ePrivacy GmbH

📢 Webinar-Alert: Datenschutzzertifikate nach Art. 42 DSGVO – Aktueller Überblick und Einsatzmöglichkeiten Unser Geschäftsführer und Gründer Prof. Bauer hält am 2. Juli um 13 Uhr bei der Stiftung Datenschutz einen Vortrag zu staatlichen Datenschutzsiegeln. Die Stiftung Datenschutz, 2013 von der Bundesregierung gegründet, hat es sich zur Aufgabe gemacht, den Datenschutz an den Schnittstellen zwischen Politik, Aufsichtsbehörden, Wirtschaft, Wissenschaft und Gesellschaft zu fördern. In diesem Webinar erhalten Sie einen umfassenden Überblick über den aktuellen Stand der Datenschutz-Zertifikate nach Art. 42 DSGVO. 🔍 Inhalte des Webinars: 1️⃣ Anforderungen an Datenschutz-Zertifikate 2️⃣ Funktionsweisen von Datenschutz-Zertifikaten 3️⃣ Diskussion der Vor- und Nachteile 4️⃣ Vorstellung möglicher Alternativen 📅 Datum: 2. Juli 🕒 Zeit: 13:00 Uhr 💻 Ort: Online Die Teilnahme am Webinar ist kostenlos. Bei Interesse können Sie sich direkt über die Seite der Stiftung Datenschutz registrieren. 👉 Zur Anmeldung: siehe Kommentar Wir freuen uns auf Ihre Teilnahme! 🚀

Was ist das größte Risiko beim Einsatz von #KI? 🧠 Unternehmen sagen: #Datenschutzverstöße. Damit Deutschland bei der Technologie nicht den Anschluss verliert, braucht es vor allem mehr Klarheit und Sicherheit im Umgang mit den gesetzlichen Vorgaben. Genau hier setzt unser neuer #Praxisleitfaden „Künstliche Intelligenz und Datenschutz“ an. Er zeigt, wie KI im Unternehmen datenschutzkonform genutzt werden kann, welche Rechtsvorschriften es zu beachten gilt – und bietet detaillierte, praxisnahe Anleitungen und Beispiele. Wir bedanken uns bei unserem Arbeitskreis #Datenschutz für diese wichtige Publikation. Sie entstand unter Mitarbeit von Stefanie Bauer, Arnd Böken, Paul Breitbarth, Nadja Christe, Ph.D., Jonas von Dall'Armi, Susanne Dehmel, Nils Freymuth, MBA, Dr. Alexander Fritz, Markus Frowein, Ralf Herter, Dr. Inka Knappertsbusch, LL.M., Felix Kuhlenkamp, Tobias Messerschmidt, Petra Möritz, Paul Pink, Dirk Refflinghaus, Janine Richter, Lys Riemenschneider, René Schneider, LL.M., Jens Schreiber, Dr. Dr. Hans Steege, Isabelle Stroot, Florian Thoma, Jörn Wittmann und Susanna Wolf. 📑 Den gesamten Leitfaden gibt es als kostenlosen #Download unter ➡️ https://lnkd.in/ep7Tycrt

Privacy Updates in June 📆 📲 Updates on IAB Transparency & Consent Framework The Interactive Advertising Bureau (IAB) is responding to the recent judgement of the Court of Justice of the European Union (CJEU), which states that TC strings may be considered personal data under certain conditions. The TCF Steering Group has endorsed a new version of the framework to help the online marketing industry comply with the ePrivacy Directive and GDPR. 1️⃣ Legal basis for TC strings 2️⃣ Introducing Special Purpose 3 3️⃣ New UI requirements for CMPs 4️⃣ Deadlines 🗂️ Employee data protection The protection of employee data is crucial for every company. In response to the increasing need for consultation, the Hamburg Commissioner for Data Protection and Freedom of Information (HambBfDI) has published information focusing on applicant data protection and recruiting. The HambBfDI first addresses the legal basis and information obligations in employee data protection. It clarifies once again that inclusion in a talent pool is only possible with the applicant's consent and that any background checks conducted must adhere to the legal principles of employment law, meaning not all obtained information may be considered. 😱 Risks when implementing the „Recall“ feature With the launch of the new Copilot+PC computers, Microsoft introduced an innovative feature called "Recall", which continuously records the screen. It's essential to critically evaluate this feature, given the potential consequences of capturing and storing screen content containing sensitive information. In the current implementation, Recall saves data unencrypted in a SQLite database and stores screenshots in an easily accessible folder on the computer. This approach introduces significant security risks, as unencrypted data is susceptible to unauthorized access and misuse.

Warum sind Mitarbeiter eigentlich im Bereich des Datenschutzes zu schulen? Melden Sie sich gerne für unser nächstes Webinar an. 📆 19. Juni 2024, 16:30 Uhr

We're #hiring a new Consultant Data Protection (m/w/d) in Hamburg. Apply today or share this post with your network.

Privacy Updates in April 📆 🥇 Update: Data Protection Seals One aspect in data protection that is regularly discussed is the benefit of a "state" data protection certification according to art. 42 and 43 GDPR. These seals are intended to be awarded by a state-accredited certification body and serve as official state-recognized GDPR compliance seal for data processors or controllers. Since the beginning of the year, Germany has one state-accredited certification body. The demand is still low because the certification process is highly complex and time-consuming. We will collaborate with operators of state certification bodies and bring in our consulting expertise. 🍪 ECJ ruling on tracking The ECJ has issued another important ruling in the proceedings surrounding the common TCF industry standard for tracking consent mechanisms in websites and apps. Specifically, it has now decided that the consent signals, known as Transparency and Consent Strings, constitute personal data under the GDPR and that the industry association IAB Europe is a (joint) controller under EU data protection law when processing them. The ruling is also seen as a further clear signal from the ECJ that both the understanding of controllership and the definition of personal data must be interpreted extremely broadly data under EU protection law – it therefore remains difficult to "escape" the reach of the GDPR. 🤖 AI Act The European Parliament approved the AI Regulation in March. However, a consolidated text is not yet available. It is expected to be available in the coming weeks. The AI Regulation will become effective 20 days after it’s publication in the Official Journal, while the regulations will take effect in stages.

🇪🇺 Members of the European Parliament (MEPs) have just voted to adopt the EU AI Act, "the world’s first comprehensive AI law". The law was strongly supported by MEPs with 523 votes in favor and only 46 against it. 🤖 The risk-based approach laid out by the AI Act is on it's way to becoming EU law soon. https://lnkd.in/dpnByd7A

Data Protection Updates in March 📆 ⚖️ IAB TCF - TC String Ruling The Court of Justice of the European Union (CJEU) confirms in its judgement that the TC String when associated with an identifier (i.e., IP address) contains personal data as of GDPR . The TC String is a digital signal capturing information about user preferences when they interact with a CMP. Furthermore, IAB Europe acts as a joint controller for the processing of TC Strings. 🎯 Google Consent Mode Google Consent Mode is now obligatory for all Google Analytics users, necessitating the use of a Google-certified CMP. This complies with the Digital Markets Act (DMA), which mandates gatekeepers like Google to acquire separate consent from website visitors for personalized advertising. 🚧 Italian DPA & Chat GPT After an extensive investigation lasting nearly a year, the Italian DPA has found ChatGPT to be in continued breach of European data protection regulations. The authority's scrutiny revealed inadvertent exposure of certain users' messages and payment details, leading to the suspension of ChatGPT.