While the amount of administrative fine in the GDPR is only a theoretical maximum, fines imposed in specific cases could serve as important practical compass in several respects: on the one hand, the level of fines is indicative itself, and on the other hand, it is also important for data…
Online conference of DPOs in Hungary
It is a legal obligation of the Hungarian Data Protection Authority (NAIH) to organise the annual conference of data protection officers (DPOs). Due to the obligations in the GDPR regarding the appointment of DPOs, the number of DPOs registered by the Hungarian DPA increased significantly,…
The German DPAs' new concept on calculating GDPR fines
The Conference of the independent Data Protection Authorities of Germany (Konferenz der unabhängigen Datenschutzaufsichtsbehörden des Bundes und der Länder; DSK) published its generally applicable principles on imposing GDPR fines on companies. By publishing its concept, the DSK follows the Dutsch…
Személyes adatok továbbítása az Egyesült Királyságba, ha mégis lesz Brexit-megállapodás
A tegnapi nap kiemelt híre volt, hogy az Egyesült Királyság és az EU kompromisszumra jutott a Brexit-megállapodás kapcsán, amelyet a EU tagállamok vezetői jóvá is hagytak. A labda (immár sokadszor) a brit parlamentnél pattog, amelynek szintén áldását kell adnia a módosított megállapodásra annak…
Quantum supremacy and data protection
It was all over the news a few days ago that Google had reached the quantum supremacy in an experiment, where a quantum processor proved that the figures pumped out by a random number generator were indeed random. This task took 3 minutes 20 seconds (200 seconds) for the quantum processor and…
The interpretation of the right of access in the practice of the Hungarian DPA
The right of access is an important guarantee in the GDPR to ensure the transparency of data processing for data subjects. However, it is an open question to what extent this right can be exercised. In the past months, several interpretations became available, mostly from German data protection…
Can blockchain technology be GDPR-compliant?
Study on the relationship between blockchain technology and the GDPR
The European Parliament published a study that examines whether distributed ledgers can be squared with European data protection law. The study consists three main parts: (i) it discusses blockchain technology and the tensions between the use of such technology and the GDPR, (ii) it explores the…
Will joint processing of data come into fashion?
The ECJ's judgment in the Fashion ID Case
At the end of July, the European Court of Justice (ECJ) ruled in case no. C-40/17 (“Fashion ID Case”), which dealt with the interpretation of the concept of data controller and the issue of joint data processing. The basic question to be clarified was the role of the website operator and Facebook in…
Drones and data protection
There are several legal aspects related to the use of drones, including a number of data protection issues.
Although no comprehensive legislation has been enacted so far in Hungary, the Hungarian Data Protection Authority (Hungarian DPA) has, similarly to other data protection authorities,…
Crazy facts about data protection
Why do we need smart privacy regulations?
The EU celebrates the first anniversary of GDPR-application. GDPR changed the data protection landscape in the EU and it has strong effects outside of the European Union too. Below, you can find some crazy facts about data protection that should be considered in the future when we think further how…