On 13 December 2023, it became known that Limburg.net had been the target of a cyber attack. This data leak is said to have affected thousands of people. The DPA announced today that it has been following this case closely since December 2023. The DPA has learned that some time ago the public prosecutor’s office sent a letter to victims of the Limburg.net data leak. This letter apparently mentions the DPA as the competent body for handling this case. …
Read moreBELGIAN SUPERVISORY AUTHORITY: Data processing for “legitimate interests”: the EDPB publishes its guidelines
The EDPB (or “European Data Protection Board”) published its guidelines on the lawful criteria for processing personal data for “legitimate interest” under Article 6(1)(f) of the General Data Protection Regulation (GDPR) on 8 October 2024. Article 6(1)(f) of the Regulation is one of six possible legal grounds for the lawful processing of personal data, three of which must be met cumulatively: In its guidelines, the EDPB proposes assessment criteria and a case-by-case approach, with a series of concrete examples,…
Read moreBELGIAN SUPERVISORY AUTHORITY: GBA takes measures against Mediahuis for unlawful use of cookie banners on press sites
The GBA imposes penalty payments on Mediahuis for a number of infringements in the use of cookie banners on 4 press sites (De Standaard, Het Belang van Limburg, Het Nieuwsblad, Gazet van Antwerpen). The file The GBA has received complaints from a Dutch citizen, represented by NOYB for 4 Mediahuis press sites regarding the unlawful use of cookie banners. The complainant indicates through his mandated representative (NOYB) that the press sites do not provide a “refuse all” button on the…
Read moreBELGIAN SUPERVISORY AUTHORITY: EDUbox Data and Privacy: the balance between sharing and protecting
Today, VRT is launching a new ‘EDUbox’ on the topic of data and privacy, in collaboration with a number of key players in the field, including the Data Protection Authority through its “I decide” project. The EDUbox Data and Privacy is an interactive teaching package that informs and raises awareness among secondary school students about the potential risks of data exposure. You share a photo on Instagram, log onto a public Wi-Fi network, scroll a bit on TikTok or enter…
Read more