Latest Publications

Share:

New EU-US Data Privacy Framework

The European Commission has published its long-awaited draft of the new EU-US Data Privacy Framework, available here. The Data Privacy Framework will replace the Privacy Shield decision that was invalidated in July 2020 by...more

EU Personal Data Transfers Deadline: New SCCs must be put in place by December 27, 2022

Deadline to adopt EU Standard Contractual Clauses - Many organizations uses the European Union’s Standard Contractual Clauses (SCCs) to govern their transfers of personal data from the European Economic Area (EEA) to other...more

New UK International Data Transfer Agreement and a New Approach to UK Data Transfers

Do you transfer or receive personal data from the United Kingdom? If so, there are some important developments in the UK to factor into your data protection compliance program. In a major change of policy, some organizations...more

The New UK International Data Transfer Agreement Is Ready To Go From March 21, 2022

The UK Information Commissioner’s Office (ICO) has just published the final form of its much-anticipated new International Data Transfer Agreement (IDTA), along with a separate addendum to the EU SCCs (SCCs Addendum). The...more

Personal Data Transfers: Bye-bye, old SCCs – don’t forget the September 27th deadline! And the new UK International Data Transfer...

Out with the old EU Standard Contractual Clauses (as of September 27th) - Organizations that use the European Union’s Standard Contractual Clauses (SCCs) to govern their transfers of personal data from the European...more

News Roundup

The United Kingdom has been busy in the past couple of weeks starting to chart its independent course on data protection and privacy matters. We should keep in mind, however, that some of the more dramatic announcements...more

EU Data Protection Regulators Adopt Guidance on Personal Data Transfers

Many organizations around the world – and particularly companies in the United States – are directly affected by the EU Court of Justice’s July 2020 Schrems II decision casting doubt on the lawfulness of transferring personal...more

European Commission Adopts New Service Providers Standard Agreement (Controller-Processor SCCs)

The new standard agreement for service providers (which we’ll refer to as the Controller-Processor SCCs) adopted by the European Commission on June 4th was understandably a bit overshadowed by the release on the same date of...more

European Commission Adopts Final Version of New Data Transfer Agreement (SCCs)

The European Commission has adopted (at long last) an updated version of the Standard Contractual Clauses (SCCs), bringing this popular data transfer mechanism in line with the GDPR – and, we hope, the Schrems II decision. ...more

European Commission Publishes Draft Adequacy Decision for Transfers of Personal Data from the EU to the UK

In a solid step forward for EU to UK personal data transfers, the European Commission has published its draft adequacy decision that will (if finally adopted) permit personal data to flow freely from the EU to the UK. As we...more

Transferring Personal Data from the EU to the UK: Interim Solutions

The new 1,246-page Trade and Cooperation Agreement (TCA) between the United Kingdom and the European Union has ended the suspense over what restrictions will apply to the transfer of personal data between the EU and the UK...more

European Commission Publishes Proposed New Data Transfer Agreement

The European Commission has just published a consultation draft of the long-promised updated version of the Standard Contractual Clauses (SCCs). The SCCs are the most commonly used legal mechanism for transferring personal...more

EU Data Protection Regulators Issue Critical Draft Guidance on Personal Data Transfers

US companies and other organizations whose activities involve the use of personal information from Europe were unsettled by the EU Court of Justice’s July 2020 Schrems II decision that cast doubt on the lawfulness of...more

Privacy Shield Invalidated by Top EU Court; Standard Contractual Clauses Upheld (But There Are Still Major Challenges Ahead)

Organizations that transfer personal data from the European Union on the basis of the EU Commission-approved Standard Contractual Clauses (SCCs) may be breathing a sigh of relief on hearing that the SCCs have been upheld by...more

Do you transfer personal data from the EU to the US? Important Decision due July 16

Does your organization transfer personal data from the European Union to the US? If so, keep an eye out for a key decision on July 16 from the EU’s top court, the Court of Justice of the European Union. The Schrems II case...more

Coronavirus and Data Protection in the Workplace: The EDPB provides key guidance for companies with employees in Europe

Companies with employees in multiple European locations may well be feeling challenged both in keeping up with public health-driven guidance – and more recently, mandates – relating to the SARS-COV2 risks in the workplace. ...more

Brexit Transition Period: Guidance from Information Commissioner’s Office

Some US companies who do business in the UK are wondering whether they need to update their GDPR notices or take other steps now that the UK has officially left the European Union. The answer is: Not yet. The threat of a...more

Revised Guidelines on the Territorial Scope of the GDPR and Local Representatives

The European Data Protection Board (EDPB) recently published an updated version of its guidelines on the territorial scope of the GDPR, which were initially issued just over a year ago. The revised Guidelines do not...more

Brexit and UK-US data transfers: What’s the plan?

Despite the overall political uncertainty about Brexit, worries about a sudden stop to personal data transfers from the UK to the US are misplaced, deal or no deal.  There is, in fact, a plan, and it’s a reasonable, practical...more

That Local Representative Problem . . . and the New Guidelines on the Territorial Scope of the GDPR (Part I)

Companies based outside of the European Union sometimes find it challenging to determine whether the General Data Protection Regulation (GDPR) applies to them. And if they finally work out that the GDPR applies, they then...more

European Parliament Sets a Deadline for Reforming Privacy Shield – But Don’t Panic (Yet)

The European Parliament passed a resolution today strongly criticizing Privacy Shield and recommending that Privacy Shield be suspended as of September 1, 2018, if the US doesn’t shape up by that deadline.  Should US...more

Practical GDPR Steps for US-Headquartered Life Sciences Companies

In case you had not heard, the European Union is replacing its current privacy laws with a new, comprehensive General Data Protection Regulation (GDPR), which takes effect May 25, 2018. The essential principles of the EU’s...more

GDPR – European Commission Unveils Guidance Website

The European Commission has launched a new data protection website aimed at educating the public and helping businesses and other organizations comply with their new obligations under the General Data Protection Regulation....more

Working Towards GDPR Compliance – Practical Steps for US-Headquartered Life Sciences Companies

The European Union is replacing its current privacy laws with a new, comprehensive General Data Protection Regulation (GDPR), which takes effect May 25, 2018. The essential principles of the EU’s privacy laws are unchanged,...more

Consent under the GDPR: Official Guidance Now Available

One of the most striking changes to EU privacy law under the EU’s General Data Protection Regulation (which goes into effect May 25, 2018) is the very strict approach to user consent. For many years, companies operating in...more

93 Results
 / 
View per page
Page: of 4

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide