“The US is complying with a key privacy framework required to ensure Europeans’ data isn’t misused when sent overseas, the European Commission concluded in a report published on Wednesday. The EU-US data privacy framework regulates transatlantic data flows for thousands of companies – but privacy advocates worry it’s full of loopholes. ‘The US authorities have put in place the necessary structures and procedures to ensure that the data privacy framework functions effectively,’ the Commission concluded in its review of the deal, specifically praising the set-up of a US oversight authority. Over 2,800 US companies are currently certified under the deal, allowing them to exchange data more easily and cheaply, the report said. […] The framework was introduced in 2023 after the EU’s highest court struck down two previous data-sharing arrangements, known as the privacy shield and safe harbour decisions. #Privacy #GDPR #dataprotection #PrivacyFramework #Datasharing Subscribe to EDPO's newsletter here: https://lnkd.in/dwK8sde *This article was not written by EDPO. The opinions and views of the author(s) do not necessarily represent those of EDPO. https://lnkd.in/eJTtJX4J
EDPO (European Data Protection Office)
Legal Services
Brussels, Brussels Region 68,137 followers
Your Data Protection Representative in the EU, UK and Switzerland
About us
YOUR DATA PROTECTION REPRESENTATIVE IN THE EU/UK/SWITZERLAND > EDPO acts as your Data Protection Representative for companies that fall within the scope of Art 27 of the EU GDPR, Art. 27 of the UK GDPR and Art. 14 of the Swiss Data Protection Law. EDPO is a privately-held Belgian limited liability company with headquarters in Brussels, the European capital, and offices throughout Europe. EDPO also has two sister companies EDPO UK Ltd (located in London) and EDPO Switzerland (located in Geneva). Our fee are all-inclusive and cover the following services:: > The handling of an unlimited number of requests from individuals (data subjects) in the EU/UK/Switzerland, including translation > The handling of an unlimited number of requests from the data protection authorities > Assistance with the handling of an unlimited number of data breach notifications > The right to use EDPO’s contact details and logo on the company’s website and on other company material > The right to use the EDPO compliance certificate (which is based on Blockchain technology) (https://www.edpo.brussels/get-your-edpo-compliance-certificate) > Alerts regarding relevant data protection and GDPR-related news and developments We believe in the GDPR's high standards of data protection. We also believe in the benefits of international trade. Our mission is to enable companies to have access to customers in the EU, the UK and in Switzerland. We help your business grow and protect EU, UK and Swiss customers.
- Website
-
https://edpo.com
External link for EDPO (European Data Protection Office)
- Industry
- Legal Services
- Company size
- 2-10 employees
- Headquarters
- Brussels, Brussels Region
- Type
- Privately Held
- Specialties
- GDPR and DPR
Locations
-
Primary
Avenue Huart Hamoir 71
Brussels, Brussels Region 1030, BE
-
8 Northumberland Avenue
London, England WC2N 5BY, GB
-
Rue de Lausanne 37
Geneva, Geneva 1201, CH
Employees at EDPO (European Data Protection Office)
-
Cédric Pierrard
CEO @ Haulogy
-
Olivier Willocx
Parlementaire MR
-
Jane Murphy
GDPR & Corporate Lawyer / Founder & Chair of EDPO, EDPO UK, EDPO Switzerland & EDSR/ Non-Exec Independent Board Member at Oracle (OFSS) and Ageas
-
Soraya Garrán Blázquez
Privacy Officer ∣ University Lecturer ∣ Speaker - FIP | CIPP/E | CIPM | CIPT | MBA
Updates
-
“During its October 2024 plenary, the European Data Protection Board (EDPB) selected the topic for its fourth Coordinated Enforcement Action (CEF), which will concern the implementation of the right to erasure (‘right to be forgotten’) by controllers. Data Protection Authorities (DPAs) will join this action on a voluntary basis in the coming weeks and the action itself will be launched during the first semester of 2025. The right to erasure (Art.17 GDPR) is one of the most frequently exercised data protection rights and one about which DPAs frequently receive complaints. The aim of this coordinated action will be, among other objectives, to evaluate the implementation of this right in practice.” #Privacy #GDPR #dataprotection #CEF2025 Subscribe to EDPO's newsletter here: https://lnkd.in/dwK8sde *This article was not written by EDPO. The opinions and views of the author(s) do not necessarily represent those of EDPO. https://lnkd.in/eJDh6kGQ
