On May 22, Ireland’s Data Protection Commission (DPC) announced that it had imposed a €1.2 billion fine on Meta Platforms for violating the European Union’s General Data Protection Regulation (GDPR) in its use of standard...more
The Privacy Commissioner for Personal Data reminds organisations to review and implement appropriate data security measures amidst more data breaches. On 13 February 2023, the Privacy Commissioner for Personal Data of...more
The Office of the Privacy Commissioner for Personal Data of Hong Kong summarised enforcement trends and plans to further amend the Personal Data (Privacy) Ordinance. On 9 November 2022, the Office of the Privacy...more
The guidance outlines steps that organizations should take to enhance data security as hybrid working and learning introduce new risks. On August 30, 2022, the Office of the Privacy Commissioner for Personal Data of Hong...more
Effective from October 8, 2021, the Personal Data (Privacy) (Amendment) Ordinance 2021 (“Amendment Ordinance”) has come into operation as it was published in the Hong Kong Government Gazette that day. The Amendment Ordinance...more
On December 15, 2020, Ireland’s Data Protection Commission (“DPC”) announced its decision to fine Twitter International Company (“Twitter”) €450,000 for failing to notify the DPC promptly of a data breach affecting EU...more
Will the EU finally deny the right to transfer any personal data from its shores to the United States? Its privacy decisions have been inching closer to this determination for years, and an Irish case against Facebook may tip...more
The German Federal Commissioner for Data Protection and Freedom of Information (BfDI) recently announced a public consultation process regarding anonymization under the European Union General Data Protection Regulation (GDPR)...more
The Irish Data Protection Commissioner (DPC) has launched a public consultation on children and data protection issues. The consultation will have two streams: one aimed at adult stakeholders, and the other aimed directly...more
With the proliferation of location-based app services like traffic alerts and ride-sharing programs, the collection of consumers’ location information has exploded in recent years. It comes as no surprise, therefore, that...more
On October 20, 2015, the Irish High Court ordered the Irish Data Protection Commissioner (DPC) to investigate Facebook’s European data privacy practices, bringing Max Schrems’ three-year fight full circle. The Court quashed...more
In our recent update, we reported that the Advocate General (“AG”) to the Court of Justice of the European Union (“CJEU”), the highest court in the EU, gave an opinion that “safe harbor” should be declared invalid and that...more
In an important case involving Facebook, and instigated by an Austrian student in response to the Snowden revelations about US security agency access to mass data, the Advocate General (“AG”) to the Court of Justice of the...more