Following the failed Safe Harbor Agreement (2015, Schrems I ruling) and the Privacy Shield (2020, Schrems II ruling), the EU officially brought a new data protection agreement with the US into force on 10 July 2023 with the Privacy Shield 2.0 and subsequently intensified negotiations between Switzerland and the US on a similar framework. With […]
A person requested information from a company by email about all the data stored about him in written form. The company then sent the individual an overview of the digitally processed data – by unencrypted email. In addition, the person’s stored personal data was forwarded to the works council without his consent. The individual also […]
How small and medium-sized companies can easily protect themselves against data protection mishaps Small and medium-sized companies generally have very limited resources for data protection and are also unable to deploy their own specialists for this topic. But how can I still protect myself against expensive legal disputes and data protection violations under the GDPR […]
A company does not have much time to respond to data protection requests. If a former applicant wants to know whether their data has been stored, this must be answered “without delay”. According to the DPA and GDPR, a request for information from an employer must be answered immediately, and in any case within one […]
According to the Data Protection Act, companies are required to securely delete personal data of customers, but also of employees. This requires a concept according to which the deletions can be carried out in compliance with the Data Protection Act. Since this often involves various applications and databases, a concept should be in place that […]
In Switzerland as well as in Germany and France, Microsoft 365 in particular is currently being criticised by data protection authorities. Last November, for example, the French Ministry of Education banned the use of the free Microsoft 365 offerings in schools on the grounds that they would violate the European General Data Protection Regulation (EU […]
The Data Privacy Framework – or Privacy Shield 2.0 – is the third attempt at a data protection agreement between the EU and the US, following the Safe Harbor scheme and the Privacy Shield. According to the European Data Protection Regulation EU-DSGVO, this new regulation is intended to ensure the protection of personal data transferred […]
The use of Google Analytics for the evaluation of access and user behaviour on websites continues to enjoy great popularity. But what about data protection? Can I continue to use this analysis tool without any problems? The answer is: No! After the ruling of the European Court of Justice in July 2020 on the invalidity […]
It is now known that violations of the European General Data Protection Regulation (GDPR) will be punished with fines by the data protection authorities of the EU member states: The fines can amount to up to 20 million EUR, or up to 4 percent of the global annual turnover. Up to now, it has been […]