Post-Brexit data protection laws are coming, and we should all be concerned about it
The UK Government are expected to reveal their Post-Brexit data protection bill on 10 May. They are proposing a framework that frames personal data in terms of economic assets and aims to "cut red tape" to promote their commercial use. These ideas draw considerable support among corporate lobbyists and large technology companies, which would no doubt leverage the "UK example" to advocate for weaker data protection standards in Europe. In turn, understanding and opposing these changes should not be seen as a domestic issue, but as a major threat for digital rights advocates across the globe.
Filter resources
-
Post-Brexit data protection laws are coming, and we should all be concerned about it
The UK Government are expected to reveal their Post-Brexit data protection bill on 10 May. They are proposing a framework that frames personal data in terms of economic assets and aims to "cut red tape" to promote their commercial use. These ideas draw considerable support among corporate lobbyists and large technology companies, which would no doubt leverage the "UK example" to advocate for weaker data protection standards in Europe. In turn, understanding and opposing these changes should not be seen as a domestic issue, but as a major threat for digital rights advocates across the globe.
Read more
-
Threat to the protection of personal data in Belgium: European civil society is concerned
EDRi, alongisde multiple civil society organisations, is the signatory of an open letter addressed to the Belgian Parliament, demanding better enforcement of the European data protection rules and guarantees of political independence of the Belgian Data Protection Authority.
Read more
-
CNIL orders three controllers to comply with GDPR after decision that using Google Analytics is illegal
Only weeks after the groundbreaking decision by the Austrian Data Protection Authority that the continuous use of Google Analytics violates the GDPR, the French Data Protection Authority (CNIL) ordered three French websites to comply with the GDPR. All these decisions are based on noyb's 101 model complaints which were filed after the Court of Justice ruling invalidating Privacy Shield. noyb expects similar decisions by the other authorities.
Read more
-
Civil society call and recommendations for concrete solutions to GDPR enforcement shortcomings
EDRi members call on the European Data Protection Board (EDPB), the European Commission, and all national data protection authorities (DPAs) to urgently address the structural and procedural enforcement issues that prevent the GDPR from fully reaching its potential.
Read more
-
Giropay knows what you bought last summer
A customer contacted noyb after seeing a detailed list of products she had ordered in an online pharmacy and a sex shop listed in her giropay account. Such data is specially protected under the GDPR and may not be processed without consent. noyb filed a complaint against giropay with the Hessian State Commissioner for Data Protection and Freedom of Information.
Read more
-
Belgian authority finds IAB Europe’s consent pop-ups incompatible with the GDPR
Following a number of complaints filed in 2018 and 2019, including by EDRi-members Panoptykon and Bits of Freedom, and coordinated by the Irish Council for Civil Liberties, the Belgian Data Protection Authority has found that the consent system developed and managed by the adtech industry body IAB Europe, and used by many websites in the EU, is illegal under the GDPR.
Read more
-
Hide and Seek: Polish DPA agrees that people should be able to access their advertising profiles, but there’s no way to do so
Following EDRi member Panoptykon’s General Data Protection Regulation (GDPR) complaint against one of the biggest Polish news website, Interia.pl - the Polish Data Protection Authority has confirmed that online publishers should give users access to their advertising profiles generated for the purposes of delivering behavioural ads.
Read more
-
Noyb files another complaint against Amazon Europe – black box algorithm discriminates customers
The e-commerce giant offers customers the possibility to pay for products later via "Monthly Invoicing". A customer was automatically rejected from using this payment method without Amazon giving any reasons why. When Amazon’s customer service could not provide any further information, the customer submitted an access request under Article 15 GDPR in order to find out why he was rejected – but the company still refused to provide any information.
Read more
-
GDPR: Three years in, and its future and success are still up in the air
The EU’s General Data Protection Regulation (GDPR) is not living up to the hype. When first implemented in 2018, the GDPR was presented as the new world standard for privacy and data protection. The law has increased data protection awareness and led to significant legal changes all over the world. Yet EDRi member Access Now’s new report, Three years under the GDPR: An implementation progress report, explores just how far this legislation still has to go before its promises — and potential — are truly fulfilled.
Read more
-
Stronger enforcement is key to the effectiveness of the GDPR
On the third anniversary of the entering into force of the General Data Protection Regulation (GDPR), EDRi sent a message to Members of the European Parliament calling for stronger enforcement of the GDPR, as well as the adoption of necessary additional legislation where appropriate.
Read more
-
Transparency for institutions, privacy for the people
Much has been said about abuses of personal data by platforms like Facebook and other private companies. However, there is little observation of non-compliance by public administrations or institutions such as the policies undermining the privacy of the public and the small (or large) daily abuses people are subject to.
Read more
-
3rd Anniversary of the GDPR
Europe can pride itself to have passed the most progressive privacy legislation in the world, but small errors in the law and the lack of enforcement lead to legitimate frustration of users and small business. EDRi's member noyb reflects on the nature and impact of the GDPR.
Read more