The French data protection authority, CNIL, imposed a 60 million Euro fine on Facebook and a 150 million Euro fine on Google, for violations of provisions of the French Data Protection Act relating to cookies. This is the second fine for Google by CNIL, following a fine in December 2020 also on the issue of compliance with cookie regulations.
CNIL ...
A 6.5 million Euros fine was imposed on the LGBTQ dating application Grinder by Norwegian Data Protection Authority, for violations of the General Data Protection Regulation (GDPR).
The Norwegian DPA initially intended to fine Grinder for 10 million Euros but decided to reduce the fine due to changes in the company’s revenue and in light of the changes the company ...
The Israeli Ministry of Justice (“MoJ”) has published a bill memorandum covering a series of proposed amendments to the Israeli Protection of Privacy Law (the “Law”). If enacted, this would be the most comprehensive amendment to the Law since 1996. The bill seeks to amend the definitions of the Law’s key terms, thereby expanding the scope of the Law, and ...
Russian Courts have fined Google $100 million and Meta approximately $27 million for “systemic failure to remove banned content”. Tech giants are regularly fined in Russia for failing to remove content that the Russian Government bans, particularly content related to the Russian opposition and its leaders, but those penalties have rarely exceeded $1 million.
The unprecedented fines represent an escalation ...
A first-of-its-kind New York City law, due to take effect in January 2023, will require employers in New York City who use automated tools for making employment-related decisions to conduct yearly bias audits for the tool and make the results of the most recent bias audit publicly available on their website. They also will be required to provide job ...
The Israeli government has formally published the legislative bill proposing numerous amendments to the Israeli Protection of Privacy Law. If enacted, this would be the most comprehensive amendment to the law since 1996. The bill seeks to amend the definitions of the law’s key terms, thereby expanding the scope of the Law, and to downscale the antiquated obligation to register ...
The Israeli Privacy Protection Authority (the “PPA”) published a draft position paper regarding international transfers of personal information, in which it recognizes the significant practical difficulties that regulations on international data transfers raise. This publication deals with the interpretation of Regulation 3 of the Privacy Protection Regulations (Transfer of Information to Databases Outside the State's Boards), 5761-2001 (the “Regulations”).
Under ...
According to a new adequacy-decision published by the European Commission, South Korea provides an adequate level of protection of personal data under the General Data Protection Regulation (GDPR), such that data that is subject to the GDPR can be safely transferred to South Korea.
The adequacy decision was based on the South Korean personal data protection law named PIPA, which ...
New user? Click here to register