- Site Moderator
- Posts: 33
- Joined: Tue Dec 04, 2018 11:05 am
- Location: London
Not so surprisingly, the Swedish DPA found that the program violated several GDPR articles — the EU’s new robust privacy regulation. The school failed to consult the Swedish DPA before launching its program and didn’t do a proper impact assessment.
The school maintains it had its students’ consent, but the DPA found there was no valid legal basis for this as there’s a “clear imbalance between the data subject and the controller.”
https://thenextweb.com/eu/2019/08/27/fa ... gdpr-fine/
Users browsing this forum: No registered users and 1 guest