In a decision issued on May 29, 2020, the Belgian data protection authority (DPA) turned its attention to the practices of non-profit organizations when it imposed a fine for violations of the EU’s General Data Protection Regulation (GDPR). The DPA’s decision responded to an individual who complained that he continued to receive promotional materials from the organization after he had objected to the processing of his contact details for direct marketing. He had also requested that the organization delete his data from its database. The DPA stated that under the GDPR, unsolicited postal communications sent by non-profit organizations to promote their services and to fundraise qualify as “direct…
.@EU_Commission published for comment a draft of new standard contractual clauses for transfer of data from the EU, pursuant to the GDPR. Final version expected in Q1 2021. https://ec.europa.eu/info/law/better-regulation/have-your-say/initiatives/12741-Commission-Implementing-Decision-on-standard-contractual-clauses-for-the-transfer-of-personal-data-to-third-countries
UK ICO launched a public consultation on its draft Statutory Guidance (https://ico.org.uk/media/about-the-ico/consultations/2618333/ico-draft-statutory-guidance.pdf). It provides an overview of the ICO’s powers, how it intends to regulate & enforce data protection legislation in the UK & how it will calculate fines. Consultation closes 11/12/2020.
Belgian DPA has released its 2019 Annual Report. In 2019 the #DPA imposed its first fines under the #GDPR and issued the Belgian DPA’s 2019-2025 Strategic Plan: https://www.huntonprivacyblog.com/2019/12/27/belgian-dpa-releases-draft-2019-2025-strategic-plan/