5 C
London
Monday, December 5, 2022

Denmark bans Chromebooks and Google Workspace in schools due to data transfer risks – londonbusinessblog.com

Must read

These companies are the top 10 employers in India according to the Hurun List 2022

These companies are the top 10 employers in India according to the Hurun List 2022

Broadway actor Quentin Lee dies of colon cancer at the age of 34

Broadway actor Quentin Lee died of colon cancer on Tuesday morning.Lee is best known for his portrayal of the phantom in Andrew Lloyd Webber's...

Collaborate with Aerospace Corp, Antaris, Orbital Reef and Space Systems Command during TC Sessions: Space • londonbusinessblog.com

As we prepare to launch our third TC Sessions: Space conference next week on December 6 in Los Angeles, we are still feeling the...

Why drone delivery is a utopia – and what you need to know about the government’s plans

In early November, the Commonwealth Department of Infrastructure invited public comment on proposed Australia-wide “drone delivery guidelines” it is quietly developing with industry stakeholders. A...
Shreya Christinahttps://londonbusinessblog.com
Shreya has been with londonbusinessblog.com for 3 years, writing copy for client websites, blog posts, EDMs and other mediums to engage readers and encourage action. By collaborating with clients, our SEO manager and the wider londonbusinessblog.com team, Shreya seeks to understand an audience before creating memorable, persuasive copy.

Denmark effectively bans Google’s services in schools after officials in Helsingør municipality were arrested last year ordered to carry out a risk assessment around the processing of personal data by Google.

In a verdict published last weekDanish data protection agency, Datatilsynet, has revealed that data processing involving students using Google’s cloud-based Workspace software suite – which includes Gmail, Google Docs, Calendar and Google Drive – “does not meet the requirements” of the GDPR data privacy policy. European Union regulations.

In particular, the authority found that the data processing agreement – or Google’s terms and conditions – apparently allows data to be transferred to other countries for the purpose of providing support, even though the data is usually stored in one of Google’s EU data centers .

Google’s Chromebook laptops, and by extension Google Workspace, are used in schools across Denmark. But Datatilsynet specifically targeted Helsingør for the risk assessment after the municipality reported a “personal data security breach” in 2020. While this latest ruling only applies to schools in Helsingør for now, Datatilsynet notes that many of the conclusions it has drawn will “probably apply to other municipalities” that use Google Chromebooks and Workspace. It added that it expects these other municipalities to “take relevant steps” based on the decision it made in Helsingør.

The ban takes effect immediately, but Helsingør has until August 3 to delete user data.

Data Flows

At the heart of the problem is the now-defunct EU-US Privacy Shield that regulated how data can be shared between the EU and the United States. While a new data flow agreement has been agreed in principle, it is not yet in effect, leaving many organizations in uncertainty. Consequently, large technology companies rely on standard contractual clauses for their data processing practices.

A Google spokesperson told londonbusinessblog.com:

We know that students and schools expect the technology they use to be legal, responsible and safe. That’s why Google has invested years in privacy best practices and careful risk assessments, and made our documentation widely available so everyone can see how we’re helping organizations comply with the GDPR.

Schools own their own data. We only process their data in accordance with our contracts with them. In Workspace for Education, student data is never used for advertising or other commercial purposes. Independent organizations have audited our services and we continuously monitor our practices to maintain the highest possible safety and compliance standards.

This latest announcement comes after local data watchdogs in France, Italy and Austria ruled that websites that use Google Analytics to track visitors violate European data privacy rules as personal data is transferred to the US for processing. And the Irish Data Protection Commission (DPC) is currently considering how Facebook’s parent company Meta transfers data between Europe and the US, which could affect how Europeans access services like WhatsApp and Instagram.

With European lawmakers eager to establish a greater degree of digital sovereignty, Google has strengthened its platform and infrastructure to ensure public and private organizations stay with the company. A few months ago, Google announced it would roll out new “sovereign controls” for Workspace users in Europe, allowing them to “monitor, restrict and control the transfer of data to and from the EU”.

However, these controls will not be made available until later this year, with additional data control tools arriving in the course of 2023. And it’s still not clear at this early stage whether these new tools will be foolproof in terms of GDPR compliance.

More articles

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest article

These companies are the top 10 employers in India according to the Hurun List 2022

These companies are the top 10 employers in India according to the Hurun List 2022

Broadway actor Quentin Lee dies of colon cancer at the age of 34

Broadway actor Quentin Lee died of colon cancer on Tuesday morning.Lee is best known for his portrayal of the phantom in Andrew Lloyd Webber's...

Collaborate with Aerospace Corp, Antaris, Orbital Reef and Space Systems Command during TC Sessions: Space • londonbusinessblog.com

As we prepare to launch our third TC Sessions: Space conference next week on December 6 in Los Angeles, we are still feeling the...

Why drone delivery is a utopia – and what you need to know about the government’s plans

In early November, the Commonwealth Department of Infrastructure invited public comment on proposed Australia-wide “drone delivery guidelines” it is quietly developing with industry stakeholders. A...

How to activate and align your values ​​when you are under pressure

Opinions expressed by londonbusinessblog.com contributors are their own. In times of high pressure, ambitious core values ​​can seem completely impractical. Who has time to...