The Irish Data Protection Authority has released a Guide on appropriate qualifications for a Data Protection Officer (GDPR). Read the Guide here →
The Irish Data Protection Authority has also published a new form to declare data protection breaches. Access the form here →
The Data Protection Authority for Singapore (the PDPC) has issued a Guidance on Developing a Data Protection Management Programme and Data Protection Impact Assessments. View the Guidance here →
The Spanish Data Protection Authority has opened a page to report content of a sexual or violent nature posted online without consent. More details here →(available in Spanish)
The National Cyber Security Centre for Finland has updated its Cookie Guidance. The Guidance is divided between information for end-users and information for service providers. Read it here →
2) Notable Case Law
The UK’s Information Commissioner’s Office (ICO) has announced three fines against companies for sending unsolicited marketing communications without the data subject’s consent. The companies had claimed to have obtained indirect consent. Read more about the decisions here →
European Union – The President of the European Commission announced a new European Cyber Resilience Act and the further development of a European Cyber Security Policy, in her speech for the State of the Union.
China – A new Act has been passed to legislate the protection of data resulting from connected vehicles. It will come into force on October 1st, 2021. The Act is available here →(available in Chinese)
The Irish Data Protection Authority has fined WhatsApp €225 million, as a result of an investigation that started in 2018. It was notably found that data subjects were insufficiently informed of the data exchanges between Facebook and WhatsApp.