CEF 2025: EDPB selects topic for next year’s Coordinated Action
edpb.europa.eu
-
“The European Commission delivered its first review of the adequacy decision of the EU-U.S. Data Privacy Framework to the European Parliament and Council of Europe after its first year in force, and ultimately concluded that U.S. authorities ‘have put in place the necessary structures and procedures to ensure that the Data Privacy Framework functions effectively.’ […] DigitalEurope Director for Infrastructure, Privacy and Security Policy Alberto Di Felice, CIPP/E, said the fact the European Commission will re-conduct the review in three years was a significant development in and of itself.” #Privacy #GDPR #dataprotection #DataPrivacyFramework #DataTransfers Subscribe to EDPO's newsletter here: https://lnkd.in/dwK8sde *This article was not written by EDPO. The opinions and views of the author(s) do not necessarily represent those of EDPO. Source IAPP article: https://lnkd.in/eeTgWBES Source EU announcement: https://lnkd.in/dv42MGiD
-
"During its latest plenary, the European Data Protection Board (EDPB) adopted an Opinion on certain obligations following from the reliance on processor(s) and sub-processor(s), Guidelines on legitimate interest, a Statement on laying down additional procedural rules for GDPR enforcement and the EDPB work programme 2024-2025." The Opinion can be found here: https://lnkd.in/eBkCKiJj The Guidelines can be found here: https://lnkd.in/eMv9dsMq The Statement can be found here: https://lnkd.in/dUDBesrQ The work programme can be found here: https://lnkd.in/dS6wmM32 #privacy #GDPR #dataprotection #edpb Subscribe to EDPO's newsletter here: https://lnkd.in/dwK8sde *This article was not written by EDPO. The opinions and views of the author(s) do not necessarily represent those of EDPO. https://lnkd.in/dA585wBs
-
“Location data has become a valuable resource for both companies and law enforcement. Few understand this better than Google, whose Sensorvault database stores vast amounts of location data from users who have opted into its Location History service, recently rebranded as Timeline. Although this database was created to enhance user experiences, it has come under scrutiny due to its use in geofence warrants. These warrants, which law enforcement agencies use to track individuals based on their proximity to crime scenes, raise significant questions about privacy and the extent of surveillance.” #Privacy #GDPR #dataprotection #GoogleLocation Subscribe to EDPO's newsletter here: https://lnkd.in/dwK8sde *This article was not written by EDPO. The opinions and views of the author(s) do not necessarily represent those of EDPO. https://lnkd.in/ezAX-7ys
Google To Stop Sharing Location Data With Law Enforcement
social-www.forbes.com
-
“The large language model (LLM) ChatGPT ‘recognizes facial identities and differentiates between two facial images with considerable accuracy,’ according to a newly released study exploring the potential in applying LLMs to ‘biometric tasks.’ The paper, ‘Chatgpt and Biometrics: an Assessment of Face Recognition, Gender Detection, and Age Estimation Capabilities’ delivers on its title. ‘While the applications of LLMs, such as ChatGPT, have been studied for different tasks, their capabilities for biometrics have not been explored,’ it reads. The research team of academics from Idiap Research Institute, Mizani Research Institute and the Norwegian University of Science and Technology (NTNU) says ChatGPT ‘avoids answering questions regarding sensitive information (e.g., privacy-related) because of safeguards. Along the same lines and since biometric data are considered as privacy-sensitive information, ChatGPT does not provide direct answers to prompts regarding biometric information.’” #Privacy #GDPR #dataprotection #ChatGPTRecognition #Facialidentity Subscribe to EDPO's newsletter here: https://lnkd.in/dwK8sde *This article was not written by EDPO. The opinions and views of the author(s) do not necessarily represent those of EDPO. https://lnkd.in/ezwCTWth
ChatGPT can recognize ‘facial identities,’ perform age estimation: research
https://www.biometricupdate.com
-
