The Privacy Compliance Hub

Earlier this week, the Dutch data protection authority became the latest DPA to fine controversial facial recognition company, Clearview AI for breaching the #GDPR. This latest fine was €30.5 million. The Dutch DPA said that Clearview’s database of 30 BILLION photographs scraped from the internet is illegal and using its services is prohibited. #privacy #CCPA #DataProtection https://lnkd.in/dbFdfpRq

📢 If you're thinking of launching an autumn #B2B marketing campaign, read our Practical #Privacy blog first on how to send marketing emails without falling foul of the UK #GDPR 😇 #DataProtection https://lnkd.in/ev65HR6

Uber has been fined €290 million under the #GDPR following a complaint from an organisation representing over 170 French Uber drivers. Uber BV (a Dutch company) collected and transferred drivers' personal #data (including sensitive information) to Uber Technologies Inc (a US company) where it was stored on servers in the US. The complaint related to a period after the Privacy Shield had been struck down following Schrems II and before Uber Technologies Inc had signed up to the EU-US Data Privacy Framework. During this period, Uber did not use another transfer tool such as the Standard Contractual Clauses. #privacy #CCPA #DataProtection https://lnkd.in/eiwU2VDS

The Irish data protection authority Data Protection Commission Ireland has launched High Court proceedings because it is concerned that X is using its European users' personal #data for its Grok #AI tool in breach of the #GDPR. "...the DPC says the matter is urgent and that it needs to act by way of court proceedings to protect data rights and freedoms as guaranteed under GDPR." #privacy #CCPA #DataProtection https://lnkd.in/gZEXesbk

👩🏫 Our Practical #Privacy series continues with #DPOs (Data Protection Officers). ❓Is your organisation one which must appoint a DPO? ❓What exactly does a DPO do? ❓Who is a suitable appointment as a DPO? ❓What responsibilities does an organisation have towards its DPO? 💡 Read our blog here ⬇️ https://lnkd.in/ecysYYHT #GDPR #CCPA #DataProtection #compliance

💰 Meta has reached a $1.4 billion settlement with the state of Texas for collecting the biometric #data of its Texan users without their consent. Facebook's 'Tag suggestions' feature (since shut down) used facial recognition technology to identify people from photos and videos and automatically suggested tagging them with names. #privacy #GDPR #CCPA #DataProtection #FRT https://lnkd.in/egeJ3--Z

X users discovered on Friday that they have been opted-in (via a pre-ticked box) to their #data being used to train X's Grok #AI chatbot. Although pre-ticked boxes do not constitute valid consent under the #GDPR, it also appears this setting can't be changed via the X app. To opt-out via the website go to: ➡️ Settings ➡️ Privacy and safety ➡️ Data sharing and personalisation ➡️ Grok ➡️ Untick the box #privacy #CCPA #DataProtection https://lnkd.in/e38h7hvQ

👁️ Apple's latest ad released last week promoting the #privacy credentials of its Safari browser has received a boost with Google's announcement this week that it has abandoned its Privacy Sandbox plan (which it began in 2019) to block third party advertising cookies from its Chrome browser. Worth a watch 👀👇 #GPPR #CCPA #DataProtection #AdTech #surveillance https://lnkd.in/g7XiQ7HS

🥁 Next up on our Practical #Privacy series: How to set up a cookie notice and cookie policy 🍪 Grab a ☕️ and read all about our experience here ⬇️ https://lnkd.in/d5nCnM5 #GDPR #CCPA #DataProtection

😇 You've made an excellent start to implementing your #privacy management programme. So far you've: ✅ mapped your #data flows ✅ worked out whether you are a controller, joint controller or processor for all of your processing activities ✅ identified your lawful basis for each processing activity ✅ created your #ROPA (Article 30 Record of Processing Activities) ✅ created your record of vendors and partners showing who you share personal data with 👏 What's next? You need to tell people in clear and simple language what you do with their personal data. You do this via your privacy notice. You might have more than one of these eg. for customers, for staff and for job applicants. ❓How should you write a privacy notice? 💡Read our blog ⬇️ https://lnkd.in/dkYJv4g #GDPR #CCPA #DataProtection #compliance