Does infringement alone of the GDPR gives rise to a right to compensation, or does there need to be harm as well?
The AG's opinion in the Österreichische Post case is out! I will briefly discuss its findings...
👇
curia.europa.eu/juris/document… ▶️ The AG considers the recognition of punitive damages as a potential threat for the overall data protection system (§ 50). The AG is afraid that punitive damages might encourage individuals to go to court instead of doing complaints with supervisory authorities.

Another week of confinement, another privacy policy.
This week, I took a look at @zoom_us privacy policy, which was updated *very* recently, since it's from March 18, 2020.

🔎Let's zoom in ! My key take-away from their long (and cluttered) privacy policy: Zoom declares itself as a data “processor”, acting as a service provider on behalf and at the direction of (meeting) hosts.
Thus, they're designating hosts as data controller or decisionmaker.

🧵As a legal scholar, I'm not knowledgable to talk about viruses, nor #COVIDー19.
But as an increasing number of people are turning to online socializing tools like @houseparty, I took a look at their privacy policy (houseparty.com/privacy/#house…).
Below are some of my findings.

👇 By calling themselves "House Party" they are setting the privacy expectations of a house party. But don't be mistaken, their house is full of recording microphones 🎤and cameras 🎥.