27 results EU Advocate General balances data protection rights against trade secrets in algorithmic credit scoring case On 16 march 2023, Advocate General Pikamäe issued his opinion on the scope of data subject rights in the context of algorithmic credit scoring. Three months after the UBO-case – Where do we stand and what’s next? This article looks at the aftermath of the UBO case invalidating the general access to UBO data, and looks at what lies ahead for companies and member states, and specifically at Belgium's recent regulatory action. Compensation after infringement of the General Data Protection Regulation: European developments The General Data Protection Regulation (GDPR) is one of the most significant development in the European data strategy in the past years and is continuously evolving. Een inbreuk op de AVG geeft niet zonder meer recht op schadevergoeding: Europese ontwikkelingen De Algemene Verordening Gegevensbescherming (de “AVG”) is één van de meest ingrijpende ontwikkelingen binnen de Europese datastrategie van de afgelopen jaren en nog steeds volop in ontwikkeling. To what extent does the WAMCA procedure allow for collective actions for damages due to breaches of the GDPR? Whether it is possible to claim collective damages for an alleged breach of the GDPR by means of WAMCA proceedings has been a recent question within the mass damages practice. What information on this topic can be found in legislation, case law and litera In hoeverre leent de WAMCA-procedure zich voor massaschadeclaims op grond van de AVG? Binnen de massaschadepraktijk speelt al langer de vraag in hoeverre het mogelijk is om middels een WAMCA-procedure schadevergoeding te vorderen voor een vermeende inbreuk op de AVG. TMT seminar series 2024 Following our successful TMT seminar series in 2023, our TMT team is happy to announce five new seminars taking place in 2024. Please find an outline of the seminars in the article below. Jan-Jaap Koningsveld strengthens TMT/IP practice Stibbe Amsterdam Stibbe Amsterdam is pleased to announce the expansion of its TMT/IP practice with the appointment of Jan-Jaap Koningsveld as counsel. Jan-Jaap Koningsveld Counsel Amsterdam TenderNed en Klic-viewer: innoveren met overheidsinformatie kan een riskante onderneming zijn Aanbieders van online-diensten en applicaties kunnen niet altijd rekenen op bescherming van hun marktpositie op basis van de staatssteun- en mededingingsregels. Dit blijkt uit een onlangs gewezen uitspraak van de hoogste Unierechter. NFTs: New legal challenges on the horizon In this blog Maciek Bednarski, Annemijn Witkam and Roderik Vrolijk explain what NFTs are and describe some of the legal challenges they will bring about. Digital Law Up(to)date: The use of the free version of Google Analytics violates the GDPR The Datenschutzbehörde, the Austrian Data Protection Authority (DPA), found that the use of the free version of Google Analytics violated some provisions of the GDPR, and specifically the rules on international data transfers. Key takeaways and insights from the EDPB Pseudonymisation Guidelines On 16 January, 2025, the EDPB released its guidelines on pseudonymisation. These guidelines are not yet finalized, as they remain open for public consultation until 28 February. In this blogpost, we highlight the key takeaways. Belgian data protection authority fines hospital after data breach for taking insufficient data protection measures In 2021, a Belgian hospital fell victim to a ransomware attack that disrupted critical operations and compromised the personal data of 300,000 people. As a result, the Belgian data protection authority imposed a fine of €200,000 three years later. One year of Schrems II: a state of affairs for international data transfers International data transfers have been the subject of intense debates ever since the Court of Justice issued its landmark judgement of Schrems I, on 6 October 2015. Kamerdebat over digitalisering van de overheid: aandacht voor bescherming burger vereist Op 24 september 2019 zijn er vier moties in stemming gebracht én aangenomen door de Tweede Kamer. De moties hebben als gemeenschappelijke deler dat ze in het teken staan van de steeds groter wordende digitalisering bij de overheid. Can you rely on your contract to process personal data? The EDPB adopted on 9 April 2019 a set of draft guidelines on personal data processing under Article 6(1)(b) GDPR in the context of providing online services to data subjects. ICO to impose record-breaking fines for inadequate security measures and data breaches Though the European data protection authorities have taken their time in enforcing the GDPR two announcements by the ICO in the UK regarding proposed fines for British Airways and Marriott demonstrate that large fines are about to start landing regularly. Pagination Current page 1 Page 2 Next page
EU Advocate General balances data protection rights against trade secrets in algorithmic credit scoring case On 16 march 2023, Advocate General Pikamäe issued his opinion on the scope of data subject rights in the context of algorithmic credit scoring.
