Using children’s fingerprints to speed up a lunch queue? 🍽️🔍
Special-category data shouldn’t be processed for trivial purposes. Biometric identifiers are unique and irreversible — convenience can’t override GDPR safeguards. #privacy #GDPR #biometrics
www.prawoiwiez.edu.pl/index.php/pi...
⚖️🔍 Classrooms are going digital — but also into the realm of #surveillance. My new chapter explores why the #AIAct bans schools from using #AI to infer students’ emotions.
The ban reflects a simple truth: students should never be reduced to machine signals.
#edtech #privacy
‼️ After C-203/22, #CJEU faces new Art.22 #GDPR case. Austrian Supreme Court asks if limiting payment methods via credit scoring = automated decision w/ legal effect, and how to read the “necessity” exception. Key test for e-commerce & consumer rights.
#adm #privacy
🇺🇸🤖I’m looking for someone with CIPP/US certification. They don’t have to be 6’5” or have blue eyes, but they should be willing to answer a few questions about the exam. Asking for a friend 😉
#privacy #law #iapp
Polish Supreme Administrative Court: Publishing personal data on public social media isn’t “personal activity” under #GDPR. Lower’s court ruling upheld, the DPA’s view rejected. Public disclosures, even by private individuals, fall under GDPR.
Hot off the press! Three GPAI
reports of the Algorithmic Transparency in the Public Sector project that Alison Gillwald and I co-led.
🧵with links of reports:
1️⃣ A state-of-the-art report of algorithmic transparency instruments.
wp.oecd.ai/app/uploads/...
Can Journalistic Freedom Justify Exposing Children’s Private Lives? The Norwegian DPA says No. Familiekanalen must anonymize videos revealing sensitive info about kids, balancing freedom of speech with GDPR rules protecting vulnerable individuals. Privacy matters, even online.
📍 A Düsseldorf court ruled that #GDPR #enforcement needs a clear culprit. A complaint about leaked legal files was dismissed since no responsible party could be identified.The court clarified: authorities handle their own data breaches; higher bodies aren’t automatically liable controllers
🔎 The Lübeck court fined a streaming giant €350 for a #GDPR breach after user data ended up on the #darkweb. Even fears of misuse count as damages! Controllers stay liable for subcontractors’ mistakes. GDPR compliance isn’t optional—it’s essential.
📍The CJEU ruled that GDPR’s Article 14(5)(c) exception applies to data not collected directly from individuals, including data generated by authorities. The DPAs must ensure laws protect rights but don’t review security under Article 32. #Transparency remains key! #GDPR #privacy
Well, I don’t want to sound overconfident, but I think I’m in demand 😉—especially when it comes to tackling AI from a legal and data privacy perspective!
Link to the act: www.boe.es/boe/dias/202...
💡 Spain’s new law brings #transparency to #AI in legal services. Individuals now have the right to know how AI systems influence decisions in legal processes, ensuring fairness and #accountability. A bold step toward protecting rights in the #digital age!
⚖️💡The Austrian BVwG ruled that #profiling results, like assigning political preferences for targeted #ads, can fall under Article 9 #GDPR if they indirectly reveal sensitive data (e.g., worldview). Even probabilistic or aggregated info carries discrimination risks and is protected. #Privacy
💡🤖 French DPA: #AI cameras in freight vehicles can boost road safety by detecting fatigue/distractions but must avoid constant #surveillance. Employers can rely on legitimate interest, not consent. Data use must be limited, with DPIAs required to mitigate privacy risks. #GDPR #Privacy
Wiernych platformersów na pewno ;)
🔵 The judgement is available here in German: www.wbs.legal/wp-content/u...
🔒📱 The Bundesgerichtshof ruled that losing control over personal data, even briefly, can qualify for #GDPR damages. In a #Facebook scraping case, it suggested €100 for basic harm but left room for more if distress is proven. A key step for privacy rights and corporate accountability. #privacy
The OH Digitale Dienste 📜 explains how cookies 🍪 & tracking tech must respect your privacy 🔒. Consent is key—clear, fair, and easy to revoke. No shady tricks allowed! Transparency rules ✨. Your device, your data, your choice 💻.
More: 360.lexisnexis.at/d/u_verwaltu...
🚨⚖️ Is GDPR’s “household exemption” a loophole for #surveillance? 🇦🇹 The Austrian court ruled a mom tracking her kid’s location w/ “Pingo!” isn’t covered by GDPR—it’s “family business.” Valid? Maybe. But does this open the door for unchecked surveillance? #privacy #GDPR
I may be a data privacy lawyer and scholar but I feel the same 🫣
Scholz has Bugiem his head in the sand and said his decision remains unchanged 🙁