It's quite a good and shocking article, and I recommend the read, however I'm guessing there are some few people like me who didn't know all the acronyms in the title.
NOYB (None of Your Business) is a European non-profit organization that focuses on enforcing privacy rights and data protection laws, particularly the General Data Protection Regulation (GDPR). It was founded in 2018 by privacy activist Max Schrems, who is known for his successful legal actions against major tech companies for privacy violations. NOYB aims to ensure that companies comply with data protection regulations by filing strategic complaints and legal actions. The organization seeks to empower individuals by protecting their personal data and advocating for stronger privacy rights.
A Data Protection Authority (DPA) is an independent public authority responsible for overseeing the application of data protection laws, such as the General Data Protection Regulation (GDPR) in the European Union. DPAs are tasked with safeguarding individuals' privacy rights and ensuring that organizations comply with data protection regulations. Their roles include:
- Monitoring Compliance: Ensuring that data processing activities adhere to data protection laws.
- Investigating Complaints: Addressing complaints from individuals regarding their data protection rights.
- Providing Guidance: Offering advice and guidelines to organizations and individuals on data protection issues.
- Enforcing Laws: Imposing penalties and sanctions on entities that violate data protection regulations.
- Raising Awareness: Educating the public about their data protection rights and responsibilities.
DPAs operate within each EU member state, and they cooperate with each other to ensure a consistent application of data protection laws across the EU.
**Irish DPC is complicit (again). **According to reports, this blatant breach of the GDPR is (again) based on a "deal" with the Irish Data Protection Commission (the DPC is Meta's EU regulator). The DPC has previously had a deal with Meta that allowed the company to circumvent the GDPR – and ended with a € 395 million fine against Meta after the European Data Protection Board (EDPB) overruled the Irish DPC.