We prepared an explanatory video on the Greek DPA's Decision on the new ID cards
On Monday 23/9 the Hellenic Data Protection Authority (DPA) issued Decision 32/2024, which relates to the new identity cards for Greek citizens.
The Authority found deficiencies regarding the provision of general information to data subjects, and further found that the required data protection impact assessment was carried out late and deficient. For these reasons, it imposed an administrative fine of EUR 150,000 on the Ministry of Citizen Protection, as controller, for the above infringements, while at the same time it issued a compliance order to the Ministry within six months. Finally, the Authority pointed out the obligation to update and codify the legal framework regarding the details of the new type of identity cards for Greek citizens.
The Decision 32/2024 of the Hellenic Data Protection Authority is available here.
The Homo Digitalis team has prepared a short explanatory video in plain language to highlight some important points of this Decision.
The video is available here.
We give a lecture at the OSCE's three-day training seminar on the protection of human rights at the borders
The OSCE Office for Democratic Institutions and Human Rights (ODIHR) organizes next week its training course for human rights defenders working at international borders in Warsaw! The three-day training course aims to enable human rights defenders to understand the human rights implications of border technologies and to improve their skills in collecting and verifying information through various means, including new technologies, for effective human rights monitoring at borders.
On a pro bono basis, Homo Digitalis and HIAS Greece will give a lecture during the training course related to our great success with the KENTAUROS and HYPERION case!
Our lecture titled “Combating Centaurs and Titans – Leveraging Data Protection Law to Counter Intrusive Surveillance in Migration” will focus on how data protection law can be strategically employed to challenge invasive surveillance technologies used in migration. Eleftherios Chelioudakis will represent Homo Digitalis in this lecture.
We would like to thank the organizers for their kind invitation, as well as HIAS Greece for the great collaboration.
You can find more information about the OSCE Office for Democratic Institutions and Human Rights (ODIHR) here.
Centaur & Hyperion: We asked the Greek DPA whether the Ministry of Immigration & Asylum has made the necessary compliance steps
In the framework of the Decision 13/2024 of the Greek Data Protection Authority (DPA), which was posted on its website on 2/4/2024, the Ministry of Immigration and Asylum was instructed to take all necessary steps to complete its compliance with the obligations of the controller, as described in the body of the Decision, within 3 (three) months from the date of its receipt.
Given that on Tuesday 2/7/2024, 3 months were completed, we decided to send a letter to the DPA on Wednesday 3/7/2024 (ref. no. G/EIS/5662/03-07-2024) requesting to be informed whether the Authority has received any relevant information from the Ministry of Immigration and Asylum regarding the completion of its compliance, as it was obliged to do.
It remains to be seen what level of compliance has been achieved in these three months in a case that is of the utmost importance.
Homo Digitalis interview to France 24 on the MEP Asimakopoulou emails case
Our co-founder, Eleftherios Chelioudakis, represented Homo Digitalis in an interview with France 24 (the French News Agency) about the illegal transfer of personal data of a large number of Greeks living abroad in the hands of the MEP Anna Michelle Asimakopoulou and the relevant political communication she made to them via email in the context of the upcoming European elections.
We are very grateful to France 24 for its interest in our actions. You can read the interview here.
The Hellenic Data Protection Authority fines the Ministry of Migration and Asylum for the "Centaurus" and "Hyperion" systems with the largest penalty ever imposed to a Greek public body
Two years ago, in February 2022, Homo Digitalis had filed a complaint against the Ministry of Immigration and Asylum for the “Centaurus” and “Hyperion” systems deployed in the reception and accommodation facilities for asylum seekers, in cooperation with the civil society organizations Hellenic League for Human Rights and HIAS Greece, as well as the academic Niovi Vavoula.
Today, the Hellenic Data Protection Authority identified significant GDPR violations in this case by the Ministry of Immigration and Asylum and decided to impose a fine of €175.000 euro – the highest ever imposed against a public body in the country.
The detailed analysis of the GDPR highlights the significant shortcomings that the Ministry of Immigration and Asylum had fallen into in the context of preparing a comprehensive and coherent Data Protection Impact Assessment, and demonstrates the significant violations of the GDPR that have been identified and relate to a large number of subjects who have a real hardship in being able to exercise their rights.
Despite the fact that the DPA remains understaffed, with a reduced budget, facing even the the risk of eviction from its premises, it manages to fulfil its mission and maintain citizens’ trust in the Independent Authorities. It remains to be seen how long the DPA will last if the state does not stand by its side.
Of course, nothing ends here. A high fine does not in itself mean anything. The Ministry of Immigration and Asylum must comply within 3 months with its obligations. However, the decision gives us the strength to continue our actions in the field of border protection in order to protect the rights of vulnerable social groups who are targeted by highly intrusive technologies.
You can read our press release here.
You can read Decision 13/2024 on the Authority’s website here.
Homo Digitalis interview with Inside Story about the MEP Asimakopoulou emails' case
The member of Homo Digitalis, Christos Zanganas, represented Homo Digitalis in an interview with Inside.story and journalist Eleftheria Tsaliki on the illegal transfer of personal data of a large number of Greeks living abroad in the hands of the MEP Anna Michelle Asimakopoulou and the relevant political communication she made to them via email in the context of the upcoming European elections.
We are very grateful to the journalist for her interest in our actions. You can read the interview here.
Homo Digitalis interview with The Press Project about the MEP Asimakopoulou emails' case
The member of Homo Digitalis, Nikoleta Georgakopoulou, spoke to The Press Project and journalists Thanos Kamilalis and Konstantinos Poulis about the scandal with the illegal transfer of personal data of a large number of Greeks living abroad in the hands of the New Democracy MEP Anna Michelle Asimakopoulou and the relevant political communication she made to them via email in the context of the upcoming European elections.
We are very grateful to the journalists of The Press Project for their interest in our actions.
You can listen to the excerpt of the interview at 16:15 of the related video on The Press Project’s YouTube channel here.