A nonbinding opinion from Court of Justice of the European Union Advocate General Priit Pikamäe alleged the German State Data Protection and Freedom of Information Commissioner of Land Hessen did not impose corrective measures after a citizens' personal data was reviewed by a local savings bank employee without his consent. The Advocate General said the regulator was obligated to act and be "required to define the most appropriate corrective measure(s) to remedy the infringement" upon being notified of data mishandling.
11 April 2024
CJEU opinion alleges German state DPA did not act on consumer claim
Related stories
The final days of grace: Preparing for the U.S. sensitive data rule
Notes from the IAPP Canada: Taking meaningful steps to protect children online
A view from DC: Double toil and trouble in Connecticut’s privacy amendment
US lawmakers find bipartisanship in opposition to UK's order on Apple encryption back door
A view from Brussels: Where does Brussels stand on sovereignty?