Подборка новостей из мира зарубежной приватности от Олега Блинова:
🔸 France: CNIL fines Accor €600,000 for various direct marketing violations (https://www.dataguidance.com/news/france-cnil-fines-accor-600000-various-direct-marketing). People making reservations with Accor hotels are automatically added to a newsletter containing commercial offers due to a pre-ticked consent box. CNIL found Accor responsible for violating the obligation to obtain consent of the data subject to process personal data for direct marketing purposes, according to Article L. 34-5 of the Code.
🔸 Italy: Garante fines UniCredit €70,000 for failing to satisfy data subject access request (https://www.dataguidance.com/news/italy-garante-fines-unicredit-70000-failing-satisfy). UniCredit did not satisfy the data subject access request of the complainant. UniCredit stated that no response had been given because they had not filing the data request form on the bank’s Privacy Portlet. The DPA responded that preparation of a form may constitute an organisational modality aimed at facilitating the interested parties, but should not be a condition for a valid request.
🔸 Australia: Federal Court imposes $60M fine on Google LLC for misleading consumers (https://www.dataguidance.com/news/australia-federal-court-imposes-60m-fine-google-llc) Google was in breach of the Australian Consumer Law by representing to Android users that the setting noscriptd ‘Location History’ was the only Google account setting that affected whether Google collected, kept, and used personal location data, where in fact, another Google account setting noscriptd ‘Web & App Activity’ also enabled Google to collect the same.
DataGuidance
France: CNIL fines Accor €600,000 for various direct marketing
The French data protection authority ('CNIL') announced, on 17 August 2022, that it had issued, on 3 August 2022, Deliberation of CNIL's Restricted Committee No. SAN-2022-017 in which it imposed a
👍3
#materials #152ФЗ
Опубликован проект обновлённых форм уведомления об обработке ПДн, здесь
💬Источник: закрытый чат RPPA.ru
Опубликован проект обновлённых форм уведомления об обработке ПДн, здесь
💬Источник: закрытый чат RPPA.ru
#education #privacy
Data Protection Moot Court 2022
You are a student or recent graduate of an EEA university and interested in privacy and data protection law?
The DPMC will take place remote only and is entirely free of charge. For further information, please see our FAQ.
Data Protection Moot Court 2022
You are a student or recent graduate of an EEA university and interested in privacy and data protection law?
The DPMC will take place remote only and is entirely free of charge. For further information, please see our FAQ.
dataprotectionmoot.univie.ac.at
Frequently Asked Questions (FAQs)
#materials #transfers
Digital economy report 2021. Cross-border data flows and development:
For whom the data flow, здесь
Digital economy report 2021. Cross-border data flows and development:
For whom the data flow, здесь
👍2
Privacy News by Kris. New era.e03.pdf
2 MB
#PrivacyNews
Обзор подготовлен по материалам каналов: Privacy Advocates, Персональные данные, Роскомсвобода.
Всех благ;)
Обзор подготовлен по материалам каналов: Privacy Advocates, Персональные данные, Роскомсвобода.
Всех благ;)
👍2
👍2
#ЯрмаркаВакансий
▫️Data protection officer в KoronaPay
▫️Менеджер по защите персональных данных (DPO) в СберМегаМаркет
Только на RPPA.ru
▫️Data protection officer в KoronaPay
▫️Менеджер по защите персональных данных (DPO) в СберМегаМаркет
Только на RPPA.ru
👍4
#materials #152ФЗ
Опубликованы Проекты:
▫️приказа о требованиях к оценке вреда субъектам ПДн, здесь
▫️требований к подтверждению уничтожения ПДн, здесь
▫️форм уведомления об обработке ПДн, здесь
💬Источник: Кирилл Зюбанов
Опубликованы Проекты:
▫️приказа о требованиях к оценке вреда субъектам ПДн, здесь
▫️требований к подтверждению уничтожения ПДн, здесь
▫️форм уведомления об обработке ПДн, здесь
💬Источник: Кирилл Зюбанов
👍9
#materials #rppa #research
🔥🔥🔥RPPA совместно с Б-152 провели исследование по персональным данным в РФ, чтобы понять уровень зрелости российских компаний в этом направлении🔥🔥🔥
Что выявили:
🔹средняя зарплата DPO — ₽247,000, что в 3 раза больше средней ЗП по Москве.
🔹Компании увеличивают бюджет на Privacy и охотятся на соответствующие кадры.
🔹Какие обязанности совмещают высокооплачиваемые профи?
🔹Каков шанс DPO получить руководящую должность?
🔹Есть ли принципиальная разница между образованием юриста и специалиста по информационной безопасности?
