News

CDPI Privacy Newsletter

Get these breaking news updates in your inbox! Subscribe to our newsletter Subscribe
Categories : CDPI Privacy Newsletter

In Brief: The Austrian Data Protection Authority (DSB) has been faulted by the Court of Justice of the European Union (CJEU)

January 14, 2025
The CJEU has taken issue with receiving too many GDPR violations, so it decided victims of data privacy violations can only file 2x/month. Max Schrems, activist and head of noyb (None of your business) non-profit, sensibly pointed out that the right to privacy should not be an on-again, off-again proposition – limited to twice monthly.
CDPI Privacy Newsletter

Meta given €251M fine for breach

January 7, 2025
Ireland’s Data Protection Commission (DPC) delivered a €251M (US$261M) fine for a 2018 data breach that affected ~29 million Facebook accounts worldwide, including ~3 million users in the EU/EEA. The regulator’s determination was that the company hadn’t provided adequate information in its breach notification, that it didn’t fully document steps taken to remedy problems, and that it hadn’t ensured protection in system design.
CDPI Privacy Newsletter

Apple offers $95M to settle Siri suit

January 7, 2025
Without admitting culpability, Apple has agreed to settle a Siri class action for $95 million for an alleged breach of privacy.  Those who purchased or owned Apple devices between September 2014 and December 2024 may be eligible for part of the settlement. The suit claimed Siri activated and recorded conversations even when users didn’t initiate it via the “Hey, Siri” prompt, and that 3rd-party Apple contractors were able to access private conversations.
CDPI Privacy Newsletter

Children’s Privacy: India’s DPDP proposes parental consent for social media access

January 7, 2025
The draft of India’s Digital Personal Data Protection (DPDP) has been released for comment and includes a rule that would require explicit parental consent for children under 18 to open a social media account. Data fiduciaries at companies would be responsible for verifying that appropriate permission has been obtained and that the individual granting the consent is an adult. The deadline for DPDP feedback is February 18th.
CDPI Privacy Newsletter