News & Analysis as of

CNIL

The single authorization regarding the processing of personal data resulting from the Sapin II Law is finally applicable

by DLA Piper on

Through its Decision No. 2017-191 dated 22 June, 2017 (published in the Official Journal on 25 July , 2017), the French Data Protection Authority ("CNIL") amended the Single Authorization No. AU-004 on whistleblowing systems....more

CNIL Decision on Whistleblower Hotlines

by Bryan Cave on

France's data protection authority, the CNIL – the Commission Nationale de l’Informatique et des Libertés -- recently published a decision (n° 2017-191) setting out new guidelines with respect to whistleblower hotlines. The...more

French Data Protection Authority Approves Implementation of Biometric Authentication Tools in Banking Sector

by Jones Day on

On May 29, 2017, the French Data Protection Authority (Commission Nationale Informatique et Libertés, or "CNIL") announced that it had authorized nine banking institutions to implement, on an experimental basis,...more

Global Privacy & Cybersecurity Update Vol. 14

by Jones Day on

New York Attorney General Announces Record Number of Data Breach Notices in 2016 - On March 21, 2017, the New York Attorney General's Office announced that it received 1,300 reported data breaches in 2016—a 60 percent...more

How to Comply with the New General Data Protection Regulation: A Q&A with Partner Gail Crawford and Counsel Ulrich Wuermeling

by Latham & Watkins LLP on

In less than one year, from 25 May 2018, the General Data Protection Regulation (GDPR or Regulation) will become enforceable. The GDPR introduces a rigorous, far-reaching privacy framework for businesses that operate, target...more

Duty to set up procedures enabling whistleblowing in France by 1st January 2018: Criminal / Labor consequences

by White & Case LLP on

On 11 December 2016, the law targeting transparency, anti-corruption and the modernization of the economy, also known as "Sapin II", entered into force, creating a new legal framework for defining and protecting...more

French CNIL Releases GDPR Compliance Toolkit

by Alston & Bird on

On March 15, 2017, the French data protection authority (CNIL) released its six step- GDPR compliance program together with GDPR-tailored templates for use by companies, the “GDPR Toolkit.” The GDPR Toolkit is helpful for...more

UK Launches Public Consultation on GDPR Consent Guidance

by Alston & Bird on

The General Data Protection Regulation (GDPR) will come into force on 25 May 2018, replacing UK’s Data Protection Act 1998 (DPA). It is yet unclear how Brexit will play out, yet in the meantime the United Kingdom is moving to...more

CNIL Launches Second Round of Public Consultation on GDPR

by Alston & Bird on

Last week, the French Data Protection Authority (“CNIL”) launched the second round of a public consultation on the General Data Protection Regulation (“GDPR”). The first public consultation was launched in June 2016 and...more

Spanish Ministry of Justice Launches Public Consultation on GDPR

by Alston & Bird on

On February 7, 2017, the Spanish Ministry of Justice launched a public consultation as a preliminary step before the drafting of a new bill implementing the General Data Protection Regulation (“GDPR”). The press release...more

New Anti-Corruption Law Creates Changes to Whistleblower Provisions in France

by Fisher Phillips on

On December 10th, France’s National Assembly published a new law on transparency and anti-corruption. As a result France is expected to begin instituting newer and stronger protections for whistleblowers under the updated...more

Connected or Automated Vehicles: The European Commission Presents its Strategy for Europe

by K&L Gates LLP on

On 30 November 2016 the European Commission (“Commission” or “EC”) presented its Communication on connected cars for Europe, under the more formal denomination “A European Strategy on Cooperative Intelligent Transport Systems...more

France adopts Law for a Digital Republic: key data provisions are a jump-start on the GDPR

by DLA Piper on

France’s Law for a Digital Republic, under discussion for more than a year, has at last been published. Some key provisions of the law, published in early October, are immediately effective and anticipate the GDPR’s...more

The French Digital Republic Act: the New Powers of the French Data Protection Authority and Enhanced Rights of Individuals

by Alston & Bird on

On October 7, the French Digital Republic Act (the “Act”) was adopted following a widely-publicized consultation process. The Act amends the French Data Protection Act, and also modifies French law in various domains,...more

And suddenly, an ancillary law significantly changes the scope of sanctions in France well in advance of the General Data...

by Reed Smith on

French regulatory framework is undergoing an important shift in terms of sanctions imposed by the French Data Protection Authority (the ‘CNIL’) in case of non-compliance with French Data Protection Law as the administrative...more

Update from the French Data Protection Authority on the compliance package for connected vehicles

by Reed Smith on

The market of the so-called “connected vehicles” has been considerably growing since 2015. According to a recent study by AlixPartners, 78 million of connected vehicles will be commercialized in 2018, generating a EUR40...more

French Data Protection Authority Reveals the Scope of its Connected Car “Compliance Package”

by K&L Gates LLP on

On October 3, 2016, during a conference organized by the French Comity of Car Manufacturers (“CCFA”) during the Paris Motor Show, Mrs. Sophie Nerbonne, the Compliance Director of the French Data Protection Authority...more

France: new rules for processing patient health data

by DLA Piper on

France’s Law for the Modernization of the Health System, adopted earlier this year, applies to all processing of health data for the purpose of evaluating or analyzing medical treatments and preventive actions....more

France’s national data protection commission orders Microsoft to protect its users’ data

An investigation by France’s National Data Protection Commission (CNIL) has found that Windows 10 has been “collecting excessive user data” and has been tracking users’ web browsing without their consent. The CNIL has ordered...more

EU-US Data Transfers?: An update on actions taken by European DPAs

After the European Court of Justice invalidated Safe Harbor on October 6, ?2015, the Article 29 Working Party announced in an October 16, 2015 statement that US companies that were Safe Harbor certified had until the end of...more

French Data Protection Wants to Force Google to Extend the Right To Be Delisted to All the Search Engine’s Extensions

On March 10, 2016, the French data protection agency (« CNIL ») pronounced a €100.000 ($111,715) fine against Google Inc. for failure to comply with its formal injunction of May, 2015 ordering the company to extend delisting...more

France anticipating the GDPR

by White & Case LLP on

A bill currently under discussion before the French Parliament should result in tightened sanctions against organizations found to be in breach of data protection law. New sanctions provided under the bill are a reflection of...more

The CNIL sets expectations as to the ‘EU-U.S. Privacy Shield’ and starts implementing enforcement measures in case of Safe Harbor...

by Reed Smith on

Further to the EU Commission press release on the “EU-U.S. Privacy Shield” and the Article 29 Working Party (WP29) statement illustrating that more discussions on the new arrangement are to come, the French CNIL (a) issued a...more

By jointly tackling Facebook, French regulators set an example to large international digital media companies – First prominent...

by Reed Smith on

On February 8 and 9, 2016, the French Directorate-General for Competition, Consumer Affairs and Prevention of Fraud (the ‘DGCCRF’) and the French Data Protection Authority (the ‘CNIL’), through an obviously concerted action,...more

The French CNIL officially requires the use of EU Model Clauses as a quick fix for businesses impacted by the recent Safe Harbor...

by Reed Smith on

On 19 November, the Commission nationale de l’informatique et des libertés (CNIL) published an article entitled ‘Safe Harbor: What should businesses do?’ and associated FAQs aimed at businesses impacted by the Court of...more

60 Results
|
View per page
Page: of 3
Cybersecurity

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.