The Spanish Data Protection Agency (AEPD) and the public television program "Big Band Clan" (from Clan channel) are launching a campaign to promote good Internet practices among youngsters, including videos highlighting the value of privacy, such as "Beware of what you share", or "Beware the information you share with strangers".
The German intelligence service BND illegally collected and stored mass surveillance data and has to delete those data immediately. This is one of the conclusions of a classified report of the German Federal Data Protection Commissioner that German digital rights blog Netzpolitik.org published. In her report, the Commissioner criticises serious legal violations and a massive restriction of her supervision authority.
Several fitness wristbands violate Norwegian and European consumer and privacy legislation. The Norwegian Consumer Council is submitting a formal complaint against four companies to the Norwegian Data Protection Authoritiy and the Consumer Ombudsman.
The Spanish DPA (AEPD) issued a fine for using cookies without the informed consent of the users. The AEPD considers that Lolabits.es used data recovery storage devices (DARDs) or cookies illegally and has therefore decided to issue a fine of 5,000 euros. The complaint against the web was filed in February 2016 by Agedi, AIE, Cedro, Egeda, Fedicine and SGAE for violation of the Data Protection Act (LOPD).
The French Data Protection Authority announced the adoption of two new decisions, Single Authorizations AU-052 and AU-053, that will now cover all biometric access control systems in the workplace. These two new decisions repeal and replace the previous biometric decisions adopted by the CNIL and lay down the CNIL’s new position on biometric systems used to control access to the premises, software applications and/or devices in the workplace. The CNIL’s new Single Authorizations AU-052 and AU-053 anticipate the application of the EU General Data Protection Regulation in May 2018. They take into account the principles of privacy by design and privacy by default, as well as the requirement to conduct data protection impact assessments, which data controllers will have to comply with by May 25, 2018.
A French state watchdog has called for the suspension of a database that could end up holding the biometric details of 60 million people. The aim of a single "mega-database" is to fight identity fraud and improve efficiency. But there are fears the database could be abused not only by hackers but by state intelligence too.
The national digital council calls upon the Government to cancel the setup of the mass ID database and consider alternative means which are more moderate and respectful of human rights. See more details here.