Data privacy

GDR dissects the UK data protection litigation market

Subscribers can now access an exclusive dataset compiled from the High Court of England and Wales, and a Special Report analysing key litigation trends.

01 July 2021

Q&A: Ex-Spanish DPA chief José Luis Piñar

José Luis Piñar led Spain’s data protection authority from 2002 to 2007 and is currently counsel at CMS in Madrid. He spoke to GDR about the Spanish watchdog’s recent guidance on data risk assessment and the need for EU-wide guidelines.

01 July 2021

Microsoft counsel blasts US government for using too many secrecy orders

Microsoft’s vice president of customer security has told members of Congress that US federal law enforcement agencies impose about 10 secrecy orders on the company per day, preventing customers from knowing that their data is being taken out of the cloud.

01 July 2021

The implications of the SCOTUS TransUnion ruling

The US Supreme Court has significantly reduced the number of plaintiffs eligible to sue TransUnion under the Fair Credit Reporting Act (FCRA), finding that the entire class did not have the same standing as a lead plaintiff falsely flagged by the credit rating agency as a potential terrorist. Experts involved with the case say the ruling will affect non-FCRA data privacy cases.

29 June 2021

OPC fails to dismiss Facebook challenge

A Canadian judge has refused to end Facebook’s fight against the country’s federal privacy regulator.

29 June 2021

ICO issues GDPR enforcement order

A UK GDPR enforcement notice against an email marketing provider may signal a tougher stance on unlawful marketing that could expose providers to a much harsher penalty regime.

28 June 2021

UK adequacy confirmed

Europe has formally approved the UK’s adequacy with a four-year limit in the case of future regulatory divergence.

28 June 2021

TikTok faces second Dutch mass lawsuit

A consumer protection organisation has threatened to file a €1.5 billion child privacy-focused GDPR collective action against TikTok – weeks after another body filed a similar opt-out claim.

28 June 2021

ECJ: GDPR doesn’t block copyright infringer IP address collection

The European Court of Justice has ruled that copyright holders can use the GDPR’s legitimate interests legal basis to gather IP addresses with a view to pursuing potential infringers.

25 June 2021

“No harm, no foul”: Twitter’s data breach over-reporting strategy

As focus on the risks of poor data security increases around the world, a senior Twitter lawyer has said the social media company’s strategy is to over-report data breaches to regulators.

25 June 2021

Get unlimited access to all Global Data Review content