IN THE SPOTLIGHT
The Romanian DPA fines a major hypermarket chain for failure to comply with a data subject’s access request.
On 20 January 2022, the Romanian DPA announced it sanctioned a retail company with a fine of EUR 3,000 for the failure to provide to a data subject the complete copy of video recordings, based on data…
The CNIL decisions sanctioning Google and Facebook for unlawful use of cookies are now available in English
On 6 January 2022, the French DPA (CNIL) announced imposing fines amounting to EUR 210M against Google (EUR 150M) and Facebook (EUR 60M) for inadequate cookies refusal options on their platforms. The …
The summary of the EDPS’ Opinion on the AML/CFT package of legislative proposals is available in the Official Journal of the European Union
On 29 December 2021, the summary of Opinion 12/2021 of the European Data Protection Supervisor (EDPS) on the anti-money laundering and countering the financing of terrorism (AML/CFT) package of legisl…
Romania’s new Cybersecurity Strategy and Action Plan for 2022-2027 approved
On 30 December 2021, the Romanian Government adopted Decision No. 1321/2021, approving Romania's Cybersecurity Strategy and Action Plan for 2022-2027. Based on the experience accumulated during the…
The final version of the EDPB Guidelines on examples regarding data breach notification is now available
On 3 January 2022, the European Data Protection Board ("EDPB") published on its website the final version following public consultation of the Guidelines 01/2021 on examples regarding data breach noti…
European Commission adopts South Korea adequacy decision
On 17 December 2021, the Commissioner for Justice of the European Commission and the Chairperson of the Personal Information Protection Commission of the Republic of Korea announced, in a joint statem…