CJEU confirms that competitors can sue each other for GDPR infringements

A German pharmacy sued another pharmacy for failing to guarantee explicit consent when processing the health data of the clients as prescribed under GDPR. The German Court held that such activity does amount to unfair and unlawful practice. However, the Court was unsure whether the national legislation, which allows a competitor to bring legal proceedings against the person allegedly responsible for infringements of the GDPR on the basis of the prohibition of unfair commercial practices, is consistent with that regulation.

In its opinion, the CJEU expresses that the GDPR does allow competitors of the person allegedly responsible for an infringement of the laws protecting personal data to bring legal proceedings against that person, for infringements of that regulation, on the basis of the prohibition of unfair commercial practices.

Access via link: https://www.linkedin.com/posts/vietnam-data-protection_cjeu-press-release-no-15924-activity-7252867879895740418-g4A4?utm_source=share&utm_medium=member_desktop

PrivacyCompliance prides itself on its team of experts having achieved numerous internationally recognized certifications such as CIPM, CIPP/E, CISA, CISM, CRISC®, ISO27001 Lead Auditor, etc. With tried-and-tested knowledge and capacity, PrivacyCompliance is confident in being able to provide in-depth and comprehensive solutions on personal data compliance and protection.

Privacy Compliance

PDPL QUEST 01: ARE YOU PREPARED TO DELETE EMPLOYEE’S PERSONAL DATA?

ARE YOU PREPARED TO DELETE EMPLOYEE’S PERSONAL DATA? Under Article 25 of Vietnam’s Personal Data Protection Law 2025, employers are required to delete or destroy employees’ personal data once the employment contract ends, unless otherwise agreed or legally required to retain it. ➡️ To continue processing personal data post-employment (e.g. for legal or compliance […]

Learn more

Privacy Compliance

OFFICIALLY ISSUE THE LAW ON PERSONAL DATA PROTECTION

OFFICIALLY ISSUE THE LAW ON PERSONAL DATA PROTECTION Source: Hoàng Ngọc – People’s Deputies Online On the morning of June 26, under the chairmanship of Vice President of the National Assembly, Senior Lieutenant General Trần Quang Phương, the National Assembly voted to pass the Law on Personal Data Protection with 433 out of 435 deputies […]

Learn more

Privacy Compliance

IN-HOUSE DPO VS. OUTSOURCED DPO – WHICH SOLUTION SAVES COSTS AND ENSURES COMPLIANCE?

💥 IN-HOUSE DPO VS. OUTSOURCED DPO – WHICH SOLUTION SAVES COSTS AND ENSURES COMPLIANCE? 🔒 Decree No. 13/2023 and the Draft Law on Personal Data Protection require all businesses to appoint a Data Protection Officer (DPO). The draft law explicitly gives businesses the right to choose between appointing an internal DPO or engaging […]

Learn more

Cookie name	Type	Description	Expiration
cookie_consent	First Party	Remembers user’s cookie preferences (e.g., which types of cookies you accepted or declined) so that these settings are applied on future visits	12 months
pll_language	First Party	Stores the user’s language preference to display appropriate content	12 months

Cookie name	Type	Description	Expiration
_gcl_au	Third Party	Cookie used by Google AdSense to evaluate advertising effectiveness across websites	3 months
test_cookie	Third Party	Cookie used by DoubleClick (Google) to check if your browser supports cookies	15 minutes
IDE	Third Party	Cookie used by DoubleClick (Google) to store details about how the end user interacts with the website and ads they may have seen before visiting	12 months
ad_user_data	Third Party	Cookie used by Google to determine whether the user has consented to the use of their data for advertising purposes, including audience segmentation	13 months
ad_personalization	Third Party	Cookie used by Google to store user preferences related to personalized advertising, enabling more relevant ad delivery	13 months

CJEU confirms that competitors can sue each other for GDPR infringements