Three months after the UBO-case – Where do we stand and what’s next? This article looks at the aftermath of the UBO case invalidating the general access to UBO data, and looks at what lies ahead for companies and member states, and specifically at Belgium's recent regulatory action.
Compensation after infringement of the General Data Protection Regulation: European developments The General Data Protection Regulation (GDPR) is one of the most significant development in the European data strategy in the past years and is continuously evolving.
Een inbreuk op de AVG geeft niet zonder meer recht op schadevergoeding: Europese ontwikkelingen De Algemene Verordening Gegevensbescherming (de “AVG”) is één van de meest ingrijpende ontwikkelingen binnen de Europese datastrategie van de afgelopen jaren en nog steeds volop in ontwikkeling.
To what extent does the WAMCA procedure allow for collective actions for damages due to breaches of the GDPR? Whether it is possible to claim collective damages for an alleged breach of the GDPR by means of WAMCA proceedings has been a recent question within the mass damages practice. What information on this topic can be found in legislation, case law and litera
In hoeverre leent de WAMCA-procedure zich voor massaschadeclaims op grond van de AVG? Binnen de massaschadepraktijk speelt al langer de vraag in hoeverre het mogelijk is om middels een WAMCA-procedure schadevergoeding te vorderen voor een vermeende inbreuk op de AVG.
TMT seminar series 2024 Following our successful TMT seminar series in 2023, our TMT team is happy to announce five new seminars taking place in 2024. Please find an outline of the seminars in the article below.
Jan-Jaap Koningsveld strengthens TMT/IP practice Stibbe Amsterdam Stibbe Amsterdam is pleased to announce the expansion of its TMT/IP practice with the appointment of Jan-Jaap Koningsveld as counsel.
TenderNed en Klic-viewer: innoveren met overheidsinformatie kan een riskante onderneming zijn Aanbieders van online-diensten en applicaties kunnen niet altijd rekenen op bescherming van hun marktpositie op basis van de staatssteun- en mededingingsregels. Dit blijkt uit een onlangs gewezen uitspraak van de hoogste Unierechter.
NFTs: New legal challenges on the horizon In this blog Maciek Bednarski, Annemijn Witkam and Roderik Vrolijk explain what NFTs are and describe some of the legal challenges they will bring about.
Digital Law Up(to)date: The use of the free version of Google Analytics violates the GDPR The Datenschutzbehörde, the Austrian Data Protection Authority (DPA), found that the use of the free version of Google Analytics violated some provisions of the GDPR, and specifically the rules on international data transfers.
Key takeaways and insights from the EDPB Pseudonymisation Guidelines On 16 January, 2025, the EDPB released its guidelines on pseudonymisation. These guidelines are not yet finalized, as they remain open for public consultation until 28 February. In this blogpost, we highlight the key takeaways.
Belgian data protection authority fines hospital after data breach for taking insufficient data protection measures In 2021, a Belgian hospital fell victim to a ransomware attack that disrupted critical operations and compromised the personal data of 300,000 people. As a result, the Belgian data protection authority imposed a fine of €200,000 three years later.
One year of Schrems II: a state of affairs for international data transfers International data transfers have been the subject of intense debates ever since the Court of Justice issued its landmark judgement of Schrems I, on 6 October 2015.
Kamerdebat over digitalisering van de overheid: aandacht voor bescherming burger vereist Op 24 september 2019 zijn er vier moties in stemming gebracht én aangenomen door de Tweede Kamer. De moties hebben als gemeenschappelijke deler dat ze in het teken staan van de steeds groter wordende digitalisering bij de overheid.
Can you rely on your contract to process personal data? The EDPB adopted on 9 April 2019 a set of draft guidelines on personal data processing under Article 6(1)(b) GDPR in the context of providing online services to data subjects.
ICO to impose record-breaking fines for inadequate security measures and data breaches Though the European data protection authorities have taken their time in enforcing the GDPR two announcements by the ICO in the UK regarding proposed fines for British Airways and Marriott demonstrate that large fines are about to start landing regularly.