Legal Issues to Consider Regarding Augmented/Virtual Reality
March 8, 2019

Commercial augmented reality (“AR”) and virtual reality (“VR”) are not everyday solutions yet, but almost everyone has at least heard of Pokémon GO, the AR game that made the imaginary monsters viral for the second time since the ‘90s and reached over 50 million active monthly users in less than a year. As the term […]

Data Protection Impact Assessments – National Requirements in Finland and Sweden
February 26, 2019

When the processing of personal data is likely to result in a high risk to the rights and freedoms of natural persons, the General Data Protection Regulation (“GDPR”) requires that a Data Protection Impact Assessment (“DPIA”) be conducted. Furthermore, the GDPR provides national data protection authorities with the competence to decide, within the scope of […]

EU:n tietosuoja-asetukseen liittyvät oikeudenkäynnit ja riidat
January 7, 2019

Euroopan unionin yleisen tietosuoja-asetuksen (EU) 2016/679 valmistelun ja voimaantulon yhteydessä suurimman mediahuomion ja yleisen mielenkiinnon kohteena ovat olleet hallinnolliset sakot, jotka ovat tuoneet asetukselle laaja-alaista huomiota. Hallinnollisten sakkojen voimakas korostaminen on osin saattanut antaa harhaanjohtavan kuvan ”sanktiokentästä”, sillä sakot ovat vain yksi useista mahdollisista seuraamuksista, joita tietosuojasääntelyn, muun lainsäädännön (kuten rikoslainsäädännön) tai sopimusten vastaisesta toiminnasta […]

On 25 May 2018, the long wait was over and the EU General Data Protection Regulation (GDPR) finally entered into full force and effect and became applicable in all EU Member States. During the preceding two-year transition period, companies worked hard to prepare themselves for and to ensure compliance with the new requirements under the […]

As we already prefigured in our earlier blog post, the Article 29 Working Party (the “WP29”) has adopted drafts for guidance regarding requirements for transparency and consents under EU’s General Data Protection Regulation (the “GDPR”). Transparency Transparency is one of the key principles of the processing of personal data under the GDPR. Furthermore, under the […]

October 2017 has been a busy month for the Article 29 Working Party (the “WP29”), a group that consists of EU data protection authorities. The WP29 has recently published three new guidelines and revised some earlier guidelines on the implementation of the General Data Protection Regulation (the “GDPR”). The recent guidance includes proposed guidelines on […]

Legality of the Standard Contractual Clauses Referred to the CJEU The Standard Contractual Clauses (the “SCCs” or the “EU Model Clauses”) have provided a mechanism for transferring personal data outside the EEA when incorporated into a contract between controllers or a controller and a processor. These model clauses have been adopted by the European Commission […]

The Consumer Ombudsmen of Finland, Sweden, Denmark and Norway met in Helsinki in the beginning of May to discuss several consumer protection issues relating to the digital society. The topics discussed varied from consumer legislation in the digital economy to consumer protection issues in connection with the Internet of Things. One of the discussed themes […]