Facebook and Cambridge Analytica: Statement by Jules Polonetsky, FPF CEO
We are pleased to see Facebook’s response, but are looking forward to understanding how to best address the broader issues for all stakeholders. These issues are important to discuss – they are not going away.
Study: EU-US Privacy Shield Essential to Leading European Companies
The Future of Privacy Forum conducted a study of the companies enrolled in the US-EU Privacy Shield program and determined that 114 European headquartered companies are active Privacy Shield Participants. These European companies rely on the program to transfer data to their US subsidiaries or to essential vendors that support their business needs.
Various other interesting info
Research Professor Mireille Hildebrandt, from Vrije Universiteit Brussels, published open access the paper “Privacy as the Protection of the Incomputable Self: Agonistic Machine Learning“, where she argues, using law, philosophy and insights from computer science, that “in the era of big data analytics we need an understanding of privacy that is capable of protecting what […]
DPAs/Enforcement
Investigations, sanctions CNIL publicly served a formal notice to WhatsApp, claiming the lack of legal basis for the company transferring data to Facebook after its acquisition. CNIL is the latest DPA that went after connected toys (“My friend Cayla” and “I-que”). It served a “formal notice to cease serious breach of privacy due to lack […]
GDPR
Guidance (see also the Article 29 Working Party/EDPB page) ICO seeks comments from stakeholders following the publication of draft guidance on children and GDPR. The FPF published a Chart of Potential Harms from Automated Decision-Making, which is a very useful tool to identify potential risks of processing of personal data for those who are conducting […]
Case-law (CJEU, ECHR, national courts)
CJEU The CJEU decided in Case C-434/16 Nowak that the written answers to a test, as well as the examiner’s comments on those answers, are personal data of the person who takes the test. However, the questions of the test are not personal data (this may result in a situation where a person receives a […]
Article 29 Working Party/European Data Protection Board
Guidance, Opinions The Article 29 Working Party published new guidance on data processing in a work environment: Opinion 2/2017. The Opinion makes a new assessment of the balance between legitimate interests of employers and the reasonable privacy expectations of employees by outlining the risks posed by new technologies. Among other observations, the Group underlines that consent is […]
End of Safe Harbor? Understanding the CJEU’s Decision and Its Implications
Legal background In Europe, the processing of personal data is governed by Directive 95/46/EC (the “Directive”) which sets forth rules under which data may be lawfully processed1.The transfer of personal data to third countries is restricted to countries that ensure an adequate level of protection2.While the Directive itself does not provide a definition of the […]
Press Release: EU-US Safe Harbor Essential To Leading European Companies
NEW FPF STUDY DOCUMENTS OVER 150 EUROPEAN COMPANIES PARTICIPATING IN THE US-EU SAFE HARBOR PROGRAM. FROM MAJOR EMPLOYERS SUCH AS ALCATEL LUCENT, ADIDAS, BMW, NOKIA TO FAST-GROWING START-UPS LIKE APP DEVELOPER MIND CANDY, EUROPEAN COMPANIES DEPEND ON EU-US AGREEMENT _____________________________________________________________________________________ The Future of Privacy Forum has conducted a study of the US-EU Safe Harbor program […]