The #DataGrabBill ignores a critical concern for privacy: the rise of biometrics.
It leaves surveillance tech like facial recognition and CCTV open for police and local authorities to use unhindered by effective oversight or data rights.
👁️ Britain is an 'omni-surveillance society' 👁️
The words of the Biometrics and Surveillance Commissioner – a post that’ll be abolished by the #DataGrabBill.
Advances in #facialrecognition tech without proper oversight and a political will to double its use in policing means innocent people will be subjected to authoritarian biometric #surveillance and discredited predictive #policing.
EDPB publishes urgent binding decision regarding #Meta - https://edpb.europa.eu/news/news/2023/edpb-publishes-urgent-binding-decision-regarding-meta_en #gdpr #ireland #norway
The (CJEU) today issued two landmark judgments in proceedings against the German credit reference agency SCHUFA, which previously enjoyed considerable freedom in Germany. The #CJEU confirmed that national courts have extensive powers to scrutinize data protection authorities, strengthening the rights of data subjects. Furthermore, the court ruled that the assignment of automatically calculated credit scores is not in line with the #GDPR
- Credit agency scoring = 'decision' & within A22 if downstream actors rely on it, else gap in the law.
- A22 a prohibition. not a triggered right
Judgment (FR) https://curia.europa.eu/juris/document/document_print.jsf?mode=req&pageIndex=0&docid=280426&part=1&doclang=FR&text=&dir=&occ=first&cid=5036707
@RDBinns & me on this https://academic.oup.com/idpl/article/11/4/319/6403925 #SCHUFA
“The UK government’s determination to deregulate data protection is putting the adequacy agreement with the EU in jeopardy, which is a risk that the UK economy cannot afford.”
🗣️ @marianods – ORG Legal and Policy Officer.
We have an exhibit hall where attendees can share their contact data with a company. It is a physical, in-person, optional transaction.
At no other point do we share contact data.
To adhere to GDPR, we need to explicitly identify the data points that we would share if they did this.
But do we need to require opt out at registration? Not sure.
#Meta’s New Ad-Free Subscriptions Are Already Under Legal Attack from #Privacy Activists - https://www.privateinternetaccess.com/blog/metas-new-ad-free-subscriptions-are-already-under-legal-attack-from-privacy-activists/ they said they'd do it; they've done it... #gdpr #eu
In a global #privacy race to the bottom, we lose our data rights at home and abroad.
The CPTPP lets Big Tech force the removal of #dataprotection that prevents them from laundering or selling data illegally.
The UK Data Bridge enables data transfers to the US, despite claims it lacks basic rule of law guarantees.
The #DataGrabBill joins the dots where data can be transferred overseas through Ministerial decree without safeguards.
The #DataGrabBill will let the UK government authorise international data transfers with reduced oversight, even if the country lacks enforceable rights or effective remedies.
It risks the UK-EU adequacy agreement for the free flow of data.
This deregulatory law is not only seriously damaging to our data rights, it'll have major economic consequences. Legal fees alone may be up to £1.6 billion.
By @EDPS ‘TechSonar report 2023-2024 explores five emerging technologies: Large language models (LLMs), Digital identity wallet, Internet of behaviours, Extended reality, Deepfake detection.’
https://edps.europa.eu/data-protection/our-work/publications/reports/2023-12-04-techsonar-report-2023-2024_en #gdpr #privacy #eu #law #surveillance #ai #tech #chatgpt
EU court lowers requirements for imposing fines for data protection breaches
The European Court of Justice issued a landmark ruling on Tuesday (5 December) that is set to facilitate the imposition of fines for infringements of the General Data Protection Regulation (GDPR).
Retrieving raw, training data from GPT is now marked as a potential violation of terms of service. But what was a personal data protection breach, remains so. #GDPR
Health data is already being siphoned away for commercial profiling.
UK Biobank passed medical data provided for medial research to insurance companies without patient consent.
This is a sign of what will happen with weaker data protection, where health data can be reused for loosely defined 'research purposes' under the #DataGrabBill for profiling to increase insurance premiums.
Action was taken using #GDPR against Google DeepMind for collecting health records of 1.6 million NHS patients without their knowledge or consent.
They failed to consult with the ICO or implement contractual safeguards and patients brought a class action case.
The #DataGrabBill creates a new legal basis for research and undermines purpose limitation, so NHS patients data can be shared with private corporations.
🚨 Health data will be opened up to exploitation by multi-national firms like Palantir 🚨
Contracts such as the NHS DataStore and Federated Data Platform give predatory private companies a stake in sensitive health data for profit over care.