Search

International Data Protection Authorities Joint Statement on AI Imagery Risks

Sixty-one international data protection authorities have issued a joint statement outlining privacy risks associated with AI-generated imagery. The statement addresses concerns about the creation of realistic images and videos of individuals without consent, particularly highlighting potential harms to children. It urges responsible AI development and deployment.

Garante Privacy Sanctions eCampus, Rejects Pescara Body Cams

The Italian Data Protection Authority (Garante Privacy) has sanctioned the University eCampus with a €50,000 fine for unlawfully processing biometric data using facial recognition for online course attendance verification. Additionally, the Garante has prohibited the municipality of Pescara from using body cameras for local police due to risks of data transfer to non-EU countries.

A Ventura fined €20M for GDPR infringement

The Spanish Data Protection Agency (AEPD) has initiated a sanctioning procedure against A VENTURA EN TRAMPOLINES S.L. for alleged infringements of the GDPR. The company has been fined €20 million and previously ordered to adapt its user consent form within one month, a deadline it failed to meet.

ICO v. DSG Retail - Data Protection Security Ruling

The UK's Information Commissioner's Office (ICO) has won a Court of Appeal case against DSG Retail Limited, reinstating a £500,000 fine for a 2020 data breach. The ruling clarifies that organisations must secure all personal data, regardless of whether individuals can be identified from exfiltrated data.

EDPB Report on Right to Erasure Enforcement

The European Data Protection Board (EDPB) has released a report detailing the outcomes of its Coordinated Enforcement Framework (CEF) action on the right to erasure under GDPR. The report identifies seven recurring challenges faced by controllers in implementing this right and offers recommendations for improvement.

FTC Finalizes Boeing-Spirit Acquisition Consent Order

The FTC has finalized a consent order regarding Boeing's acquisition of Spirit AeroSystems. The order requires Boeing to divest certain Spirit assets and continue supplying aerostructures to competing contractors for military aircraft programs. This action aims to protect competition in commercial and military aircraft markets.

ICO Decision Notice: Surrey Police FOI Cost Limit Refusal Upheld

The UK's Information Commissioner's Office (ICO) issued a decision notice regarding Surrey Police's handling of a Freedom of Information (FOI) request. The ICO upheld the police's refusal based on the cost limit but found they failed to provide adequate advice and assistance.

ICO Orders Nottingham University Hospitals NHS Trust to Disclose Data

The UK's Information Commissioner's Office (ICO) has ordered Nottingham University Hospitals NHS Trust to disclose nurse and midwife referral data to the Nursing and Midwifery Council. The trust must comply within 30 days, or face potential contempt of court proceedings.

ICO Decision Notice: UKHSA FOI Breach

The Information Commissioner's Office (ICO) has issued a decision notice finding that the UK Health Security Agency (UKHSA) breached Section 10 of the Freedom of Information Act (FOIA) by failing to respond to a request within the statutory 20 working days. UKHSA is required to provide a substantive response.

ICO Decision: Core Education Trust request vexatious

The UK's Information Commissioner's Office (ICO) has ruled that a request made to Core Education Trust was vexatious and therefore not subject to compliance. The decision means the Trust is not obliged to provide the requested information.