The CNIL fined DOCTISSIMO €380,000 because it failed to comply with obligations under the GDPR, in particular obtaining consent of individuals to the collection and use of their health data, and because it didn’t comply with the rules on cookies. Background information Following a complaint by the PRIVACY INTERNATIONAL association, the CNIL carried out four…
Category: Breaches
Decision by the Austrian SA against Clearview AI Infringements of Articles 5, 6, 9, 27 GDPR
Summary of the Decision Origin of the case Following a complaint the Austrian SA (DSB) issued a decision against the facial recognition company Clearview AI on the 10th of May 2023. The company reportedly owns a database including over 30 billion facial images from all over the world, which are extracted from public web sources (media…
Exclusive: Google accused of breaking European privacy law by hoarding personal data of potential job candidates for years
David Meyer reported: When Mohamed Maslouh, a London-based contractor, was assigned to enter data into Google’s internal gHire recruitment system last September, he noticed something surprising. The database contained the profiles of thousands of people in the EU and U.K. whose names, phone numbers, personal email addresses and résumés dated back as far as 2011….
Ovulation Tracking App Premom Will be Barred from Sharing Health Data for Advertising Under Proposed FTC Order
The Federal Trade Commission charged that the developer of the fertility app Premom deceived users by sharing their sensitive personal information with third parties, including two China-based firms, disclosed users’ sensitive health data to AppsFlyer and Google, and failed to notify consumers of these unauthorized disclosures in violation of the Health Breach Notification Rule (HBNR)….