openrightsgroup, 4 hours ago to privacy

The #DataGrabBill ignores a critical concern for privacy: the rise of biometrics.

It leaves surveillance tech like facial recognition and CCTV open for police and local authorities to use unhindered by effective oversight or data rights.

#HandsOffOurData #DataGrab #GDPR #DPDI #DPDIBill #dataprotection #privacy #ukpolitics

https://theconversation.com/facial-recognition-technology-could-soon-be-everywhere-heres-how-to-make-it-safer-205040

openrightsgroup, 6 hours ago to privacy

👁️ Britain is an 'omni-surveillance society' 👁️

The words of the Biometrics and Surveillance Commissioner – a post that’ll be abolished by the #DataGrabBill.

Advances in #facialrecognition tech without proper oversight and a political will to double its use in policing means innocent people will be subjected to authoritarian biometric #surveillance and discredited predictive #policing.

#HandsOffOurData #DataGrab #GDPR #DPDIBill #dataprotection #privacy #ukpolitics

https://www.theguardian.com/uk-news/2023/oct/29/britain-omni-surveillance-society-watchdog-warns

LukaszOlejnik, 10 hours ago to random

Soon, users of OpenAI services will be subject only to the Irish Personal Data Protection Authority (DPC). My #GDPR complaint was filed in August so it will still be processed outside Ireland. Very well. https://openai.com/policies/eu-terms-of-use

edgren, 21 hours ago to privacy

Meta banned from using personal data for behavioral advertising in EU/EEA

https://stackdiary.com/metas-behavioral-ads-banned-in-eu-eea-by-edpb/

Go, EU, go! Continue the fight till Meta is complete banned! I believe in you ❤️

#privacy #meta #facebook #Instagram #eu #gdpr #gdpr_fines

glynmoody, 1 day ago to meta

EDPB publishes urgent binding decision regarding #Meta - https://edpb.europa.eu/news/news/2023/edpb-publishes-urgent-binding-decision-regarding-meta_en #gdpr #ireland #norway

gnemmi, 1 day ago to privacy

The (CJEU) today issued two landmark judgments in proceedings against the German credit reference agency SCHUFA, which previously enjoyed considerable freedom in Germany. The #CJEU confirmed that national courts have extensive powers to scrutinize data protection authorities, strengthening the rights of data subjects. Furthermore, the court ruled that the assignment of automatically calculated credit scores is not in line with the #GDPR

#Privacy #Legal #DataProtection

https://noyb.eu/en/cjeu-landmark-rulings-credit-ranking-and-review-dpas

mikarv, 1 day ago to random

#CJEU @Curia ruling on #Article22 #GDPR multi-stage profiling

• Credit agency scoring = 'decision' & within A22 if downstream actors rely on it, else gap in the law.
• A22 a prohibition. not a triggered right
  Judgment (FR) https://curia.europa.eu/juris/document/document_print.jsf?mode=req&pageIndex=0&docid=280426&part=1&doclang=FR&text=&dir=&occ=first&cid=5036707
  @RDBinns & me on this https://academic.oup.com/idpl/article/11/4/319/6403925 #SCHUFA

openrightsgroup, 1 day ago (edited 1 day ago) to privacy

“The UK government’s determination to deregulate data protection is putting the adequacy agreement with the EU in jeopardy, which is a risk that the UK economy cannot afford.”

🗣️ @marianods – ORG Legal and Policy Officer.

#HandsOffOurData #DataGrabBill #DataGrab #GDPR #DPDI #DPDIBill #dataprotection #privacy #ukpolitics #EU #brexit

https://www.digit.fyi/uk-data-protection-reform-eu-adequacy-may-be-at-risk/

box464, 1 day ago to random

Any #EventManagement or EU folks attending events out there that might know this answer to this #GDPR question.

We have an exhibit hall where attendees can share their contact data with a company. It is a physical, in-person, optional transaction.

At no other point do we share contact data.

To adhere to GDPR, we need to explicitly identify the data points that we would share if they did this.

But do we need to require opt out at registration? Not sure.

glynmoody, 2 days ago to meta

#Meta’s New Ad-Free Subscriptions Are Already Under Legal Attack from #Privacy Activists - https://www.privateinternetaccess.com/blog/metas-new-ad-free-subscriptions-are-already-under-legal-attack-from-privacy-activists/ they said they'd do it; they've done it... #gdpr #eu

openrightsgroup, 2 days ago to privacy

In a global #privacy race to the bottom, we lose our data rights at home and abroad.

