In 2012, Colombia enacted Law 1581, establishing the national regime for personal data protection in the country. Law 1581 mandates that data controllers register their databases containing personal data in a national registry managed by the personal data protection authority, the Superintendencia de Industria y Comercio (SIC). This registration obligation occurs annually, with the deadline […]
Tania Vanessa Eslava Suarez
About Tania Vanessa Eslava Suarez
Posts by Tania Vanessa Eslava Suarez:
Controlling Working Times and Attendance via the Processing of Biometric Data: Guidelines by the Spanish DPA
In November 2023, the Spanish data protection authority (AEPD) unveiled new guidelines regarding the use of biometric data in the workplace to ensure companies’ compliance with data protection laws while implementing attendance control systems such as fingerprint scanners. Let’s take a look at what it says. Understanding Biometric Data Biometric data, like fingerprints, retina scans, […]
Access to employee emails: A delicate balance between business needs and privacy rights
In the landscape of corporate operations, accessing employee emails may sometimes feel like a necessity for companies. Whether to investigate suspected misconduct of current employees, facilitate operational management during an employee’s prolonged absence, or streamline the transition after an employee departs, the reasons can be varied. However, this task is not straightforward as there are […]
How the upcoming Cyber Resilience Act will impact privacy
One of the biggest challenges faced by data controllers today is the ever-looming risk of cyber attacks. Vulnerabilities in systems and devices can result in not only the loss of vast amounts of personal data and the potential for ransom demands but also the imposition of hefty fines by authorities for neglecting proper technical and […]
Why Strong Identity Verification is Vital in Data Protection
In the realm of data protection, identity verification plays a crucial role in safeguarding personal information. In this article, we explore a recent incident involving Vodafone España, shedding light on the significance of strong identity verification procedures. We’ll examine the case, discuss the consequences faced by Vodafone, and delve into best practices for verifying someone’s […]
Google is getting rid of passwords – Should your company do the same?
In the ever-evolving digital landscape, the traditional password has long been the gatekeeper of our online identities. From email accounts to social media profiles, passwords have been the first line of defense against unauthorized access. But recently Google has announced a paradigm shift in its approach to account security that could signal the beginning of […]
Insights from the BfDI on how to navigate Privacy Challenges in the Era of Generative AI
The Federal Commissioner for Data Protection and Freedom of Information of Germany, also known as BfDI (Bundesbeauftragte für den Datenschutz und die Informationsfreiheit), recently published an opinion on the topic of Generative Artificial Intelligence (AI). In a previous article, we discussed Generative AI, which refers to artificial intelligence applications capable of generating new content, rather […]
Meta Platforms Faced with Largest Fine in GDPR History for Unlawful Personal Data Transfer to the United States
In a remarkable development that has sent shockwaves across the digital domain, Ireland’s Data Protection Commission (DPC) has imposed a €1.2 billion fine to conclude its long-term investigation into Meta Platforms Ireland Limited – formerly Facebook Ireland – over its data transfers from the EU/EEA to the United States. Let us take a look at […]
ChatGPT is back in Italy – What changes have been made and what do users need to know?
OpenAI, the company behind the successful ChatGPT, has been in the spotlight recently due to privacy concerns, particularly in the European Union. Italy’s data protection authority, known as the Garante, imposed a temporary ban on the platform on 31 March, following reports of a data breach that affected ChatGPT users‘ conversations and payment information. As […]
The Artificial Intelligence Revolution Taking the World by Storm – Are You Ready?
The term “Artificial Intelligence” (AI) has many possible meanings, although a simple one defines it as the ability of a computer to perform tasks that have traditionally required human intelligence. AI has been a part of our lives for many years now as it is used in everyday consumer products such as spam filters for […]
Privacy matters: the intrinsic value of data protection
Records of processing activities. Data processing agreements. Data processing impact assessments. Privacy notices. Cookie banners. Data subject requests. Data flow mapping…The world of data privacy can be overwhelming, even for those of us who work with it professionally. It is especially frustrating when companies feel that they are losing their competitive edge due to limiting […]
ChatGPT: Risks and challenges from a Data Privacy perspective
AI-powered chatbots are all the rage these days and ChatGPT is the biggest star. With more than 100 million monthly users just two months after its launch, it officially holds the record for the fastest-growing web platform in history, beating giants like Instagram and TikTok. The appeal of OpenAI’s ChatGPT is easy to understand. The […]