Promises unkept: The EU-US Data Privacy Framework under fire
A decade after Snowden’s revelations — and despite the public outrage they sparked — surveillance and mass data collection continue under the EU-U.S. Data Privacy Framework (DPF), despite persistent privacy concerns. This shift reflects a reorientation of EU priorities toward economic and geopolitical interests, risking compromises on privacy and data protection.
Filter resources
-
Promises unkept: The EU-US Data Privacy Framework under fire
A decade after Snowden’s revelations — and despite the public outrage they sparked — surveillance and mass data collection continue under the EU-U.S. Data Privacy Framework (DPF), despite persistent privacy concerns. This shift reflects a reorientation of EU priorities toward economic and geopolitical interests, risking compromises on privacy and data protection.
Read more
-
Unpacking digital fairness: What Europe must do now to end the tech industry’s most nefarious tactics
The EU plans to propose a Digital Fairness Act to better protect consumers from deceptive design practices, social media addiction, and pervasive online tracking. We unpack what this means and what the European Commission should do to end Big Tech’s most nefarious tactics.
Read more
-
Deported for reporting a crime: the paradox of securitisation policies
The review of the Return Directive, which governs detention and deportation procedures in the EU, should not lead to the criminalisation of undocumented people. Rather, it should uphold their fundamental right to personal data protection by establishing firewalls that allow them to report crimes without fears of being deported.
Read more
-
Council’s General Approach on GDPR Procedural
EDRi acknowledges the Council’s positive steps in their General Approach on the Proposal for additional procedural rules concerning the GDPR. Nevertheless, we emphasise the pressing need for enhanced legal certainty and the prevention of actions that could compromise the effectiveness of GDPR enforcement and erode trust, particularly concerning the protection of fundamental rights.
Read more
-
How to fight Biometric Mass Surveillance after the AI Act: A legal and practical guide
The EU's Artificial Intelligence Act has been adopted, laying out an in-principle ban on live mass facial recognition and other public biometric surveillance by police. Yet the wide exceptions to this ban may pave the way to legitimise the use of these systems. This living guide, for civil society organisations, communities and activists, charts a human rights-based approach for how to keep resisting biometric mass surveillance practices now and in the future
Read more
-
Position paper: GDPR enforcement done right
There is an urgent need to enhance legal certainty and prevent actions that undermine the effectiveness of and trust in GDPR enforcement. EDRi and Access Now have co-drafted a position paper on the EU Proposal for additional procedural rules concerning the General Data Protection Regulation (GDPR).
Read more
-
Privacy is not for sale: Meta must stop charging for people’s right to privacy
Ahead of a crucial opinion by the European Data Protection Board (EDPB) – a grouping of the EU’s chief privacy regulators - on Meta’s plan to charge for privacy, the European Commission has opened an investigation that we hope will cast light on the unlawfulness of Meta’s so-called ‘Pay or Okay’ model, which has become the ‘talk of the town’ in Brussels.
Read more
-
Greek Ministry of Asylum and Migration face a record-breaking €175,000 fine for the border management systems KENTAUROS & HYPERION
On 3 April, the Greek Data Protection Authority (DPA) slapped the Ministry of Asylum and Migration with a record-breaking €175,000 fine under the General Data Protection Regulation for the border management systems KENTAUROS and HYPERION. The DPA’s investigation started back in 2022, following a strategic complaint filed by the EDRi member Homo Digitalis and its partners in Greece.
Read more
-
Open letter: EU Data Protection Board must acknowledge the Commission’s additional concerns about ‘Consent or Pay’
On 15 April, EDRi, noyb, Access Now and 20 consumer and digital rights organisations sent an open letter to the European Data Protection Board (EDPB) ahead of the EDPB’s decision on Meta’s “Pay or Okay” model.
Read more
-
Europe’s highest court delivers landmark judgment against IAB Europe in GDPR consent spam pop-ups case
The Court of Justice of the European Union's landmark decision on March 7, 2023, against the auctioning of personal data for advertising purposes under the General Data Protection Regulation (GDPR) challenges the legality of invasive tracking and profiling in the context of online advertising. It marks a significant victory for privacy advocates and sets a precedent for the protection of personal data in the digital era.
Read more
-
Open letter: Digital rights advocates unite against Meta’s “Pay or Okay”. Privacy and data protection are NOT for sale
In response to three Data Protection Authorities (DPAs) requesting a European Data Protection Board (EDPB) opinion on Meta's 'Pay or Consent' approach, Access Now, the EDRi office and other EDRi members have united in an open letter urging the Board to reject these subscription-based approaches unequivocally.
Read more
-
The privacy saga with Norwegian Social Service continues
We promised you an update to Janne Cecilie Thorenfeldt’s case taking the Norwegian Labour and Welfare Administration (NAV) on the European Court of Human Rights (ECHR). Since EDRi member Elektronisk Forpost Norge (EFN) reported about the massive GDPR violations of the Service, here is what happened.
Read more