Участники RPPA могут бесплатно получить доступ к отчету: Исследование "Персональные данные и бизнес - 2021/2022" (для получения доступа к материалу необходимо зайти в свою учетную запись на сайте).
🔥🔥🔥RPPA совместно с Б-152 провели исследование по персональным данным в РФ, чтобы понять уровень зрелости российских компаний в этом направлении🔥🔥🔥
Что выявили:
🔹средняя зарплата DPO — ₽247,000, что в 3 раза больше средней ЗП по Москве.
🔹Компании увеличивают бюджет на Privacy и охотятся на соответствующие кадры.
🔹Какие обязанности совмещают высокооплачиваемые профи?
🔹Каков шанс DPO получить руководящую должность?
🔹Есть ли принципиальная разница между образованием юриста и специалиста по информационной безопасности?
Участники RPPA могут бесплатно получить доступ к отчету: Исследование "Персональные данные и бизнес - 2021/2022" (для получения доступа к материалу необходимо зайти в свою учетную запись на сайте).
👍8
RPPA PRO: Privacy • AI • Cybersecurity • IP pinned «#materials #rppa #research 🔥🔥🔥RPPA совместно с Б-152 провели исследование по персональным данным в РФ, чтобы понять уровень зрелости российских компаний в этом направлении🔥🔥🔥 Что выявили: 🔹средняя зарплата DPO — ₽247,000, что в 3 раза больше средней ЗП…»
👍1
#PrivacyNews
Fresh privacy news!
💬Источник: Олег Блинов
🔹 Norway wants Facebook fined for illegal data transfers (https://www.politico.eu/article/norway-wants-facebook-to-be-fined-for-illegal-data-transfers/): the Norway DPA is pushing to punish Facebook with a fine in addition to the prohibition of transfer proposed by the Irish DPA earlier.
🔹 Thuringia: TLfDI discusses risks connected to use of Google Fonts (https://www.dataguidance.com/news/thuringia-tlfdi-discusses-risks-connected-use-google): When Google Fonts are hosted by Google, the user is forced to connect to Google servers and provider their IP address and header information. The DPA recommends to use local fonts.
🔹 Ireland: ICCL announces class action against Oracle (https://www.dataguidance.com/news/ireland-iccl-announces-class-action-against-oracle): ICCL highlighted that Oracle is a part of the tracking and data industry and has claimed to have amassed detailed dossiers on 5 billion people. Oracle’s dossiers about people include names, home addresses, emails, purchases online and in the real world, physical movements in the real world, income, interests and political views, and a detailed account of online activity.
🔹 California: AG publishes enforcement case examples (https://www.dataguidance.com/news/california-ag-publishes-enforcement-case-examples): The AG published several cases, most of them related to “Do not sell” obligation compliance and disclosure requirements. Nothing overly interesting apart from an indication that CCPA is not completely dead.
Fresh privacy news!
💬Источник: Олег Блинов
🔹 Norway wants Facebook fined for illegal data transfers (https://www.politico.eu/article/norway-wants-facebook-to-be-fined-for-illegal-data-transfers/): the Norway DPA is pushing to punish Facebook with a fine in addition to the prohibition of transfer proposed by the Irish DPA earlier.
🔹 Thuringia: TLfDI discusses risks connected to use of Google Fonts (https://www.dataguidance.com/news/thuringia-tlfdi-discusses-risks-connected-use-google): When Google Fonts are hosted by Google, the user is forced to connect to Google servers and provider their IP address and header information. The DPA recommends to use local fonts.
🔹 Ireland: ICCL announces class action against Oracle (https://www.dataguidance.com/news/ireland-iccl-announces-class-action-against-oracle): ICCL highlighted that Oracle is a part of the tracking and data industry and has claimed to have amassed detailed dossiers on 5 billion people. Oracle’s dossiers about people include names, home addresses, emails, purchases online and in the real world, physical movements in the real world, income, interests and political views, and a detailed account of online activity.
🔹 California: AG publishes enforcement case examples (https://www.dataguidance.com/news/california-ag-publishes-enforcement-case-examples): The AG published several cases, most of them related to “Do not sell” obligation compliance and disclosure requirements. Nothing overly interesting apart from an indication that CCPA is not completely dead.
POLITICO
Norway wants Facebook fined for illegal data transfers
European regulators are finalizing a decision blocking Meta from transferring data to the US.
👍1
#ЯрмаркаВакансий
Внимание, эксклюзив, только на RPPA.ru
Менеджер по защите конфиденциальных данных в дочернюю компанию энергетического холдинга РФ
Внимание, эксклюзив, только на RPPA.ru
Менеджер по защите конфиденциальных данных в дочернюю компанию энергетического холдинга РФ
👍6