data protection
Filter by...
-
The EDPB’s Rorschach Test: What the data protection body’s Opinion on AI training Means for GDPR Enforcement
In December 2024, the European Data Protection Board (EDPB) released a much-awaited Opinion on AI model training. While the Opinion reaffirmed GDPR principles and underscored the need for robust safeguards, its ambiguities may leave room for regulatory evasion, reinforcing the ongoing struggle between data protection rules and commercial AI development wishes.
Read more
-
Why Ireland is the Achilles heel of the EU’s fightback against Big Tech
The recent controversies surrounding Big Tech moguls Elon Musk and Mark Zuckerberg — who are defying content moderation norms and accusing the EU of censorship — should come as no surprise to those following the tech industry closely. For over a decade, Big Tech has approached the EU's robust data protection framework as little more than a compliance checkbox, rather than a set of binding legal obligations.
Read more
-
Firefox tracks you with “privacy preserving” feature
EDRi member noyb filed a complaint against Mozilla for quietly enabling a supposed “privacy feature” (called Privacy Preserving Attribution) in its Firefox browser. Contrary to its reassuring name, this technology allows Firefox to track user behaviour on websites
Read more
-
Age against the machine: the race to make online spaces age-appropriate
The race is on to make online spaces age-appropriate, but children’s best interest is no Olympic sport. While the internet was not designed with kids in mind, children, teens and young adults are now spending more time online than ever. Parents use video-sharing platforms to show cartoons to their toddlers, while kids and adolescents play online games, engage in social media, learn through online modules, and fashion their identities through their online activities.
Read more
-
Council’s General Approach on GDPR Procedural
EDRi acknowledges the Council’s positive steps in their General Approach on the Proposal for additional procedural rules concerning the GDPR. Nevertheless, we emphasise the pressing need for enhanced legal certainty and the prevention of actions that could compromise the effectiveness of GDPR enforcement and erode trust, particularly concerning the protection of fundamental rights.
Read more
-
Position paper: GDPR enforcement done right
There is an urgent need to enhance legal certainty and prevent actions that undermine the effectiveness of and trust in GDPR enforcement. EDRi and Access Now have co-drafted a position paper on the EU Proposal for additional procedural rules concerning the General Data Protection Regulation (GDPR).
Read more
-
The two sides of web scraping: When data collection becomes a double-edged sword
Emerging AI technology often relies on methods of data collection – such as web-scraping – which can become a double edged sword when not used with safeguards and transparency or in ways that are unlawful. These methods have been used to achieve several key victories for digital rights, but can also be exploitative.
Read more
-
GPS tagging of migrants found unlawful by UK data protection authority
As a result of Privacy International’s 2022 complaint against the UK Home Office, the UK data protection authority (ICO) has found that the GPS tagging of migrants and asylum seekers arriving to the UK small boats was unlawful, and issued a formal warning for all future data protection compliance of GPS tagging as a whole. This is a major step towards better scrutiny of the human rights implications of the surveillance of migrants.
Read more
-
Open letter: Digital rights advocates unite against Meta’s “Pay or Okay”. Privacy and data protection are NOT for sale
In response to three Data Protection Authorities (DPAs) requesting a European Data Protection Board (EDPB) opinion on Meta's 'Pay or Consent' approach, Access Now, the EDRi office and other EDRi members have united in an open letter urging the Board to reject these subscription-based approaches unequivocally.
Read more
-
The privacy saga with Norwegian Social Service continues
We promised you an update to Janne Cecilie Thorenfeldt’s case taking the Norwegian Labour and Welfare Administration (NAV) on the European Court of Human Rights (ECHR). Since EDRi member Elektronisk Forpost Norge (EFN) reported about the massive GDPR violations of the Service, here is what happened.
Read more
-
Press Release: Brussels rocked by major spyware scandal: Urgent call for ban
Now, when push has come to shove, policymakers at the European Union (EU) must act to ban spyware in Europe. Yesterday, the media reported a major attack on EU democracy with members of the European Parliament Defense Committee being the target of phone hacking.
Read more
-
When law enforcement undermines our digital safety, who is looking after our interests?
Imagine your friend sent you a private DM on Twitter. Now imagine, instead of the content remaining for your eyes only, Twitter letting the police also take a peek at it. Such intrusive practices of state actors accessing private messages have grave consequences for our lives. Some people can be physically harmed, and for some, it can mean that their families and friends could get prosecuted. At a collective level, the harm this does to our communities and society at large is immeasurable.
Read more