On 7 October 2020, the French DPA (”CNIL”) published recommendations on how to prevent and manage SQL injection attacks that compromise the personal data, for example, by remotely taking control of a server.
The recommendations may be accessed here (only in French).
The EDPB template complaint and acknowledgment of receipt forms, and the final version of Recommendations on the application for approval and on the elements and principles to be found in Controller BCRs are now available
The CNIL fines a company specialized in online advertising EUR 40M over several GDPR violations, including consent requirements
Another two fines imposed by the Romanian DPA following data breaches caused by ransomware attacks
