TOMs – the new password guideline: expiring passwords no longer recommended
Password security is one of the central topics of technical and organizational measures. Login with user name and password is the most common
Data protection conference: Facebook Fanpage operation violates the data protection law
The data protection conference has again published a position paper (available only in German) that declares the operation of Fanpages illegal. The Fanpage operators
Poland: First GDPR fine triggers controversial discussions
The first GDPR fine was imposed in Poland on the Polish subsidiary of Bisnode AB, a joint-stock company operating throughout the EU.
Data protection conference position paper – Legitime Interest Assessment when processing data under Art. 6 Abs. 1 lit. f GDPR
At the end of March 2019, the German Data Protection Conference published a supplement to the position statement on the applicability of the Telemedia Act
SOS Data Breach – What to do?
Any irregularity in the processing of personal data may constitute a data breach or a data protection incident. The action to be
European Court of Justice – mandatory opt-in for cookies?
The Advocate General at the European Court of Justice (ECJ) Maciej Szpunar considers an opt-in for cookies when visiting a website for
The ePrivacy Regulation through the back door: tracking only with consent?
Even at the end of the first quarter of 2019, there is no agreement on the ePrivacy Regulation in sight at European
Brexit & data protection
New Brexit decision: The European Union and Great Britain recently agreed to postpone Brexit until at least 12 April. It is still
Fines under the GDPR – current status
The feared penalty wave after the GDPR came into force in May 2018 seemed not to occur. But now the grace period
Bavarian data protection authority identifies deficits on website tracking
The German Data Protection Conference (Datenschutzkonferenz DSK) has always had the opinion that consent for website tracking is required. In April 2018