The Cat Herder

This is the last Cat Herder of 2019. Time permitting, there might be a special year in review type th   December 15 · Issue #64 · View online This is the last Cat Herder of 2019. Time permitting, there might be a special year in review type thing before the end of the year. If the time gods don’t permit then that will be rolled into the first issues of the new year. Thanks to all of you for reading and have a wonderful holiday period whatever you’re doing. 😼 Lives ‘at risk’ due to scant information, first responders say www.irishtimes.com – Share Dublin Fire Brigade cites data concerns for lack of contact with crisis health volunteers Here’s Article 6.1(d) of the GDPR. processing is necessary in order to protect the vital interests of the data subject or of another natural person — Simon McGarr @Tupp_Ed D’ye know what we haven’t heard since the DPC served its enforcement notice re PSC cards? We haven’t heard anyone from Gov explaining the incredibly strong legal basis the Minister said would prove the DPC wrong. 2:23 PM - 14 Dec 2019 They definitely did. First this - ‘How Hackers Are Breaking Into Ring Cameras’ Then this - ‘Inside the Podcast that Hacks Ring Camera Owners Live on Air’ There truly is a podcast for everything these days. In related news, the listening devices are still listening. It could, it really could. There’s an election coming up very soon in Ireland. The chances that the political parties will turn out to be trustworthy and respectful guardians of personal data are, well, small. The letter cites breaches under the Data Protection Act 2018, saying the “imminence of the election” and “heightened processing activities” necessitated all parties to stop processing immediately. It gave the parties a deadline of 6pm on Friday 6 December to comply. When contacted by the Guardian, none of the parties gave any indication that they intended to do so. Campaigners threaten UK parties with legal action over data processing | Politics | The Guardian www.theguardian.com – Share Open Rights Group issue urgent notice to Labour, Conservatives and Lib Dems, representing three individuals The EDPB adopted three new documents during its December Plenary. An Article 64 Opinion from the ICO on accreditation requirements for codes of conduct monitoring bodies, a response to a request for guidance on net neutrality from the Body of European Regulators for Electronic Communications (BEREC) and guidelines on the criteria of the Right to be Forgotten in the search engines cases under the GDPR, which is open for public consultation until early February 2020. — The German Federal Data Protection Supervisory Authority fined a telecoms company €9.55 million for breaches of Article 32 of the GDPR. A second telecoms service provider was fined €10,000 for failing to appoint a Data Protection Officer. Original announcement (BfDI website, in German). Google Translate version. — The Data Protection Commission published a festive edition of ‘Does the GDPR really say that?’. “All the DPC wants for Christmas is for people to know that consent is not the only possible legal basis for processing personal data” epicenter.works @epicenter_works Austrias constitutional court just declared government spyware and indiscriminate license plate mass-surveillance as unconstitutional and invalid! 🎊🎉🥂💪 We fought these surveillance laws for years. Today is a good day for privacy! #governmentSpyware #stateTrojan #stateHacking 9:49 AM - 11 Dec 2019 — On a similar note, the CJEU issued a judgement on video surveillance in shared accommodation spaces during the week. There’s some good commentary about what this did and didn’t cover on the EU Law Analysis blog. “The importance of consumer and privacy organisations encouraging enforcement by continuing investigations and taking cases to court was considered necessary.” The Trans Atlantic Consumer Dialogue and the Heinrich-Böll-Stiftung Brussels European Union published a great report called ‘Privacy in the EU and US: Consumer experiences across three global platforms’ which examines Amazon, Netflix and Spotify’s data protection practices. “So perhaps the more urgent need is to share ideas, instead of rushing to share people’s data.” Newly appointed European Data Protection Supervisor Wojciech Wiewiórowski has a good blog post on data sharing. “Executives in the online publishing industry speaking with The Information say that Apple has been “stunningly effective” with its goal of Intelligent Tracking Prevention stopping websites from knowing what users are doing on the web” writes Michael Potuck for 9to5Mac. —— Endnotes & Credits The elegant Latin bon mot “Futuendi Gratia” is courtesy of Effin’ Birds. As always, a huge thank you to Regina Doherty for giving the world the phrase “mandatory but not compulsory”. The image used in the header is by Krystian Tambur on Unsplash. Any quotes from the Oireachtas we use are sourced from KildareStreet.com. They’re good people providing a great service. If you can afford to then donate to keep the site running. Digital Rights Ireland have a storied history of successfully fighting for individuals’ data privacy rights. You should support them if you can. Find us on the web at myprivacykit.com and on Twitter at @PrivacyKit. Of course we’re not on Facebook or LinkedIn. If you know someone who might enjoy this newsletter do please forward it on to them. Did you enjoy this issue? In order to unsubscribe, click here. If you were forwarded this newsletter and you like it, you can subscribe here. Powered by Revue Privacy Kit, Made with 💚 in Dublin, Ireland

