GDPR

During the week, the debate about the potential problem with cloud services owned by US companies has taken off in Sweden.At the beginning of the week, the GöteborgsPosten concluded that the Cloud Act allows US authorities to access both classified information and personal data - without using the normal routines for intergovernmental requests.Instead , according to the Cloud Act , US authorities can request data from US...

Right now, the question of personal liability for employees are being tried in their role as data protection officers in both Switzerland and the UK. In both cases, companies that have suffered costs under the GDPR are seeking compensation from the Data Protection Officers, who...

4% of the annual turnover, or €20 Million euros, whichever is highest. That is the maximum fines according to GDPR.What this means is becoming more and more obvious, starting with Marriots §123 Million fine this summer and connecting to the fine of €200 000 towards German delivery firm...

The Austrian post company Österreichische Post AG has been fined €180 million by the Austrian data protection authority.Österreichische Post has created, and resold, a register containing personal data about closer to 3 million Austrian citizens. As a legal ground for this processing,Österreichische...

The Swedish DPA, Datainspektionen, uses its rights to issue fine for breaches of GDPR. A high school in Skellefteå has tried using a camera with facial recognition to register student’s presence in class.Biometric data, that are used for facial recognition, are considered as special categories of personal...

Following an extensive investigation, The Information Commissioner's Office (ICO) in the UK intends to fine Marriott International €110 290 061 for infringements of the General Data Protection Regulation (GDPR).The proposed fine relates to a cyber incident which was notified to the ICO by Marriott in November 2018. A variety of...