EDPB’s Guidelines on Legitimate Intesrest

Recently, the European Data Protection Board (“EDPB”) adopted Guidelines 01/2024 on processing of personal data based on Article 6(1)(f) GDPR (processing based on legitimate interest).

Legitimate interest is one of the lawful grounds on which personal data can be processed. Its flexible nature makes it quite hard to actually apply appropriately in real life even though it is one of the most commonly used grounds. These Guidelines analyze the criteria set down in Art. 6(1) (f) GDPR that controllers must meet to lawfully process personal data on the basis of legitimate interest. It also takes into consideration the recent ECJ ruling on this matter (C-621/22, 4 October 2024).

The Guidelines will be open to public consultation until 20 November 2024.

Access via link: https://www.linkedin.com/posts/vietnam-data-protection_edpb-guidelines-012024-ver-10-activity-7251417347742179328-XHfJ?utm_source=share&utm_medium=member_desktop

PrivacyCompliance prides itself on its team of experts having achieved numerous internationally recognized certifications such as CIPM, CIPP/E, CISA, CISM, CRISC®, ISO27001 Lead Auditor, etc. With tried-and-tested knowledge and capacity, PrivacyCompliance is confident in being able to provide in-depth and comprehensive solutions on personal data compliance and protection.

Privacy Compliance

REDDIT FINED £14.47 MILLION FOR CHILDREN’S PRIVACY FAILURES — A LANDMARK UK ENFORCEMENT ACTION

🔐 𝗥𝗘𝗗𝗗𝗜𝗧 𝗙𝗜𝗡𝗘𝗗 £14.47 𝗠𝗜𝗟𝗟𝗜𝗢𝗡 𝗙𝗢𝗥 𝗖𝗛𝗜𝗟𝗗𝗥𝗘𝗡’𝗦 𝗣𝗥𝗜𝗩𝗔𝗖𝗬 𝗙𝗔𝗜𝗟𝗨𝗥𝗘𝗦 — 𝗔 𝗟𝗔𝗡𝗗𝗠𝗔𝗥𝗞 𝗨𝗞 𝗘𝗡𝗙𝗢𝗥𝗖𝗘𝗠𝗘𝗡𝗧 𝗔𝗖𝗧𝗜𝗢𝗡 Recently, the Information Commissioner’s Office (ICO) imposed a fine of approximately £14.47 million (~USD 19.5 million) on Reddit for processing the personal data of users under 13 without implementing appropriate age verification measures. This is reported to be the largest […]

Learn more

Privacy Compliance

RECRUITMENT ANNOUNCEMENT – MARKETING INTERN

Privacy Compliance Joint Stock Company is recruiting a Marketing Intern to support communication and brand development activities in the field of personal data protection and privacy. Job Description Assist in developing and implementing communication plans and content (website, LinkedIn, Facebook, email marketing, etc.). Coordinate in editing articles on data protection, compliance, and risk management (under […]

Learn more

Privacy Compliance

RECRUITMENT ANNOUNCEMENT – PRIVACY ASSOCIATE

Privacy Compliance Joint Stock Company is recruiting a Privacy Associate in the field of personal data protection and privacy. Job Description Advise clients on personal data protection matters. Review, develop, and refine internal policies and procedures; assess compliance levels and propose improvement roadmaps. Conduct Data Protection Impact Assessments (DPIA) and Data Transfer Impact Assessments (DTIA). […]

Learn more

Cookie name	Type	Description	Expiration
cookie_consent	First Party	Remembers user’s cookie preferences (e.g., which types of cookies you accepted or declined) so that these settings are applied on future visits	12 months
pll_language	First Party	Stores the user’s language preference to display appropriate content	12 months

Cookie name	Type	Description	Expiration
_gcl_au	Third Party	Cookie used by Google AdSense to evaluate advertising effectiveness across websites	3 months
test_cookie	Third Party	Cookie used by DoubleClick (Google) to check if your browser supports cookies	15 minutes
IDE	Third Party	Cookie used by DoubleClick (Google) to store details about how the end user interacts with the website and ads they may have seen before visiting	12 months
ad_user_data	Third Party	Cookie used by Google to determine whether the user has consented to the use of their data for advertising purposes, including audience segmentation	13 months
ad_personalization	Third Party	Cookie used by Google to store user preferences related to personalized advertising, enabling more relevant ad delivery	13 months

EDPB’s Guidelines on Legitimate Intesrest