This is the last Cat Herder of 2019. Time permitting, there might be a special year in review type thing before the end of the year. If the time gods don’t permit then that will be rolled into the first issues of the new year. Thanks to all of you for reading and have a wonderful holiday period whatever you’re doing.

😼

Dublin Fire Brigade cites data concerns for lack of contact with crisis health volunteers

Here’s Article 6.1(d) of the GDPR.

—

First this - ‘How Hackers Are Breaking Into Ring Cameras’

Then this - ‘Inside the Podcast that Hacks Ring Camera Owners Live on Air’

There truly is a podcast for everything these days.

In related news, the listening devices are still listening.

There’s an election coming up very soon in Ireland. The chances that the political parties will turn out to be trustworthy and respectful guardians of personal data are, well, small.

Open Rights Group issue urgent notice to Labour, Conservatives and Lib Dems, representing three individuals

The EDPB adopted three new documents during its December Plenary. An Article 64 Opinion from the ICO on accreditation requirements for codes of conduct monitoring bodies, a response to a request for guidance on net neutrality from the Body of European Regulators for Electronic Communications (BEREC) and guidelines on the criteria of the Right to be Forgotten in the search engines cases under the GDPR, which is open for public consultation until early February 2020.

—

The German Federal Data Protection Supervisory Authority fined a telecoms company €9.55 million for breaches of Article 32 of the GDPR.

A second telecoms service provider was fined €10,000 for failing to appoint a Data Protection Officer.

Original announcement (BfDI website, in German).

Google Translate version.

—

The Data Protection Commission published a festive edition of ‘Does the GDPR really say that?’.

—

On a similar note, the CJEU issued a judgement on video surveillance in shared accommodation spaces during the week. There’s some good commentary about what this did and didn’t cover on the EU Law Analysis blog.

• “The importance of consumer and privacy organisations encouraging enforcement by continuing investigations and taking cases to court was considered necessary.” The Trans Atlantic Consumer Dialogue and the Heinrich-Böll-Stiftung Brussels European Union published a great report called ‘Privacy in the EU and US: Consumer experiences across three global platforms’ which examines Amazon, Netflix and Spotify’s data protection practices.
• “So perhaps the more urgent need is to share ideas, instead of rushing to share people’s data.” Newly appointed European Data Protection Supervisor Wojciech Wiewiórowski has a good blog post on data sharing.
• “Executives in the online publishing industry speaking with The Information say that Apple has been “stunningly effective” with its goal of Intelligent Tracking Prevention stopping websites from knowing what users are doing on the web” writes Michael Potuck for 9to5Mac.

——

Endnotes & Credits

• The elegant Latin bon mot “Futuendi Gratia” is courtesy of Effin’ Birds.
• As always, a huge thank you to Regina Doherty for giving the world the phrase “mandatory but not compulsory”.
• The image used in the header is by Krystian Tambur on Unsplash.
• Any quotes from the Oireachtas we use are sourced from KildareStreet.com. They’re good people providing a great service. If you can afford to then donate to keep the site running.
• Digital Rights Ireland have a storied history of successfully fighting for individuals’ data privacy rights. You should support them if you can.

Find us on the web at myprivacykit.com and on Twitter at @PrivacyKit. Of course we’re not on Facebook or LinkedIn.

If you know someone who might enjoy this newsletter do please forward it on to them.