Cynthia O'Donoghue

Cynthia O'Donoghue

Reed Smith

Contact  |  View Bio  |  RSS

Latest Publications

Share:

“Battle-ready” Privacy Shield gets muted welcome from EU data protection authorities

On 26 July, the Article 29 Data Protection Working Party (WP29) released a statement outlining its opinion on the EU-U.S. Privacy Shield, which was adopted by the European Commission earlier this month. After praising the...more

7/28/2016 - Article 29 Working Party (WP29) Binding Corporate Rules Data Controller Data Processors Data Protection Authority EU EU-US Privacy Shield European Commission International Data Transfers Ombudsman Personal Data Surveillance U.S. Commerce Department

European Commission Publishes Communication on Cybersecurity

On 5 July, the European Commission (“EC”) published a communication outlining measures to improve resilience to cyber incidents, improve cooperation and information sharing, and promote innovation and competition in the...more

7/20/2016 - Critical Infrastructure Sectors Cyber Attacks Cybersecurity ENISA EU European Commission Information Sharing Member State NIS Directive

Electronic Signature Regulation Now Effective

Tasked with harmonising the disparate member state legislation that implemented the eSignatures Directive (Directive 1999/93/EC), Regulation (EU) N°910/2014 (the “eIDAS” Regulation) became effective 1 July this year. The...more

7/20/2016 - Authentication Certificate of Authority Digital Signature Standards Digital Single Market E-Signatures EU EU Directive FinTech Mobile Devices Mobile Health Apps Personal Data

Practical Cybersecurity Guidance from TheCityUK and Marsh

TheCityUK and Marsh have jointly published a report urging UK financial and related professional services sectors to step up their efforts to address cyber risk. The report (headed “Cyber and the City”) suggests that...more

7/19/2016 - Board of Directors Counterparty Risk Cyber Attacks Cyber Insurance Cyber Threats Cybersecurity Financial Services Industry New Guidance Reputational Injury Risk Management UK

Brexit: Baroness Neville-Rolfe on Data Implications

At the beginning of July, Baroness Neville-Rolfe gave a speech at the annual Privacy Laws & Business conference, outlining the government’s stance on the implications of Brexit for a range of data issues including the GDPR,...more

7/18/2016 - Cybersecurity Data Protection EU General Data Protection Regulation (GDPR) ICO International Data Transfers Internet of Things Personal Data Proposed Legislation UK UK Brexit

CJEU Attorney General Opinion Seeks to Restrict the Interpretation of ‘Establishment’

In June, the Attorney General (“AG”) of the Court of Justice of the European Union (“CJEU”) issued his opinion (English translation pending) in the case of Verein für Konsumenteninformation v Amazon EU Sàrl (Case C-191/15)....more

7/15/2016 - Amazon CJEU Data Controller Data Processors EU EU Data Protection Laws Member State Personal Data Principle Place of Business

EU-U.S. Data Privacy Shield adopted – a phoenix rising from the ashes of Safe Harbour?

The EU-U.S. Privacy Shield has been adopted by the European Commission. On 12 July 2016, following a positive vote from the member states (the Article 31 Committee) on 8 July, the EU College of Commissioners formally adopted...more

7/15/2016 - Article 29 Working Party (WP29) Data Retention EU EU-US Privacy Shield European Commission International Data Transfers Ombudsman Personal Data Popular Schrems v Data Protection Commissioner Self-Certification Standard Contractual Clauses Surveillance U.S. Commerce Department US-EU Safe Harbor Framework

Trade Secrets Directive Adopted by the European Council

Almost three years after its initial proposal, the Trade Secrets Directive has been formally adopted by the European Council and published in the Official Journal on 15 June (2016/943/EU). Member states will have until 9 June...more

7/6/2016 - Confidential Information EU EU Council of Ministers EU Trade Secrets Directive Free Speech Intellectual Property Protection Journalists Remedies Trade Secrets UK Whistleblowers

Draft Privacy Guidelines for Mobile Health App Developers Published

Mobile health or ‘mHealth’ applications commonly raise complex privacy issues as a result of processing large amounts of sensitive personal data. Following the publication of its Green Paper on the topic in 2014, the European...more

7/6/2016 - App Developers Draft Guidance EU EU Data Protection Laws European Commission General Data Protection Regulation (GDPR) Mobile Health Apps Personal Data

What Brexit Means for Data Protection

For global pharmaceutical and medical device companies handling personal data in the European Union (EU) or engaged in transatlantic data transfers, some of the many questions created by the Brexit vote include what its...more

7/6/2016 - EU EU-US Privacy Shield General Data Protection Regulation (GDPR) ICO International Data Transfers Manufacturers Medical Devices Personal Data Pharmaceutical Industry UK UK Brexit UK Data Protection Act

Data Protection in a Post-Brexit Landscape

The United Kingdom’s vote to leave the European Union coincides with a seismic change in data protection law. Once Article 50 of the Lisbon Treaty is invoked, there will be a period of two years to complete negotiations and...more

6/29/2016 - Article 50 Treaty of the EU Data Controller EU EU-US Privacy Shield General Data Protection Regulation (GDPR) ICO International Data Transfers Personal Data Popular Treaty of Lisbon UK UK Brexit UK Data Protection Act

Unprecedented High Court Decision Orders the Destruction of Confidential Information on the Defendants’ Computers

The High Court in Arthur J. Gallagher Services (UK) Limited and others v Skriptchenkov and others [2016] EWHC 603, granted 11 February a mandatory injunction ordering the inspection and imaging of electronic devices and...more

6/21/2016 - Confidential Information Document Destruction Electronically Stored Information Former Employee Intellectual Property Protection Misappropriation Trade Secrets UK

German Data Protection Authority fines companies for transferring data to the United States

Following the CJEU’s judgment of October 2015 invalidating the European Commission’s Safe Harbor Decision, the Data Protection Authority Hamburg (“DPA Hamburg“) started investigations against 35 internationally operating...more

6/9/2016 - Article 29 Working Party (WP29) Data Protection Authority Fines Germany International Data Transfers Personal Data Popular Standard Contractual Clauses US-EU Safe Harbor Framework

UK relies on EU Treaty exception to avoid “anti-FISA” data transfers clause in European General Data Protection Regulation...