The CPTPP lets Big Tech force the removal of #dataprotection that prevents them from laundering or selling data illegally.

The UK Data Bridge enables data transfers to the US, despite claims it lacks basic rule of law guarantees.

The #DataGrabBill joins the dots where data can be transferred overseas through Ministerial decree without safeguards.

#HandsOffOurData #GDPR #ukpolitics

https://www.openrightsgroup.org/blog/uk-data-bridge-a-global-privacy-race-to-the-bottom/

openrightsgroup, 2 days ago (edited 2 days ago) to privacy

The #DataGrabBill will let the UK government authorise international data transfers with reduced oversight, even if the country lacks enforceable rights or effective remedies.

It risks the UK-EU adequacy agreement for the free flow of data.

This deregulatory law is not only seriously damaging to our data rights, it'll have major economic consequences. Legal fees alone may be up to £1.6 billion.

#HandsOffOurData #GDPR #dataprotection #privacy #ukpolitics #EU #brexit

https://www.openrightsgroup.org/press-releases/uk-data-protection-reform-experts-and-civil-society-organisations-warn-european-commission-of-threat-to-adequacy-agreement/

Frederik_Borgesius, 2 days ago to privacy

By @EDPS ‘TechSonar report 2023-2024 explores five emerging technologies: Large language models (LLMs), Digital identity wallet, Internet of behaviours, Extended reality, Deepfake detection.’
https://edps.europa.eu/data-protection/our-work/publications/reports/2023-12-04-techsonar-report-2023-2024_en #gdpr #privacy #eu #law #surveillance #ai #tech #chatgpt

eunews, 3 days ago to news

EU court lowers requirements for imposing fines for data protection breaches

The European Court of Justice issued a landmark ruling on Tuesday (5 December) that is set to facilitate the imposition of fines for infringements of the General Data Protection Regulation (GDPR).

https://www.euractiv.com/section/data-protection/news/eu-court-lowers-requirements-for-imposing-fines-for-data-protection-breaches/

#News #EuropeanNews #Europe #EU #EuropeanUnion #GDPR

LukaszOlejnik, 3 days ago to random

Retrieving raw, training data from GPT is now marked as a potential violation of terms of service. But what was a personal data protection breach, remains so. #GDPR

EDPS, 3 days ago to random

W. Wiewiórowski @EDPS_supervisor: "Lesson learned from the #GDPR is that first, there were calls not to overregulate. Then, to give templates & checklists. #DPAs can not invent solutions to all the problems of various business models." #EUData23 #ForumEurope 3/3

openrightsgroup, 3 days ago to privacy

Health data is already being siphoned away for commercial profiling.

UK Biobank passed medical data provided for medial research to insurance companies without patient consent.

This is a sign of what will happen with weaker data protection, where health data can be reused for loosely defined 'research purposes' under the #DataGrabBill for profiling to increase insurance premiums.

#HandsOffOurData #GDPR #dataprotection #privacy #ukpolitics

https://www.theguardian.com/technology/2023/nov/12/private-uk-health-data-donated-medical-research-shared-insurance-companies

openrightsgroup, 3 days ago to privacy

Action was taken using #GDPR against Google DeepMind for collecting health records of 1.6 million NHS patients without their knowledge or consent.

They failed to consult with the ICO or implement contractual safeguards and patients brought a class action case.

The #DataGrabBill creates a new legal basis for research and undermines purpose limitation, so NHS patients data can be shared with private corporations.

#HandsOffOurData #dataprotection #privacy #ukpolitics

https://techcrunch.com/2021/09/30/uk-class-action-style-suit-filed-over-deepmind-nhs-health-data-scandal/

openrightsgroup, 3 days ago to privacy

🚨 Health data will be opened up to exploitation by multi-national firms like Palantir 🚨

Contracts such as the NHS DataStore and Federated Data Platform give predatory private companies a stake in sensitive health data for profit over care.

#HandsOffOurData #DataGrabBill #DPDIBill #GDPR #dataprotection #privacy #ukpolitics #Palantir #NHS

https://www.opendemocracy.net/en/palantir-nhs-federated-data-platform-patient-trust-opt-out/