An investigation by The Observer reveals that 20 NHS trusts in the UK have been sharing private details of patients’ medical conditions, appointments, and treatments with Facebook without consent. A covert tracking tool called Meta Pixel was found on the websites of these NHS trusts, collecting browsing information and sharing it with Facebook, in violation […]
Public bodies should take into account the possible sensitive nature and large amounts of data processed by public bodies. But how to guarantee the fundamental right to the protection of personal data? The EDPB therefore underlines the need for public bodies to act in full compliance with the GDPR when using cloud-based products or services. […]
Every person has the right to know to whom his or her personal data have been disclosed.A citizen requested Österreichische Post, the principal operator of postal and logistical services in Austria, to disclose to him the identity of the recipients to whom it had disclosed his personal data. The post gave petitioner only the categories […]
Meta received a GDPR fine of €390M (210 million and €180 million fines for Facebook and Instagram) and accused the company of lacking proper legal grounds to process millions of Europeans’ with its data-fueled advertising model. Meta strongly disagree with the DPC’s final decision, and believes to fully comply with GDPR by relying on Contractual […]
The US government demands direct access to databases of European police services containing biometric data of European citizens. The US makes this entry mandatory for countries participating in the so-called Visa Waiver Program, which allows citizens of certain countries to travel to the United States without a visa. At the beginning of this year, US […]
A vulnerability in the Android version of the Ring app, which is used to remotely manage Amazon Ring outdoor (video doorbell) and indoor surveillance cameras, could have been exploited by attackers to extract users’ personal data and device’s data, including geolocation, address, and recordings.
Google’s artificial intelligence DeepMind received the data in 2015 from the Royal Free NHS Trust for the purpose of testing a smartphone app called Streams. The smartphone app was tested to detect acute kidney injuries. The claim alleges that Google and DeepMind “obtained and used a substantial number of confidential medical records without patients’ knowledge […]
Systematically asking a copy of the ID of the data subject as a condition to send an access request is illegal, says the Belgian DPA, in accordance with the EDPB guidelines on the right to access.
The Irish Data Protection Commission (DPC) has sent a “draft decision” to the other European Data Protection Authorities on Facebook’s legal trick to bypass the GDPR. noyb has published the relevant documents today https://lnkd.in/eQBMMg7C. In the DPC’s view Facebook can simply choose to include the agreement on data processing in a “contract”, which would make the […]
The European Commission has a plan which enables citizens to identify themselves and share electronic documents from a special wallet app for smartphones. Major platforms will be required to accept the new European digital identity. The European Commission states that the use of identity by citizens will be voluntary. “The new European digital identity wallets […]