The European Court of Human Rights (ECHR) has published a factsheet on case law and pending cases related to new technologies. Read the factsheet here →
The European Data Protection Supervisor (EDPS) released a case law digest for the cases handled by the European Court of Justice which relate to data transfers to third countries. Digest available here →
The Belgian Data Protection Authority has published its 2020 annual report. Available here → (in French)
2) Notable Case Law
The Norwegian Data Protection Authority issued a fine against a bank for failing to prepare a risk assessment before launching a new platform. In this case, some customers were able to access the contact information of other customers. The Authority noted that the breach could have been avoided had a risk assessment been conducted and the appropriate technical measures been implemented. Particular emphasis was placed on the fact that the case concerned financial information. Read more about the decision here →
The Dutch Data Protection Authority has imposed a fine on a company processing the health data of sick employees. According to the decision, the company was found to have collected more information than legally admissible, and the sensitive data was insufficiently protected. More on decision here →
3) New and Upcoming Legislation
European Union – The digital COVID certificates have been adopted by the EU Parliament and should apply from July 1st, 2021 (for 12 months). Read the press release here →
European Union and the United States – Both parties have agreed to form a EU-U.S. Trade and Technology Council (TTC).
Appleunveiled the iOS 15 (expected to come out this fall), which builds on the Apple App Tracking Transparency feature. The new update should put in place a privacy dashboard, which would, for example, show which apps have accessed a user’s personal data, and when. Trackers are also to be blocked from emails in Apple’s Mail app, and new privacy and security features are to be brought to the iCloud service.