“The subject of 'legitimate interests' and in particular whether they can be ‘purely commercial' has been a topic of front and center stage debate in the Netherlands for some time. The Dutch data protection authority (AP) has historically interpreted the concept of legitimate interest narrowly, taking the position that organisations cannot rely on purely commercial interests as a legitimate interest and that instead, the interests must have a basis in law. This narrow interpretation makes it impractically difficult for organisations to rely on Article 6(1)(f) GDPR as the lawful basis on which to process personal data and created uncertainty. […] Now, following preliminary questions from the Amsterdam district court, the Court of Justice of the European Union (CJEU) has provided valuable clarification – and one that allows organisations to breathe a sigh of relief. In its judgement of 4 October 2024, the CJEU recognized that a wide range of interests can be considered a ‘legitimate interest’ under the GDPR and there is no requirement that the interests of the controller are laid down by law.” #Privacy #GDPR #dataprotection #LegitimateInterest #CJEURuling Subscribe to EDPO's newsletter here: https://lnkd.in/dwK8sde *This article was not written by EDPO. The opinions and views of the author(s) do not necessarily represent those of EDPO. https://lnkd.in/ejJ7rE-r
EU: CJEU Confirms That Legitimate Interests Can Cover Purely Commercial Interests
https://www.jdsupra.com/
-
“Facebook-owner Meta must minimise the amount of people's data it uses for personalised advertising, the EU’s highest court says. The Court of Justice for the European Union (CJEU) ruled in favour of privacy campaigner Max Schrems, who complained that Facebook misused his personal data about his sexual orientation to target ads at him. In complaints first heard by Austrian courts in 2020, Mr Schrems said he was targeted with adverts aimed at gay people despite never sharing information about his sexuality on the platform. The CJEU said on Friday that data protection law does not unequivocally allow the company to use such data for personalised adverting.” #Privacy #GDPR #dataprotection #MetaRuling Subscribe to EDPO's newsletter here: https://lnkd.in/dwK8sde *This article was not written by EDPO. The opinions and views of the author(s) do not necessarily represent those of EDPO. https://lnkd.in/eXrKYAvn
Meta must limit data for personalised ads - EU court
bbc.com
-
“Ireland's Data Protection Commission (DPC) has launched an inquiry into Ryanair's Customer Verification Process for travellers booking flights through third-party websites or online travel agents (OTA). The concerns center around Ryanair's practice of demanding extra ID verification from customers who don't book directly through its website and what happens to that personal data, which may include biometrics. Graham Doyle, Deputy Commissioner with the DPC, said: ‘The DPC has received numerous complaints from Ryanair customers across the EU/EEA who after booking their flights were subsequently required to undergo a verification process. The verification methods used by Ryanair included the use of facial recognition technology using customers' biometric data.’” #Privacy #GDPR #dataprotection #RyanairGDPR #IrishDPC Subscribe to EDPO's newsletter here: https://lnkd.in/dwK8sde *This article was not written by EDPO. The opinions and views of the author(s) do not necessarily represent those of EDPO. https://lnkd.in/eqe2EBuV
Ryanair faces GDPR turbulence over customer ID checks
theregister.com
-
“In what might be described as a real-life Black Mirror episode, a Harvard student uses facial recognition with $379 Meta Ray-Ban 2 smart sunglasses - to dig up personal data on every face he sees in real time. […] AnhPhu Nguyen, a junior at Harvard University, uses the livestreaming feature of his Meta Ray-Ban 2 smart glasses while a connected computer monitors the feed in real-time. He employs publicly available AI-powered facial recognition software to detect faces and scour the internet for more images of those individuals. He then uses databases like voter registration and online articles to gather names, addresses, phone numbers, next of kin, and even social security numbers. […] This entire process takes only seconds from being captured discreetly via the glasses to being displayed on his phone, giving off real life Cyberpunk 2077 vibes.” #Privacy #GDPR #dataprotection #FacialRecognition #Metaglasses Subscribe to EDPO's newsletter here: https://lnkd.in/dwK8sde *This article was not written by EDPO. The opinions and views of the author(s) do not necessarily represent those of EDPO. https://lnkd.in/eP6k234D
Facial recognition data breach: Meta glasses extract info in real time
newatlas.com