Insights & news

CJEU Adopts Broad Interpretation of "Special" Personal Data

  • 19/08/2022
  • News

In a recent judgment, the Court of Justice of the European Union (the CJEU) held that personal data from which sensitive information can be inferred may qualify as a “special” category of personal data under the GDPR. In particular, the CJEU held that the publication of the name of a person’s spouse could indirectly disclose the person’s sexual orientation and therefore should be treated as a “special” category of personal data under Article 9 of the GDPR.

 

Many data – alone or used together – could be liable to disclose indirectly sensitive information, even if an organization avoids collecting sensitive categories of data as such. Therefore, data controllers will need to review whether their databases may infer special categories of data and may need to take measures to avoid this, or implement a proper legal basis for processing special categories of personal data.

 

Please click on the link below to read our client alert on this CJEU judgment.

Attachments:

Key contacts

Related practice areas

Search more insights

Related insights

Sign up for updates
    • 18/11/2024
    • Newsletters

    VBB on Belgian Business Law, Volume 2024, No. 10

    We are pleased to let you have the latest issue of our Belgian Business Law newsletter reporting on recent developments in a range of areas, including commercial law, competition law, intellectual property and litigation.

    Read more
    • 04/10/2024
    • News

    Belgian DPA Guidelines on AI Systems and GDPR

    With the AI Act grabbing all the attention, data protection authorities are reminding organizations that AI systems also need to comply with the General Data Protection Regulation

    Read more
    • 24/09/2024
    • News

    Decoding the AI Act: Key Elements

    The European Union’s Artificial Intelligence Act (AI Act), one of the first and likely the most comprehensive regulation of AI systems in the world, entered into force on 1 August 2024. The AI Act will affect an incredibly wide range of AI systems used in the EU, and subject AI system providers to a range of compliance and transparency obligations reflecting a riskbased approach.

    Read more

Subscribe to our updates

Please select the practice areas you are interested in: *