The Philippine National Privacy Commission issued an immediate Cease and Desist Order against Tools for Humanity, halting all biometric data processing operations in the Philippines. The Order found that TFH's consent mechanisms were invalid and its processing of irreversible iris scans and facial images violated core data protection principles.
Read Full Article →The Irish Data Protection Commission has imposed a €530 million fine on TikTok Technology Limited for unlawfully transferring European user data to China without adequate safeguards. This landmark ruling establishes strict standards for data exporters dealing with jurisdictions presenting surveillance risks.
Read Full Article →Today marks the tenth anniversary of the CJEU's landmark Schrems ruling that invalidated the Safe Harbour framework. The decision fundamentally reshaped EU-US data transfers and established the "essentially equivalent" test for adequacy determinations, affirming that national data protection authorities retain independent oversight powers even where the European Commission has issued an adequacy finding.
Read Full Article →The French Data Protection Authority (CNIL) has imposed substantial monetary sanctions totaling €325 million against Google LLC and Google Ireland Limited in a landmark enforcement action addressing systematic violations of cookie consent requirements and electronic prospecting regulations.
Read Full Article →