NOYB enforces your right to privacy everyday
My Privacy is None of Your Business
News
Second € 20 Mio Fine for Clearview AI
Jul 13, 2022 The company can no longer process biometric data of people in Greece and must delete all existing data.
One Month for European DPAs to decide Facebook's EU-US Data Transfers
Jul 07, 2022
UPDATE: Further EU DPA orders stop of Google Analytics
Jul 05, 2022 The Italian DPA (GPDP) has joined the consensus shared by the EDPS, as well as the French and Austrian DPA and has banned the use of Google Analytics (GA).
Sweden: Users are not party to their own privacy rights?
Jun 22, 2022 The Swedish DPA (IMY) refuses to take a decision on a GDPR complaint, claiming that the user is not a party to his own rights. Today, noyb filed an appeal.
No right to access your own location data? noyb files appeal against Spanish DPA
Jun 21, 2022 A customer made an access request to receive his location data which was refused by Virgin Telco. The AEPD sided with the company. noyb files appeal.
Statement on 4 Years of GDPR
May 24, 2022 When the GDPR became applicable on 25 May 2018, it was perceived as a watershed moment. The past 4 years have shown that a law alone does not change business models.
Open Letter on the Future of EU-US Data Transfers
May 23, 2022 As more and more details emerge, Max Schrems wrote an Open Letter on the announcement of a new EU-US data transfer framework.
UPDATE on noyb’s 101 complaints: Austrian DPA rejects “risk based approach” for data transfers to third countries
May 02, 2022 While some DPAs thoroughly investigated noyb's 101 cases on EU-US Data Transfers, others just started dismissing cases for questionalbe reason. Is the coordinated effort promoted by the EDPB failing?
Political data breach in Malta: C-Planet refuses right to access and information
Apr 29, 2022 IT-company C-planet leaked personal data of almost the whole Maltese voting population. A new complaint by noyb aims to reveal the source of the data that C-Planet has, as of now, kept silent about.
Irish DPC burns taxpayer money over delay cases
Apr 28, 2022 Irish DPC settles delay case with noyb before Irish High Court, agreeing to pay legal costs in the tenthousands over needing almost four years to issue a first draft decision.
UPDATE: CNIL decides EU-US data transfer to Google Analytics illegal
Apr 05, 2022 CNIL considers transfer illegal and has ordered websites to comply with the GDPR.
"Privacy Shield 2.0"? - First Reaction by Max Schrems
Mar 25, 2022 Today Commission President Ursula von der Leyen and President Biden have announced a new EU-US data sharing system.
Amazon Workers demand Data-Transparency
Mar 14, 2022 Amazon using tracking data against its own employees? Workers from five European countries now filed access requests against the E-commerce giant to find out what happens with their personal data.
€ 20 Mio Fine for Clearview AI in Italy
Mar 10, 2022 The company can no longer process biometric data of people in Italy and must delete all existing data.
More Cookie Banners to go: Second wave of complaints underway
Mar 04, 2022 noyb launched the second round of its action against deceptive cookie banners. The first wave already brought visible improvements in banner design.
giropay knows what you bought last summer
Feb 25, 2022 The German payment service does not only process payment data, but each item of your shopping basket. They then put the blame for any unlawful data transfers on the shop operators.
Data Protection Day: 41 Years of "Compliance on Paper"?!
Jan 23, 2022 The GDPR is a strong piece of legislation with, so far, weak enforcement. In an overview of our complaints since 2018, noyb wants to show how that lack of enforcement manifests in individual cases.
Data breach in Malta: 65.000 € fine for C-Planet
Jan 20, 2022 IT company illegally collected data on 98% of Maltese voters, including their political preferences.
Austrian DSB: EU-US data transfers to Google Analytics illegal
Jan 13, 2022 In a groundbreaking decision, the Austrian Data Protection Authority has decided on a model case by noyb that the continuous use of Google Analytics violates the GDPR.