Fox Rothschild LLP (JD Supra France)
-
French Court: Use Of Vendor With U.S. Parent May Require Additional Security Measures
Even in the absence of a cross-border transfer of personal data from the European Union to a third country, if you are using a vendor that has a U.S. parent company, get ready to implement supplementary measures, says the French Conseil d'Etat in an interim decision...
-
France Offers Guide For Processing COVID-19 Related Data Under GDPR
France’s Data Processing Authority CNIL weighs in on Coronavirus and GDPR. Employers should NOT: •Collect in a systematic and generalized manner, or through individual inquiries and requests, information relating to the search for possible symptoms presented by an employee/agent and their relatives.
-
CNIL: Continuous, Systematic CCTV Surveillance At Schools Excessive
French Data Protection Authority CNIL has weighed in on CCTV surveillance in schools. CNIL received 25 complaints regarding systematic surveillance of students throughout their day, whether during their recess, during their lunch in the canteen or even during their class time.
-
CNIL, France’s Data Protection Authority, Releases Strategic Road Map
In a statement of its priorities over the next year, French data privacy regulator CNIL emphasizes the importance of a balanced approach to data protection regulation.
-
France Sanctions Google For Abusing Dominant Position In Search Advertising
The French Competition Authority has announced it imposed a sanction of €150 million on Google for abusing its dominant position in search advertising.
-
France Prohibits Use Of Facial Recognition Technology To Control School Entry
The French Data Protection Authority, CNIL, has prohibited the use of facial recognition to control entry into a school as disproportionate saying that alternative less intrusive means are available, such as badge control.
-
Ten Examples Of Data Processing Activities That Don’t Require A DPIA According To France’s CNIL
The French Data Protection Authority CNIL has issued guidance on types of data processing for which a Data Protection Impact Assessment (DPIA) is not required under GDPR: HR-related processing, not including profiling, for companies with under 250 employees.
-
French Regulator Fines Auto Insurance Company For Failing To Prevent Web Crawling
Web crawling and data protection: CNIL has issued a 180,000 EUR fine against a provider of automobile insurance policies for failure to adequately protect data in violation of GDPR, specifically citing disallowing web crawling as a way to protect personal data from wrongful access.
-
French Privacy Regulator Releases Long-Awaited Rules For Use Of Cookies
The French privacy regulator CNIL has released guidance on how to comply with the European Union’s General Data Protection Regulation (GDPR) when using cookies and other web tracking technologies that are an integral part of most companies' public-facing websites. The rules serve as a guide for any company that does business in Europe and controls or processes the personal data of EU individuals.
-
France: ‘C’ Is For Cookie, But Also For ‘Consent’
Cookies in the spotlight in France: Actual consent – in. Continued browsing – out. The French Data Protection Authority, CNIL, repealed its 2013 guidelines on cookies consent and announced upcoming cookies guidance will be published later this month (July).
-
CNIL Issues Data Protection Kit For Developers
The French Data protection authority, CNIL, has issued a “Developer Kit” setting forth best practices for data protection. Key takeaways: Before using a development tool, especially for personal data, read the conditions of use.
-
CNIL, The French Data Protection Authority, Lists Enforcement Priorities
Enforcement is coming – says CNIL, the French Data Protection Authority. CNIL published its enforcement priorities for 2019. CNIL will no longer refrain from enforcing new obligations imposed by GDPR, but it will continue to exercise judgment in the choice of corrective measures and will not resort to fines every time.
-
French Data Protection Authority Reports 32 Percent Increase In Complaints In 2018
The French Data Protection Agency CNIL recieved 11,077 complaints in 2018, up 32.5 percent compared to 2017. Other highlights from the CNIL 2018 report- CNIL carried out 310 investigations in 2018, of which 204 were onsite, 51 online and 51 on the basis of documentation.
-
French Data Authority CNIL Issues Guidance On Credit Card Data
The French Data Protection Authority, CNIL, issues guidance on credit card data in remote transactions: Merchants who collect credit card detail to facilitate a transaction, need the consent of their customers to keep their bank details beyond such transaction, to facilitate their subsequent purchases.
-
French Data Regulator Issues Guidelines For Sharing Data With Brokers, Business Partners
Sharing personal data with data brokers or other businesses partners? French regulator, CNIL, has new guidelines for you to follow.
-
French Data Protection Authority Issues Password Guidance
Keep your passwords close…and complex, and encrypted and unique, and ever-changing. In the wake of recent data breaches involving passwords, the French data protection authority, the CNIL, has published guidelines for adequate passwords.
-
Lessons From France’s “Right To Disconnect”
Summer is the time for vacations, and with that comes the stress of balancing work pressures while out of the office. Many employees prefer not to take vacations when the alternative is trying to conduct work from a cell phone on the beach. Maybe California can learn from France, and the recently publicized “right to disconnect”.