Facial recognition in school renders Sweden’s first GDPR fine

The Swedish DPA has fined a municipality 200 000 SEK (approximately 20 000 euros) for using facial recognition technology to monitor the attendance of students in school.

FTC Approves Final Consent Order Settling Charges That Background Screening Company Falsely Claimed Compliance with EU-U.S. Privacy Shield Framework

Following a public comment period, the Federal Trade Commission has approved a final consent order settling charges that a background screening company falsely claimed to be in compliance with the EU-U.S. and Swiss-U.S. Privacy Shield frameworks.

ICO informs on Data minimisation and privacy-preserving techniques in AI systems

Reuben Binns, our Research Fellow in Artificial Intelligence (AI), and Valeria Gallo, Technology Policy Adviser, discuss some of the techniques organisations can use to comply with data minimisation requirements when adopting AI systems. 

Swedish Data Inspection Authority first penalty for breach of GDPR

The Swedish Data Inspection Authority said it has imposed its first penalty for breach of GDPR, to a school in Skelleftea that had been trialling facial recognition to register pupil attendance. The authority scrutinised the three-week pilot 22 pupils and found that the school board's handling of personal information did not comply with GDPR. The fine amounts to SEK 200,000.

The EU privacy watchdog loses Giovanni Buttarelli

It is with the deepest regret that we announce that the EDPS has lost Giovanni Buttarelli, the European Data Protection Supervisor. Giovanni passed away surrounded by his family in Italy, on the night of the 20 August 2019.