GDPR is a landmark in privacy jurisdiction. Through its 99 articles, it sets a framework for both businesses and individuals on their rights and responsibilities when it comes to protecting privacy. The most important element in my opinion is that privacy functions a fundamental human right and needs to be protected.
The Authorities View
Although the first year of GDPR enforcement was considered a “grace period,” many high-profile investigations and fines have made it to the headlines such as:
- The Irish DPA has 54 GDPR investigations underway, 19 of which are related to large tech firms including Google Twitter, LinkedIn, Apple, Facebook and its WhatsApp and Instagram subsidiaries as well as Verizon, which owns Yahoo and the Huffington Post. Many of these cases are expected to be near completion by September-October.
- The Hamburg DPA has ordered Google to stop manual reviews of audio snippets generated via its voice Al for three months whilst it investigates revelations that contracted workers have been listening to voice recordings made through smart speakers.
- Berlin DPA intends to fine a tech company for tens of millions.
- UK’s ICO has opened an investigation into the King’s Cross private surveillance system using facial recognition technology.
- In July 2019, ICO issued notice of its intention to fine BA £183.39 million and Marriott $111.5 million for GDPR infringements.
- The Greek DPA fined PWC Business Solutions €150,000 for unlawfully processing the personal data of its employees and for processing the personal data of its employees in an unfair and non-transparent manner.
Hundred of cases are being investigated by almost all National DPAs. According to the European Data Protection Board, Data Protection Authorities in 11 Member States issued €56 million of fines over the first year of GDPR.
Actually, this first year was the second chance businesses had (Read more...)
*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Anastasios Arampatzis. Read the original post at: https://www.tripwire.com/state-of-security/featured/gdpr-one-year-anniversary-civil-society-organizations-view/