The IAF's process to help address GDPR lawfulness in AI development and use: how to demonstrate a legitimate interest
What does the recent CJEU decision in Schrems v Meta mean for data aggregation practices in online advertising?
Christopher Bakier and Julia Pranz look at the CJEU's views on data minimisation and special data processing in the context of targeted digital advertising.
3 of 6 Insights
CNIL fines health data management software supplier for GDPR and French Data Protection Act failings
Laura Huck looks at the CNIL's analysis of the controller and processor role and at the distinction between anonymisation and pseudonymisation of health data.
2 of 6 Insights
CJEU sheds light: commercial interests can serve as legitimate interests
Dominique Lensink looks at the CJEU's confirmation that the Dutch DPA's interpretation of legitimate interests was too strict.
5 of 6 Insights
Dutch DPA imposes record-breaking fine of EUR 290 million on Uber for unlawful international data transfers
Sharif Ibrahim and Solange Baris take a high-level look at the Dutch DPA's decision to sanction Uber.
1 of 6 Insights
Bindl v Commission - The EGC on international data transfers and non-material damages
Susan Hillert looks at the implications of the European General Court ruling in Bindl v Commission.
6 of 6 Insights
The „authorised representative“ under the EU AI Act
Data and cyber security - 2024 roundup
CRA & PLD – new security requirements for digital products
What to expect from the new EU Parliament and Commission in 2025
Marc Schuler and Julie Dumontet look at the EU's plans for legislating in tech and digital as the newly reconstituted institutions take off.
5 of 7 Insights
How to Navigate Compliance with the AI Act