Filter by content type:
Filter by related issues:
Filter by related legal case
We're taking part in Copyright Week, a series of actions and discussions supporting key principles that should guide copyright policy. Every day this...
... honoring such requests . Even EU citizens covered by the GDPR will need to request the deletion of their entire ...
ContentsExecutive SummaryBreaking it Down: What Does Comprehensive Data Privacy Legislation Look Like?Sketching the Landscape: What Real Privacy...
... passage of both the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). With ...
For many years now, EFF has argued that pervasive online behavioral surveillance, which powers the exploitative data broker industry as well as some...
... is, of course, not Meta’s choice. They sidestepped the GDPR using Terms of Service trickery for as long as they ... announcement , recent court interpretations of the GDPR, as well as the incoming Digital Markets Act (DMA), have ... a $1.3 billion fine already levied against it for another GDPR violation). Opt-in consent to collect, retain, ...
Document
| June 14, 2023 - 1:54pm PDT
This document collects EFF's "...
Esta é a terceira parte de uma série em andamento de cinco partes. A primeira parte, a introdução, é aqui. A segunda parte, sobre a quebra de...
... da UE. O Regulamento Geral de Proteção de Dados (GDPR) da União Europeia proíbe a vigilância para fins de ...
The net’s long decline into “five giant websites, each filled with screenshots of the other four” isn’t a mystery. Nor was it by any means a forgone...
... Existing data-protection laws like the CCPA and GDPR already require online service providers to turn over ...
Document
| April 27, 2023 - 2:05pm PDT
In a preliminary victory in the continuing fight against privacy-invasive software that “watches” students taking tests remotely, a French...
... by the EU’s General Data Protection Regulation (GDPR) for processing people’s personal data. Under the GDPR, processing of personal data must be authorized by law, ... had no lawful basis among those provided for by the GDPR and was disproportionate to the intended purpose, i.e. ...
ContentsIntroduction1. An Overview of QDTD Reports 1.1 Methodology and Main Common Criteria 1.2 Highlights of Achievments and Gaps 1....
... enforcement of the EU General Data Protection Regulation (GDPR) and the related Spanish Organic Law 3/2018, indicated ... Model , primarily based on the compliance with the EU GDPR. ADC's report also identified which telecom companies ... the legislation. In a recent wave inspired by the EU’s GDPR, countries like Brazil, Panamá, and Ecuador finally ...
Argentinian telecommunications providers have made strides in their commitments to protecting users’ data privacy, but the gains are uneven—they are...
... Governance Model based mainly on compliance with the EU GDPR, and is the only featured ISP that reported on how the ...
... Consumer Privacy Act (CCPA) and the now well-known GDPR. At its core, it works like DNT: a user’s browser ...
Targeted advertising’s days may be numbered. The Wall Street Journal and Reuters report that the European Data Protection Board has ruled that Meta...
... European Union’s General Data Protection Regulation ( GDPR ). This is a big step in the right direction: voluntary ... to target ads. This sleight of hand takes advantage of the GDPR concept of “ contractual necessity ,” in which the GDPR allows data processors to collect and use information as ...
Privacy and online free expression are once again under threat in India, thanks to vaguely worded cybersecurity directions—promulgated by India’s...
... from detection—compared to 72 hours under the EU’s GDPR to notify data breaches—an onerous requirement for ...
Document
| November 29, 2022 - 12:57pm PST
Published in CPI TechREG Chronicle, November 2022 Edition. Posted with permission.
Document
| November 21, 2022 - 12:25pm PST
Spanish Internet Service Providers (ISPs) continue to fall short of robust transparency about their data protection and user privacy practices, with...
... Spain’s data protection legislation (which incorporates GDPR obligations). They have also fallen short of other parameters that build on GDPR's transparency rules for user data processing. For ...
This policy was in effect from May 25, 2018 to Jul 1, 2022. You can view our current policy here.
(Note that EFF's Technology Projects, such as...
(Note that EFF's Technology Projects, such as...
... we have entered into General Data Protection Regulation (GDPR) compliant Data Protection Addendums with third-parties ...
EFF-Austin, a local organization in the Electronic Frontier Alliance, (not EFF) will host this event:
GDPR – Rewriting The Rules...
