DPOblog

  • Home
  • EDITORIAL
  • ARTICLE
  • BASICS
  • AUTHORS
  • ABOUT
  • SEARCH

ECHR: Mass surveillance by British secret service violated European Convention on Human Rights

by Peter Schaar On 13 September 2018, the European Court of Human Rights (ECHR) in Strasbourg ruled that the mass surveillance of the British intelligence service GCHQ (Government Communications Headquarters) carried out in cooperation with the US National Security Agency…

By Guest | October 8, 2018 | Article | No Comments |
Read more

IT maintenance is ‘data processing on behalf’ according to German DPAs

With the application of the GDPR the question how to qualify IT maintenance in terms of data protection arises. This aspect is of great relevance while any software contains personal data. E.g. Microsoft, Oracle and SAP process personal data of…

By Thomas Kahler | October 1, 2018 | Article | No Comments |
Read more

Google is tracking location of users without consent

Associated Press (AP) has reported that Google is tracking the location of Android-users without their consent.[1] Adroid provided an option to activate the location setting to its users. Although users did not activate the location setting Google tracked the location…

By Thomas Kahler | August 19, 2018 | Article | No Comments |
Read more

‘Data processing on behalf’ within a group

Any exchange of data requires a legal basis. This fundamental principle applies not only for the data transfer from one controller to a different external third party. This principle equally applies to data transfer from one legal entity to another…

By Thomas Kahler | August 18, 2018 | Article | No Comments |
Read more

Ban of Facebook Customs Audience – decision of German DPA upheld

The ban of a German Federal DPA (state of Bavaria) on an online shop for using Facebook Customs Audience has been upheld by the respective Administrative court. In an injunction the Administrative court stated that the decision of the Bavarian…

By Thomas Kahler | June 25, 2018 | Article | No Comments |
Read more

Fan pages jointly liable with Facebook – landmark of ECJ

The ECJ decided that the administrator of a fan page on Facebook is responsible for the respective data processing.[1] The administrator is ´joint controller’ together with Facebook. That means administrators cannot close its eyes whether Facebook is infringing GDPR. In…

By Thomas Kahler | June 11, 2018 | Article | No Comments |
Read more

The potential outcome of Max Schrems first legal actions against Facebook and Google

Max Schrems, the Austrian data protection activist, has taken the first legal actions against Facebook and Google.[1]  He has raised complaints with four national DPAs (Data Protection Agencies) in France, Belgium, Austria and Germany. His strategy is to push the…

By Thomas Kahler | June 6, 2018 | Article | No Comments |
Read more

Accountability – the gravity centre of GDPR

Accountability may be compared with removing the centre of the universe from earth to sun by the Copernican revolution. The gravity power of Accountability – as new gravity centre of GDPR – derives by shifting the burden of proof to…

By Thomas Kahler | May 26, 2018 | Basics | No Comments |
Read more

‘Do not track’ without consent – state German regulators

‘No tracking nor profiling without consent’ is the firm statement of the German DPAs[1] in a Working Paper which was published at the end of April 2018.[2] The statement is being published under the non-exiting title ‘Applicability of TMG for…

By Thomas Kahler | May 18, 2018 | Article | No Comments |
Read more

The end of “old“ consent? Consent faces legal action by Max Schrems and consumer agencies

Consent will be part of the first attacks of data activist Max Schrems under the GDPR.[1] And most “old” consent forms will be invalid from 25th May on. That derives from a narrow interpretation of recital 171 GDPR by the…

By Thomas Kahler | May 7, 2018 | Article | No Comments |
Read more
  • « Previous
  • Next »

about

DPOblog provides DPOs within the EU with information about the GDPR. DPOblog seeks to initiate a debate with all relevant stakeholders to reach a European understanding of the Right to Data Protection.

Contact

  • CONTACT
  • DATA PROTECTION
  • IMPRINT

FOLLOW US

DPO Twitter DPO Facebook

SEARCH

Copyright ©2019 DPOblog | Theme by: Theme Horse | Powered by: WordPress