On this page we will inform you about news items that are related to the GDPR, and about our GDPR tool for creating a processing index that is needed to comply with the GDPR.

 

The Dutch Personal Data Authority (Autoriteit Persoonsgegevens) has fined a Dutch company 15,000 euros for processing health data of sick employees and not securing it properly.

Accommodation booking website Booking.com has been fined €475,000 by the Dutch Authority for Personal Data (Autoriteit Persoonsgegevens) for reporting a data breach too late.

Grote toename hacks en datadiefstal

The number of hacks reported to the Dutch Authority for the Protection of Personal Data (Autoriteit Persoonsgegevens) in which personal data was stolen increased by 30% in 2020 compared to 2019.

Google is fined 100 million for cookies, Amazon 35 million

The French privacy authority Commission nationale de l'informatique et des libertés (CNIL) has fined Google EUR 100 million and Amazon 35 million for placing cookies without permission.

No new EU-US data transfer agreement soon

Last July the Privacy Shield agreement between the United States, Switzerland and the European Union has been rejected by the European Court of Justice. The highest court of the European Union in matters of Union law rejected it because of concerns about U.S. surveillance.

The Privacy Shield does not comply with the GDPR

The Privacy Shield does not comply with the GDPR. The trans-Atlantic agreement, which regulates the protection of personal data of EU citizens processed in the US, has been annulled by the European Court of Justice. 

GDPR-Desicions in the GDPR-Hub (Screenshot)

With the GDPRHub, noyb has published a database that offers summaries of GDPR-decisions from all over Europe in the form of a wiki.

Facebook Fanpages

Collecting data on Facebook has always been criticized by privacy advocates. Now there is a court ruling that takes operators of Facebook fanpages in obligation.

Strong increase in privacy complaints in The Netherlands

The number of privacy complaints submitted to the Authority for Personal Data (AP) continues to rise sharply. According to the AP, more than 15,000 people filed a complaint in the first half of 2019, compared to approximately 9,000 in the second half of 2018.

Processing Index Demo

After the great hype and the tension surrounding the General Data Protection Regulation in spring 2018 and the relatively quiet summer that followed, our personal experience is that still many organizations haven't finished compliance with GDPR. The processing index, an internal documentation requirement, is usually not yet implemented.

The Dutch bank Theodoor Gilissen Bankiers has paid a fine of €48,000 to the Dutch Personal Data Authorities for non-compliance with the right to access one's own personal data.

Privacy Shield agreement

The European Union has warned the United States that it still has three months to comply with the Privacy Shield Agreement. The agreement that came into force in July 2016 regulates the transfer and storage of consumer data between Europe and the USA.