GDPR and CNIL: protecting data for real
The GDPR is nearly ten years old, but many organisations still settle for surface-level compliance: a copied privacy policy, an incomplete register, tiresome cookie banners. Protecting personal data for real calls for a different starting point: not fear of a penalty, but respect for the people whose data you process. It begins with knowing what you collect, why, where it is stored and with whom it is shared. The regulation's principles remain a simple compass: legitimate purpose, minimisation, limited retention, proportionate security, and the ability to respond to people's rights. The CNIL, for its part, publishes a body of very concrete recommendations that are valuable well beyond France and help settle real cases. This guide brings together the analyses on personal data, privacy and the regulator's role, to help leaders and individuals alike tell the essential from the noise. The goal is not to pile up legal documents, but to anchor a few lasting habits: collect less, secure what matters, document what you do, and treat a data breach as an incident to be managed, not a secret to be buried.
CybersecurityFrance's worst data breaches of 2026: the ranking (spoiler: you're in it)6,167 data breaches in 2025, a record, and 2026 is already doing better. From the Almerys brother-in-law nobody ever introduced you to, to the teenager who cracked open the ANTS vault by changing one digit in a URL, here is the ranking of France's worst breaches of the…
Artificial IntelligenceVibe coding must not become the Wild WestVibe coding is brilliant, but most developers overlook two things that, without their knowing it, sink projects: compliance and security. How to ship AI-based applications that actually hold up.
CybersecurityCNIL 2025 Report, reading a regulator in transitionData processors, AI, cross-regulation, misleading record figures: what the CNIL's 2025 annual report really says about regulation in 2026.
CybersecurityHong Kong: when refusing to hand over your password becomes a confessionIt is the latest extension of the implementation rules under Hong Kong's national security law. Police can now compel anyone suspected of endangering national security to hand over their password, their decryption method, or…
SocietyPokémon Go, 30 billion images and delivery robots: anatomy of an invisible consentPokémon Go: 30 billion images of players are now used to train delivery robots. It was all in the terms of service. But was the consent truly informed?
CybersecurityAn innocent photo can turn your phone into a silent spyA WhatsApp message arrives. A photo downloads on its own, the way it happens millions of times a day. You do not click. You do not open it. You do nothing. And yet your phone has become a spy
CybersecurityNew year: what are your cybersecurity resolutions?The new year gives us a chance to ask ourselves a simple, honest question about cybersecurity: am I ready for the digital world as it is today, or as I wish it were?
SocietyData breach at MédecinDirect: when digital health forgets what matters mostThe cyberattack that hit MédecinDirect, disclosed in early December, affects up to 323,000 patients. The number is already enormous. But that is not what should worry us the most.
CybersecurityFine for X, offensive against Telegram: Europe is waging war on digital freedomOn Friday 5 December 2025, the European Commission fined X, Elon Musk's platform, 120 million euros. On the surface: a simple slap on the wrist for failing to comply with the Digital Services Act (DSA). In reality?
CybersecuritySpyware: when the State outsources the spying on your phonesANSSI has just released a detailed report on the threat targeting mobile phones. It covers vulnerabilities, "zero-click" infection chains, cybercriminals... but also a private surveillance market that sells spying capabilities...
CybersecurityGmail reads your emails to train its AI, and you probably haven't turned it offGoogle has just crossed a line. And as so often, without fanfare. For a little while now, Gmail can automatically analyse the content of your messages and attachments, not to filter spam or offer you an automatic reply, but...
CybersecurityChat Control 2.0: Europe is playing with our digital freedomsIt is one small line in an obscure text. An article barely mentioned in the mainstream press. A closed-door meeting in Brussels.
SocietyNovember 13, 2025. Commemorate, or keep looking away?Ten years since Paris froze in horror. Ten years since French citizens were gunned down on a terrace, in a concert hall, in the streets of their own country.
PsychologyClear brain, dense life: toward a mental hygiene for the 21st centuryWe complain of being tired, distracted, overwhelmed. But look closely and we treat ourselves like machines. Notifications in bursts. Task switching every 12 seconds.
Don't miss the next analysis