In a written statement to Parliament, Baroness Neville-Rolfe confirmed the UK Government’s view that the Treaty on the Functioning of the European Union (“TFEU”) means that Article 48 of the GDPR does not apply to the UK....more

5/25/2016 - Edward Snowden EU Foreign Intelligence Surveillance Act General Data Protection Regulation (GDPR) International Data Transfers Opt-In Personal Data Surveillance TFEU UK

Cyber Security Takes Centre Stage in UK Government’s Strategy

The UK Department for Culture, Media and Sport recently released a statement on cyber security, in which it urged businesses to take better care to protect against cyber criminals. This statement follows publication of its...more

5/25/2016 - Cyber Attacks Cyber Crimes Cyber Threats Cybersecurity Data Breach Data Breach Plans Data Protection UK

The Network and Information Security Directive: Serious Cyber Attacks Will Require Notification

The Council of the European Union adopted the EU Network and Information Security (NIS) Directive (the ‘Directive’) 17 May, ready for final adoption by the European Parliament. The Directive, initially proposed in 2013, has...more

5/23/2016 - Critical Infrastructure Sectors Cyber Attacks Cyber Incident Reporting Cyber Threats Cybersecurity Data Breach Digital Service Providers EU EU Council of Ministers General Data Protection Regulation (GDPR) Member State New Legislation NIS Directive Notice Requirements

Advocate General’s opinion states that IP addresses are Personal Data

On 12 May, the Advocate General’s (AG) opinion in Case C-582/14 Patrick Breyer v Germany was released, stating that dynamic IP addresses should be considered personal data for the purposes of EU data protection law. Although...more

5/20/2016 - Advocate General Data Collection EU EU Data Protection Laws European Court of Justice (ECJ) General Data Protection Regulation (GDPR) Germany Notice Requirements Personal Data Websites

Galloway v Frazer & Others – A glimpse to the future of data protection litigation

On 27 January, the High Court of Northern Ireland granted British MP George Galloway leave to serve proceedings on Google Inc. out of the jurisdiction. The application was based on a variety of claims including libel,...more

5/18/2016 - Data Controller Data Processors Data Protection Authority EU General Data Protection Regulation (GDPR) Google Northern Ireland Online Videos Personal Data UK Data Protection Act YouTube

The European Cloud Initiative: Will Data Protection Requirements Cause Stormy Weather?

The European Commission (EC) recently proposed the European Cloud Initiative (ECI): a plan to create a world-class data infrastructure to store, manage, transport and process data at high speeds. The primary aims are to...more

5/18/2016 - Anonymization Cloud Computing Digital Single Market EU EU Data Protection Laws European Commission General Data Protection Regulation (GDPR) Infrastructure Personal Data

PCI Council Reacts Again to Data Security Threats

Responding to the increasingly significant threats to customer payment information, the Payment Card Industry Security Standards Council (‘PCI SSC’) has published an update to its data security standard (‘PCI DSS’). Version...more

5/18/2016 - Authentication Biometric Information Credit Cards Data Protection Data Security PCI-DSS Standard

European Commission Publishes Proposal for Signing the EU-U.S. Umbrella Agreement

The EU-U.S. data protection Umbrella Agreement consists of a framework of principles and safeguards for trans-Atlantic transfers of personal data (such as criminal records, names and addresses) in relation to the prevention,...more

5/18/2016 - Consent Counter-Terrorist Criminal Investigations Data Retention Data Security EU European Commission International Data Transfers Judicial Redress Act Law Enforcement Personal Data Umbrella Agreement

Beyond Bitcoin: Blockchain - The Essential Building Block in Designing the Future

Bitcoin relies on its peer-to-peer network to do two things: maintain the authoritative ledger of transactions and issue new currency. The application of the blockchain is anticipated to extend far beyond financial services...more

5/12/2016 - Bitcoin Block Chain Corporate Counsel EU Financial Sector Popular Regulatory Standards Underwriting Young Lawyers

EU Trade Mark Regulation (EU) 2015/2424 in force

On 23 March 2016, European Union Trade Mark Regulation (EU) 2015/2424 came into force. The new Regulation amends Community Trade Mark Regulation 207/2009/EC, and makes a number of procedural and substantive changes to EU...more

5/5/2016 - Community Trademark Customs EU European Union Intellectual Property Office (EUIPO) European Union Trade Mark (EUTM) Intellectual Property Protection New Guidance New Regulations OHIM Trademark Infringement Trademarks

Turkish Parliament Enacts New Data Protection Law

In a step toward its accession to the EU, Turkey has enacted its first comprehensive Data Protection Law. The law was passed by the Turkish Parliament 24 March and published in the Official Gazette 7 April....more

5/5/2016 - Data Controller Data Processors Data Protection EU EU Data Protection Laws International Data Transfers New Legislation Personal Data Prior Express Consent Turkey

131 Results
|
View per page
Page: of 6

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×