Search by Practice
Client updates / Privacy Law
There has been an uptrend in recent years of employers using a variety of technological tools to supervise their employees and oversee the quality of their work. The use of these tools has become more prevalent due to the shift of many organizations to working from home last year. For the most part, the use of monitoring systems occurs in instances when keeping track of employees’ work hours is nearly impossible due to the nature of their roles. These include drivers, delivery persons, and sales agents, who do not have a permanent physical workplace. Employers can monitor employees using designated applications they may ask employees to install in their personal cellphones or in phones they provide. Employees’ locations can also be tracked using GPS systems installed in vehicles used by employees that belong to the employer. As a result of the many queries submitted to the Israeli Privacy Protection Authority on the subject, the PPA has published a draft statement for public comment. The statement presents the ethical and legal dilemmas involved in employers’ use of technologies to collect data on their employees’ location, and attempts to set standards for employers’ use of such technologies.
Israel’s Privacy Protection Authority has published its recommendation that every organization appoint a privacy protection supervisor. This supervisor’s task is to implement the privacy protection laws that apply to the organization. The PPA noted that although Israeli law does not impose such a duty, it is a best practice recommended for organizations that collect and analyze personal data.
The global effort to fight the spread of coronavirus has prompted new privacy related questions around the world. Much has been written for and against the use of privacy-compromising measures to protect public health. Therefore, we have chosen to concentrate on the practical implications of privacy principles on companies and businesses.
The Hellenic Data Protection Authority (HDPA) recently imposed a EUR 150,000 fine on the international consulting firm PwC for its violations of the new European data protection regulations (the General Data Protection Regulations, or GDPR).
July 2019 brought an escalation in the enforcement of privacy infringements by companies around the world. These events underscore the trend that began with the GDPR taking effect and should lead any business entity coming across personal information.