The sanctioning panel of the data protection authorized office has ordered Posti to pay a penalty of 2.4 million euros for a practice contrary to data protection regulations in the OmaPosti service. Posti had automatically created an electronic OmaPosti mailbox for customers without a separate request. The Data Protection Commissioner states that electronic services are a significant part of the digital society, and they must be implemented according to the rules. The Office of the Data Protection Commissioner investigated the…
Read moreLATVIAN SUPERVISORY AUTHORITY: What are the most common mistakes made in cookie banners?
In our Guidelines for the use of cookies on the website, we have already explained examples of good and bad practice for placing cookie banners or pop-up windows on organizations’ websites. Also, in the explanation ” What should I know about cookies”? ” we described in more detail the nature of cookies and the reasons for their processing. However, in practice we still come across websites that do not include cookie notices, do not function or are not set up as required. We have…
Read moreICELANDIC SUPERVISORY AUTHORITY: Opinion on the use of social media by political organizations for the 2021 parliamentary elections
Personal data protection has investigated the use of social media by political organizations for the 2021 parliamentary elections. In an opinion on that occasion, the processing of personal information is discussed in order to delineate target groups and direct marketing to them. The opinion covers the eight political organizations that had members of parliament elected in the elections, and its aim is to investigate whether political organizations have complied with the previous opinion of the Data Protection Authority on the…
Read moreDUTCH SUPERVISORY AUTHORITY: Holiday parks adjust use of facial recognition after investigation by Dutch DPA
The Dutch Data Protection Authority (Dutch DPA) has investigated 8 holiday parks that deploy facial recognition for giving access to swimming pools and playgrounds. It turned out that all holiday parks investigated broke the privacy law. For example, by not pointing out to their guests that they could also visit the swimming pool without subjecting themselves to facial recognition. Under pressure from the Dutch DPA, 7 of the parks investigated have adjusted their way of working, but 1 holiday park…
Read more