Each year on 28 January, we celebrate Data Protection Day - when stakeholders come together to raise awareness about citizen’s rights concerning data protection and privacy. Outside Europe, today is referred to as Privacy Day.
Let’s face it: when it comes to the processing of personal data, most people are unaware of their rights, let alone whether or not their rights are being impeded. That is why today is so important and why I’d like to draw your attention to a recent judgement passed by the Belgian Data Protection Authority (DPA).
On 17 December 2019, the Belgian Data Protection Authority (DPA) imposed an administrative fine of 15.000 EUR on a company that manages a website with legal news and information. The website has about 35.000 monthly visitors including many lawyers, law students and paralegals. It is the first decision that is published by the DPA regarding an online platform.
The investigation was initiated by the DPA’s inspection service which concluded that several breaches were made by the company on the provisions of the General Data Protection Regulation (GDPR) and the provisions of the ePrivacy regulation.
Here’s what the DPA’s inspection service concluded: