SypherPrivacyTalks - June 2025 - Week 23

by Sypher | Published in News - June 02, 2025


Welcome to #SypherPrivacyTalks — Your news and article roundup. Bringing you the top privacy & compliance stories of the week.

Italy fines AI chatbot maker Replika €5 Million over privacy violations

pymnts.com • 2 min read

💶 The Italian Data Protection Authority, Garante, has imposed a €5 million fine on the US-based company Luka Inc., which manages the Replika chatbot. 
The authority has also launched an independent investigation to assess whether the generative AI system behind the service is processing personal data properly.… read more.
Garante’s announcement here.

Meta AI: German Court did not grant interim injunction

noyb.eu • 3 min read

🤖 A German court has rejected an interim injunction that aimed to stop Meta from using personal data to train its AI without user consent. The lawsuit was filed by a consumer rights group, claiming Meta is violating the GDPR. Although the injunction was denied, the main court case will still proceed, and other legal actions are being considered at the EU level.

Meanwhile, an urgency procedure was launched to force the Irish Data Protection Commission (Meta’s lead EU regulator) to intervene — signaling growing EU pressure on Meta’s AI training practice.…read more

NIS 2 and gambling – a strategic imperative for gaming operators and their suppliers

dlapiper.com • 3 min read

🛡️The article outlines how the NIS 2 Directive applies to gambling operators and their suppliers. It details cybersecurity obligations, implementation examples, and the steps required for compliance across the EU… read more

Ireland: Collective redress action against Microsoft

fieldfisher.com • 4 min read

⚖️The Irish Council for Civil Liberties (ICCL) has launched Ireland’s first representative data privacy lawsuit against Microsoft, challenging its real-time bidding (RTB) advertising system on the grounds that it violates the GDPR. The ICCL claims that RTB unlawfully broadcasts personal data without adequate safeguards or transparency.
The case has been brought under Ireland’s new collective redress law and could set a major precedent for privacy compliance and the enforcement of collective consumer rights across the EU… read more

Germany: Must online platforms provide a guest checkout?

hoganlovells.com • 3 min read

💡A recent ruling by the Higher Regional Court of Hamburg held that online retailers in Germany are not required to offer guest checkouts, provided mandatory accounts are necessary, proportionate, and comply with GDPR principles—marking a win for e-commerce platforms amid ongoing debate… read more

--

Get connected with us on LinkedIn or by subscribing to our weekly newsletter. We do our best to select the most interesting and relevant content in our field and deliver it to you in a bite-sized format, so you can stay up to date on topics such as Privacy Management & Compliance.

Image source: Replika press kit


Might we suggest

Article
SypherPrivacyTalks - April 2025 - Week 16
Article
SypherPrivacyTalks - May 2025 - Week 21
Article
SypherPrivacyTalks - June 2025 - Week 24