... Frontier Alliance, (not EFF) will host this event: GDPR – Rewriting The Rules Of Data Privacy From the ... like it or not, the General Data Protection Regulation (GDPR) affects you and your employer or company even if you ... or a legal professional, you should be ready to handle GDPR and be familiar with how it has already impacted data ...
Over the past few years, data brokers and federal military, intelligence, and law enforcement agencies have formed a vast, secretive partnership to...
... analysis, and right-to-know requests through laws like GDPR have revealed relationships between a handful of apps ... Martin Gundersen of NRK Beta filed requests under the GDPR’s Right to Know in order to trace how data about his ...
The executive body of the European Union published today a legislative proposal (text) that, if it became law, would be a disaster for online privacy...
... the adoption of the General Data Protection Regulation, or GDPR. This new proposal suggests the EU may head in a ...
Computer scientists often build algorithms with a keen focus on “solving the problem,” without considering the larger implications and potential...
... little bit in that direction slowly but surely. Laws like GDPR, CCPA, they're trying to slowly nudge us in this ...
Document
| March 4, 2022 - 12:55pm PST
Amicus Brief
European Court of Human Rights
Hurbain v. Belgium
Democracies are in many ways like the internet. In both cases, it may take a thousand cuts to demolish their foundation, yet each cut contributes...
... that such orders should be issued in compliance with the GDPR and respect the prohibition of mandated monitoring, we ...
Lawmakers looking for a starting place on privacy legislation should pass on The Uniform Law Commission’s Uniform Personal Data Protection Act (UPDPA...
... while the European General Data Protection Regulation (GDPR) covers both government and private entities, many state ...
Brazil’s biggest internet connection providers continue to make strides towards better protection of customer data and greater transparency about...
... to Brazil’s new law, the EU General Data Protection Act (GDPR)-inspired regulation that took effect last year. Oi and ...
Indonesia’s Constitutional Court dealt another blow to the free expression and online privacy rights of the country’s 191 million internet users,...
... States. The EU’s General Data Protection Regulation (GDPR) does not allow companies to disclose data voluntarily ...
Last year, the EU introduced the Digital Services Act (DSA), an ambitious and thoughtful project to rein in the power of Big Tech and give European...
... by the EU’s landmark General Data Protection Regulation (GDPR) - a benchmark for global privacy regulations - which ... and kept consistent with the E-Commerce Directive and the GDPR. Content removal regimes can be balanced with speech and ... on automated filtering obligations, respecting the GDPR and making a realistic assessment about the capabilities ...
EFF Legislative Intern Suzi Ragheb wrote this blog post
Antitrust has not had its moment since the 1911 breakup of Standard Oil. But this past year,...
Antitrust has not had its moment since the 1911 breakup of Standard Oil. But this past year,...
... EU, data privacy standards have been established by the GDPR in 2016, codifying it as a fundamental right with high ...
This is the third post in a series about recommendations EFF, EDRi, CIPPIC, Derechos Digitales, TEDIC, Karisma Foundation, and other civil society...
... biometric data than required by competing laws such as the GDPR , the EU Law Enforcement Directive , and the Council of ...
EFF has joined European Digital Rights (EDRi), the Samuelson-Glushko Canadian Internet Policy & Public Interest Clinic (CIPPIC), and other civil...
Document
| June 30, 2021 - 10:08am PDT
Document
| June 15, 2021 - 2:08pm PDT
In Privacy Without Monopoly: Data Protection and Interoperability, we took a thorough look at the privacy implications of various kinds of...
... actually have. The General Data Protection Regulation (GDPR), a powerful , far-reaching , and comprehensive (if ... of interoperability, prompting two questions: Does the GDPR mean that the EU doesn’t need interoperability in order to protect Europeans’ privacy? And Does the GDPR mean that interoperability is impossible, because there ...
Virtual worlds are increasingly providing sophisticated, realistic, and often immersive experiences that are the stuff of fantasy. You can enter them...
... put our fingers on. Data protection laws, like the GDPR, require that personal data collected for a specific ...
Special thanks to former legal intern Hinako Sugiyama, who was a lead co-author of this post.
Technology users around the world are increasingly...
Technology users around the world are increasingly...
... data under the EU’s General Data Protection Regulation (GDPR) refers to things that are "online identifiers." GDPR guidelines specifically mention that cookie identifiers ...
On 15 Dec 2020, the European Commission released a draft of the Digital Services Act (DSA), which will modernize the backbone of the EU’s Internet...