What’s happened? Schrems strikes again. We’re all going to have to find new ways to protect transfers of data to the US – or stop doing it. The ECJ today invalidated the Privacy Shield framework that was cobbled together in 2015 after the ECJ struck down Safe Habour in response to the original lawsuit Max … Continue reading Privacy Shield is dead. Now what?
What do privacy professionals and HR managers need to think about in the context of HR as we plan the return to normal after Covid?
How are you going to balance marketing and data privacy when things return to normal?
Everyone seems to be doing it. How many emails have you received this week with a "Covid-19 update" subject line? Sent by businesses you might have had some kind of contact with at some point in the last 10 years. Dressed up as service emails - even though you don't actually have any kind of … Continue reading Don’t dig the hole deeper
Society has always had its share of bad apples. Even now, in the midst of an unprecedented crisis all some people can see is the opportunity to take advantage of others. There’s been a huge uptick in all kinds of fraud, usually targeting people’s understandable anxieties about the virus or their own financial situation. Here’s what you … Continue reading One man’s crisis is another man’s opportunity.
I've been on a blogging hiatus - mostly because the news always seems to be much the same. Don't worry, though, it's getting interesting again and I have things to say, so watch this space for some proper blogging soon. In the meantime: Please, even if you don't actually sell ads, stop colluding with the … Continue reading Quick Friday grumble
I’ve been re-reading the Article 29 Working Party’s report on workplace monitoring. I mean, who’d be rockstar when you can have my life? Anyway, I thought this section merited reproduction in full: 5.8 Processing operations involving disclosure of employee data to third parties It has become increasingly common for companies to transmit their employees’ data … Continue reading Yay! No more “our team” pages
I do wish the Europeans would make up their minds. There was an ECJ ruling a couple of years ago that made it clear that you could monitor your employees' private use of the internet while at work. The GDPR also makes it clear that you can process information that the data subject has "manifestly" made … Continue reading No, you can’t snoop on your staff
Admiral, the car insurer, is today touting a new quotation system that uses Facebook data to profile drivers. Apparently Firstcarquote is designed to risk profile drivers without an insurance history in order to offer the "safer" ones a discount of up to 15%. Big brother? Thin end of a rather nasty wedge? Possibly, but what … Continue reading Admiral vs the GDPR – place your bets now
Microsoft and Amazon have both revealed that they are building data centres in the EU. In Microsoft’s case, Deutsche Telekom will be the data “trustee”; I assume this is in part an anticipatory response to the ongoing Stored Communications Act lawsuit presently in progress in Dublin (in brief, a case to determine whether US government … Continue reading Death of the internet or birth of better privacy?