#36: Meta is not fine with transfers and gets a mega fine plus some finger-licking privacy

In this episode, Milla, Pilvi, and Panu take a look at the Meta case on the US transfers that ended up costing Meta 1.2 billion euros. We explore the depths of the case, such as how Meta justified their transfers, what supplementary measures were used that were not deemed sufficient, and debate a bit on the politics intertwined with the case. But hold on! We have more! We also take a look at the finger-licking KFC case, where the AEPD ordered a fine of 5000 euros for violating Article 13 by using undefined expressions such as "we can use…" in the privacy policy. The AEPD also ordered a fine of 20 000 euros for not appointing a Data Protection Officer. We also discuss Panu’s career plans as he is open for hire (wink wink!)! Links:  Binding Decision 1/2023 on the dispute submitted by the Irish SA on data transfers by Meta Platforms Ireland Limited for its Facebook service (Art. 65 GDPR): https://edpb.europa.eu/our-work-tools/our-documents/binding-decision-board-art-65/binding-decision-12023-dispute-submitted_en Meta’s Response to the Decision on Facebook’s EU-US Data Transfers by Nick Clegg, President, Global Affairs & Jennifer Newstead, Chief Legal Officer : https://about.fb.com/news/2023/05/our-response-to-the-decision-on-facebooks-eu-us-data-transfers/ KFC case, AEPD (Spain) - PS/00140/2022: https://www.aepd.es/es/documento/ps-00140-2022.pdf (spanish)   Did you enjoy our show? Support us by buying us a coffee here: https://bmc.link/privacypod4u We would love to get feedback – so please tag us, follow us, DM us, or send us traditional email: Twitter: https://twitter.com/PodPrivacy, #privacypod Instagram: @privacypod LinkedIn: https://www.linkedin.com/company/tietosuojapod/about/ Email: [email protected]