Week in Review
The French data protection authority (CNIL) continue to take action against organisations that do not allow internet users to reject cookies as easily as they accept them.
On 14 December 2021, the data protection authority published that it had issued approximately 30 new compliance orders against companies for non-compliance with its rules on cookies and similar technologies.
Since May 2021, the CNIL has issued over sixty formal notices to private and public entities across a wide range of industries to comply with the law.
This is the result of recent controls that allowed the CNIL to note that:
– cookies subject to consent were automatically placed on the user’s terminal before acceptance by the user;
– information banners are still non-compliant; and
– cookies subject to consent are still deposited after the user’s refusal.
This thirty-or-so formal notice applies to corporate, national, and international entities, as well as public organisations, that engage in cookie-related practises that violate cookie regulations. They’ve got a month to get in line.
Top Stories and Updates
EU Data protection adviser calls for ban on tracking ads
This week, the European Data Protection Commission (EDPB) issued a direct call to EU parliamentarians to implement tighter rules on targeted advertising in favour of options that do not need tracking and profiling of internet users. Furthermore, the EDPB statement contends that kid profiling for advertisement targeting should be “completely banned.” Read more here.
Grindr fined €6.5M for selling user data without consent
On 15 December 2021, the Norwegian data protection authority (Datatilsynet) fined Grindr €6.5M for violating the General Data Protection Regulation (GDPR) because Grindr disclosed sensitive data about its users to third parties for behaviour-based marketing without a legal basis and violating the GDPR rules on consent. Read more here.
Clearview Al to remove face scan data on voilating GDPR
Clearview AI, a controversial face recognition company that has collected a database of approximately 10 billion photos from the internet in order to market an identity-matching service to law enforcement, has received another order to remove people’s data and violating GDPR. The CNIL also sends a formal notice to discontinue its “unlawful processing” and erase user data within two months of the breach finding. Read more here.
CNIL updates GDPR Guide for web and app developers
The French data protection authority (CNIL) published a second version of its guideline on best practises for web and app developers. The updated book includes new thematic guidance sheets as well as code samples to illustrate how developers can comply with GDPR. The new content also relates to the implementation of the restrictions on cookies and other trackers, as well as audience measurement solutions. Read more here.
Seers Cookie Consent Management Platform helps organisations with compatible, compliant, and widely used cookie solutions to protect users privacy under GDPR, CCPA & EU Cookie Laws.
Start now for free and try it out here: Register
Request a free demo.
