A summary of the hearing is now available.
New factsheets, checklists and flowcharts on data protection published by the EDPS.
The company’s organisational and technical measures for the protection of personal data were not appropriate to the risk posed by the processing of personal data, which means that data of about 2.2 million people have fallen into the wrong hands. There was a lack of appropriate response procedures to deal with the emergence of unusual network traffic, concluded the President of the Personal Data Protection Office (UODO).
The Belgian data protection authority imposed a fine of €10,000 on a merchant for the disproportionate use of the electronical identity card for the purpose of creating a loyalty card.
Europol’s EC3 signs Memorandum of Understanding (MOU) with global non-profit dedicated to reducing cyber-risk in the financial system through intelligence sharing.
A multi-country action day coordinated by Eurojust in The Hague led to the dismantling of an international criminal network committing massive fraud with pay-TV, which shows organised crime expanding its illegal activities to large-scale violations of audiovisual copyright.
The Portuguese Judicial Police (Polícia Judiciária) dismantled Europe’s second-largest counterfeit currency network on the dark web with Europol’s support. Five individuals have been arrested and are accused of counterfeiting and organised crime. Counterfeit banknotes were seized across Europe, notably in France, Germany, Spain and Portugal, worth over € 1.3 million.
A summary of the exchange of views, with a focus on digital, transport and finance policy, is now available.
Update: a speech by Commissioner Vella was made available.
The key decisions taken by the Commission are presented below and grouped by policy area.
The Commission is also closing 146 cases in which the issues with the Member States concerned have been solved without the Commission needing to pursue the procedure further.
The Court orders Belgium to pay a penalty payment of €5,000 per day for not fully transposing the directive on high-speed electronic communications networks and, a fortiori, for failure to notify the relevant transposing measures to the Commission.
The European Commission has opened a formal antitrust investigation to assess whether Broadcom may be restricting competition through exclusivity practices, in breach of EU rules. The Commission intends to impose interim measures during the investigation with regard to TV and modem chipsets markets. Broadcom is the world’s largest designer, developer and provider of integrated circuits for wired communication devices.
Association of European Competition Law Judges Annual Conference, 6 June 2019
The State Data Protection Inspectorate has imposed an administrative fine in the amount of EUR 61,500 for the breaches of the General Data Protection Regulation. The sanctions were imposed on MisterTango UAB for the breaches of Articles 5, 32 and 33 of the afore-mentioned Regulation, i.e. the personal data breach in the payment initiation service system which, inter alia, has also not been reported to the supervisory authority. In the opinion of the Inspectorate, the start of imposing fines under the General Data Protection Regulation should be a significant signal to other companies which only declaratively comply with the provisions of the above legal acts.
16 May 2019
“In this time, we have been faced by a range of security issues. We have worked to tackle terrorism, by closing down the space in which terrorists operate – cutting down on their access to money, weapons and explosives, and making it harder for them to travel around – by building our resilience to attacks and our ability to recover from them, and by tackling the radicalisation and online terrorist content that fuel extremism.
We have undertaken efforts to combat the growing and evolving array of cyber and cyber-enabled threats, by putting in place a new EU cybersecurity strategy in order to build our resilience, strengthen our deterrence and support Member States in cyber defence; and then by working to strengthen election security and tackle disinformation online, including by working with Member States and the big internet platforms”
16 May 2019
“The range of cyber and cyber-enabled threats is expanding and evolving. Cyberattacks are growing both in number and in sophistication, touching on all parts of the economy, governance and our daily lives, affecting individuals, major business and critical infrastructure. And over the past year or so, we have seen the growth of the more pernicious, politically-driven kinds of security threat posed by disinformation and attempted interference in our democratic processes. Finally, we need to think carefully about how the EU can ensure the security of its critical digital infrastructure in the coming years, including the incoming 5G networks.”
An unprecedented, international law enforcement operation has dismantled a complex, globally operating and organised cybercrime network. The criminal network used GozNym malware in an attempt to steal an estimated $100 million from more than 41 000 victims, primarily businesses and their financial institutions.
BGP hijacks, hacking the internet route map, continue to happen. Despite years of warnings by security experts. This spells danger for national security, privacy of citizens, and the resilience of the internet, both in Europe and globally.
Last year ENISA surveyed a range of large and small providers across the EU, confirming that BGP hijacks are an issue also in the EU: 44% of respondents said that the impact of BGP incidents is high, affecting large numbers of users and last for many hours, and 93% say it needs an urgent fix.