Mobile Dev Memo Podcast

MDM Podcast Episode 32 - A deep dive on European digital privacy law (with Mikołaj Barczentewicz)

Mar 1, 2023

01:14:13

Creator website

Highlights

AI Chapters

Episode notes

Is the E-Privacy Regulation a Sister Idea to the GDPR?

01:33

Is the Consent for the Free Option Invalid?

02:24

The Problem of Consent Bundling

02:30

Introduction

2min

Digital Advertising Operators - What Is Necessity and Why Does It Impact What They Do?

4min

The Irish Data Protection Commission Issued Two Decisions

2min

GDPR

3min

Data Privacy Regulation

3min

The One-Stop-Shop Principle in Article 60 of the European Data Protection Board

4min

How the Irish DPC Reacted to This?

2min

The Irish DPC's Disagreement With EDPV

3min

AdTech vs TikTok - What's the Consequences?

2min

10.

IRIS DPC - IRIS Data Processing Commission

3min

11.

The Problem of Consent Bundling

3min

12.

Can Facebook Charge Users for Access to a Social Media App?

3min

13.

Is the Consent for the Free Option Invalid?

2min

14.

Contextual Advertising

2min

15.

Is There a Limit to Personalized Advertising?

2min

16.

The Difference Between Regulation and Directive

3min

17.

Is There a One-Stop-Shop Process for the Privacy Directive?

5min

18.

Is Keneel Compliant With the GDPR?

4min

19.

The One-Stop-Shop

2min

20.

Is the E-Privacy Regulation a Sister Idea to the GDPR?

2min

21.

Is There a Double Jeopardy Clause?

4min

22.

The New DMA and DSA Regulations

4min

23.

Privacy Directive

3min

24.

Transferring Personal Data Outside of the EU

5min

25.

What Do You Do if You're Working in an American Company?

2min

My guest in this episode of the Mobile Dev Memo podcast is Mikołaj Barczentewicz, an expert on EU digital privacy law. Mikołaj is a law professor at, and the research director of, the Law and Technology Hub at the University of Surrey in the United Kingdom, and he has research affiliations with the Stanford Law School and the University of Oxford, from which he received his Ph.D.

I learned of Mikołaj after reading a piece he co-wrote titled GDPR Decision Against Meta Highlights that Privacy Regulators Don’t Understand ‘Necessity’. I invited Mikołaj onto the podcast to discuss the recent spate of decisions in the EU related to digital privacy, including:

The Irish DPC's ruling against Meta over the company's use of the contractual basis for processing user data related to personalized advertising;
The French CNIL's recent sanctions of Apple and Voodoo Games;

In the episode, Mikołaj and I discuss a wide range of topics:

Consent as a mechanism for collecting and processing first-party data in the EU;
The difference between the necessity and legitimate interest bases under GDPR;
The dynamics between the European Data Protection Board (EDPB) and the data protection agencies within the various EU states;
The future of trans-Atlantic data flows.