CNIL

News & Analysis as of

New Anti-Corruption Law Creates Changes to Whistleblower Provisions in France

On December 10th, France’s National Assembly published a new law on transparency and anti-corruption. As a result France is expected to begin instituting newer and stronger protections for whistleblowers under the updated...more

Connected or Automated Vehicles: The European Commission Presents its Strategy for Europe

On 30 November 2016 the European Commission (“Commission” or “EC”) presented its Communication on connected cars for Europe, under the more formal denomination “A European Strategy on Cooperative Intelligent Transport Systems...more

France adopts Law for a Digital Republic: key data provisions are a jump-start on the GDPR

France’s Law for a Digital Republic, under discussion for more than a year, has at last been published. Some key provisions of the law, published in early October, are immediately effective and anticipate the GDPR’s...more

The French Digital Republic Act: the New Powers of the French Data Protection Authority and Enhanced Rights of Individuals

On October 7, the French Digital Republic Act (the “Act”) was adopted following a widely-publicized consultation process. The Act amends the French Data Protection Act, and also modifies French law in various domains,...more

And suddenly, an ancillary law significantly changes the scope of sanctions in France well in advance of the General Data...

French regulatory framework is undergoing an important shift in terms of sanctions imposed by the French Data Protection Authority (the ‘CNIL’) in case of non-compliance with French Data Protection Law as the administrative...more

Update from the French Data Protection Authority on the compliance package for connected vehicles

The market of the so-called “connected vehicles” has been considerably growing since 2015. According to a recent study by AlixPartners, 78 million of connected vehicles will be commercialized in 2018, generating a EUR40...more

French Data Protection Authority Reveals the Scope of its Connected Car “Compliance Package”

On October 3, 2016, during a conference organized by the French Comity of Car Manufacturers (“CCFA”) during the Paris Motor Show, Mrs. Sophie Nerbonne, the Compliance Director of the French Data Protection Authority...more

France: new rules for processing patient health data

France’s Law for the Modernization of the Health System, adopted earlier this year, applies to all processing of health data for the purpose of evaluating or analyzing medical treatments and preventive actions....more

France’s national data protection commission orders Microsoft to protect its users’ data

An investigation by France’s National Data Protection Commission (CNIL) has found that Windows 10 has been “collecting excessive user data” and has been tracking users’ web browsing without their consent. The CNIL has ordered...more

EU-US Data Transfers?: An update on actions taken by European DPAs

After the European Court of Justice invalidated Safe Harbor on October 6, ?2015, the Article 29 Working Party announced in an October 16, 2015 statement that US companies that were Safe Harbor certified had until the end of...more

French Data Protection Wants to Force Google to Extend the Right To Be Delisted to All the Search Engine’s Extensions

On March 10, 2016, the French data protection agency (« CNIL ») pronounced a €100.000 ($111,715) fine against Google Inc. for failure to comply with its formal injunction of May, 2015 ordering the company to extend delisting...more

What Impact Will the New French Data Processing Standard Have on eDiscovery?

On January 28, the French data protection authority, CNIL, issued Single Authorization Decision No. 46 (AU-46), which governs how certain companies request permission to process personal data for litigation. The French...more

France anticipating the GDPR

A bill currently under discussion before the French Parliament should result in tightened sanctions against organizations found to be in breach of data protection law. New sanctions provided under the bill are a reflection of...more

The CNIL sets expectations as to the ‘EU-U.S. Privacy Shield’ and starts implementing enforcement measures in case of Safe Harbor...

Further to the EU Commission press release on the “EU-U.S. Privacy Shield” and the Article 29 Working Party (WP29) statement illustrating that more discussions on the new arrangement are to come, the French CNIL (a) issued a...more

By jointly tackling Facebook, French regulators set an example to large international digital media companies – First prominent...

On February 8 and 9, 2016, the French Directorate-General for Competition, Consumer Affairs and Prevention of Fraud (the ‘DGCCRF’) and the French Data Protection Authority (the ‘CNIL’), through an obviously concerted action,...more

A New Dawn for Data Privacy in the Old World

After the European Court of Justice gutted the U.S.-EU Safe Harbor agreement in its landmark decision in Schrems v. Facebook, a number of EU data protection authorities (DPAs) issued clarifying statements. Here is a look at...more

The French CNIL officially requires the use of EU Model Clauses as a quick fix for businesses impacted by the recent Safe Harbor...

On 19 November, the Commission nationale de l’informatique et des libertés (CNIL) published an article entitled ‘Safe Harbor: What should businesses do?’ and associated FAQs aimed at businesses impacted by the Court of...more

The Article 29 Working Party releases statement on Safe Harbor

Background On 16 October, the Article 29 Working Party released a statement (“Statement”) on the implications of the Court of Justice of the European Union’s (“CJEU”) judgment in Maximillian Schrems v Data Protection...more

No Safe Harbour? Immediate Implications for Employers

A landmark decision of the European Court of Justice (ECJ) has held that companies may no longer rely on “Safe Harbour” to justify transferring personal data from the European Union to the US, because the US Government has a...more

The Safe Harbor Ruling – FAQs and What Your Business Should Do Now

Overview questions - 1. I’m Safe Harbor certified and have seen news articles reporting that “Safe Harbor is invalid”. What does that mean? On 6 October, the European Court of Justice delivered a judgment which...more

Privacy & Cybersecurity Update - September 2015

Adviser to European Court of Justice Says US-EU Safe Harbor Should Be Declared Invalid - An advisory opinion issued by the advocate general to the European Court of Justice states that the U.S.-EU Safe Harbor should be...more

Google and the Right to be Forgotten: The French Data Protection Authority Takes the Matter Further

On June 12, 2015 the French Data Protection Authority (Commission Nationale de l’Informatique et des Libertés – CNIL) issued a notice ordering Google to draw all the consequences of the CJEU May 13, 2014 ruling and to apply...more

Google Declares “Non!” to French Privacy Regulator’s Demands that Google Apply the “Right to be Forgotten” Worldwide

In an expected but controversial move, Google has rejected a demand by the French Data Privacy authority CNIL to apply the European “Right to be Forgotten” worldwide. We have covered the E.U.’s Right to be Forgotten...more

UK’s First Ever Right To Be Forgotten Enforcement : Google In The Firing Line Again

The UK’s Information Commissioner’s Office (ICO) has made what appears to be its first “right to be forgotten” enforcement action against Google Inc. The ICO issued the notice on 18 August 2015, ordering Google to remove nine...more

Whistleblowing: An Employer’s Guide To Global Compliance

In This Issue: - Foreword - A Summary Across Five Continents - Law and Sanctions - The Legislative Framework: Whistleblower Protections Across the Globe - Global Differences: The Cultural...more

53 Results
|
View per page
Page: of 3
Popular Topics

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×