Weekly Newsletter: 21 June – 24 June 2021
GDPR EU Representative

June 28, 2021

Europe needs to stop fixating on Silicon Valley, says EU commissioner 

[#Google #Facebook #EU #Technology #EUdataTransfers] 

“Get a life, Europe. That’s the tough-love message from a top EU official who argues that instead of trying to copy Silicon Valley, the bloc needs to strike out on its own and learn to promote local strengths.

The battle over consumer tech businesses “is lost,” European Commissioner for Innovation Mariya Gabriel told POLITICO.

“We don’t have to lose time because we won’t create a European Google or Facebook. Let’s be very realistic about that.”

To read more: Click here

EDPB adopts final version of Recommendations on supplementary measures

[#EDPB #Dataprotection #EU #PersonalData #SchremsII]

“During its plenary session, the EDPB adopted a final version of the Recommendations on supplementary measures following public consultation. […] They aim to assist controllers and processors acting as data exporters with their duty to identify and implement appropriate supplementary measures where they are needed to ensure an essentially equivalent level of protection to the data they transfer to third countries. […]

EDPB Chair Andrea Jelinek said: “The impact of Schrems II cannot be underestimated: already international data flows are subject to much closer scrutiny from the supervisory authorities who are conducting investigations at their respective levels.”

The full text of the Recommendations is available here

To read more: Click here


EDPB & EDPS call for ban on use of AI for automated recognition of human features in publicly accessible spaces, and some other uses of AI that can lead to unfair discrimination

[#EDPB #DataProtection #EU #ArtificialIntelligence #EDPS] 
“The EDPB and EDPS have adopted a joint opinion on the European Commission’s Proposal for a Regulation laying down harmonised rules on artificial intelligence (AI).

Andrea Jelinek, EDPB Chair, & Wojciech Wiewiórowski, EDPS, said:

“[…] A general ban on the use of facial recognition in publicly accessible areas is the necessary starting point if we want to preserve our freedoms and create a human-centric legal framework for AI. The proposed regulation should also prohibit any type of use of AI for social scoring, as it is against the EU fundamental values and can lead to discrimination.””
To read more: Click here

Cyber-attack puts data of cruise lines’ clients at risk

[#DataBreach #Cybersecurity #CyberAttack #CarnivalCruise #HollandAmericanLine #PrincessCruises] 
“Parent group Carnival Corp has written to customers of Carnival Cruise Line, Holland America Line and Princess Cruises to tell them their personal information could have been exposed in a data breach.

The cyber intruders might have gained access to social security numbers, passport numbers, dates of birth, addresses and health information, the letter informs customers.

The attack happened three months ago but has only just been made public.”

To read more: Click here

EDPB’s data transfer recommendations adopt a risk-based approach with teeth 

[#EDPB #DataTransfers #Exports] 
“Those who hoped to see the EDPB move away from the dogmatic position it had staked out in its draft recommendations will be pleased to see that the final recommendations embrace a more risk-sensitive approach. Gone is the EDPB’s previous statement that organizations could not “rely on subjective [factors] such as the likelihood of public authorities’ access to your data” when assessing the lawfulness of a transfer. […]

Although subjective factors such as practical experience may now play a role in assessing the adequacy of a transfer, the final recommendations carefully circumscribe the manner in which organizations may conduct this broader analysis. […]

While companies undoubtedly will welcome the more pragmatic approach of the EDPB in the final recommendations, the fact remains that the new requirements are particularly onerous and complying with them presents formidable challenges for most companies, exporters and importers alike.”

To read more: Click here

Report: Europe may lose €2 trillion in 10 years if uncertainty over data transfers continues

[#PersonalData #DataTransfers #EUtrade #EUpolicies] 
“Restricting data flows in Europe might lead to economic damage worth €2 trillion by 2030, roughly the size of Italy’s economy, and result in two million fewer new jobs, a new industry study has warned. […]

“Data is at the heart of the digital decade,” Cecilia Bonefeld-Dahl, director general at DIGITALEUROPE, said while presenting the study. “All sectors and countries and company sizes will rely on these data transfers. This is not a problem just for tech companies,” she added. […]

The analysis also assumes that the EU data strategy will lead to further restrictions in onwards data flows. The annual GDP reduction across Europe is estimated to be 2.5%. For the report, this economic loss would be ‘self-inflicted’ rather than the result of policies of EU trade partners.”

To read more: Click here

Dutch group launches data harvesting claim against TikTok

[#PersonalData #TikTok #GDPRclaims]

“THE HAGUE, Netherlands (AP) — A Dutch consumer group is launching a 1.5 billion euro ($1.8 billion) claim against TikTok over what it alleges is unlawful harvesting of personal data from users of the popular video sharing platform.

The Consumentenbond and a foundation called Take Back Your Privacy demanded Thursday that TikTok pay damages to 1.2 million to 1.6 million Dutch children who use the app. […]

“The conduct of TikTok is pure exploitation,” Consumentenbond director Sandra Molenaar said in a statement. “The company earns hundreds of millions per year on the backs of children. And that while privacy law prescribes that children should receive additional protection.””

To read more: Click here

Leaked email scandal engulfs Poland’s political elite

[#Poland #Cybersecurity #Russia #Politics]

“Hillary Clinton, meet Michał Dworczyk.

Poland’s ultra-conservative leadership faces a growing scandal as the private emails of top officials including Prime Minister Mateusz Morawiecki are being leaked to the public following a hacking operation they say was carried out by Russia.

The emails — which also belong to the accounts of the prime minister’s top aide, Michał Dworczyk, and Health Minister Adam Niedzielski — started popping up in early June on Telegram, a Russian encrypted messenger system, and concern internal deliberations on matters ranging from vaccine procurement to the government’s handling of protests against abortion restrictions. […]

One exchange apparently shows officials debating whether to use the military against the abortion protesters.[…] Another email presents characteristics of anti-tank missiles that the Polish army is allegedly going to buy. In another, Morawiecki hints he doesn’t trust state-owned television as a reliable source of information.”

To read more: Click here