News & Analysis as of

Cybersecurity Data Protection Authority

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Hogan Lovells

Retention of corporate email metadata, news from the Italian Data Protection Authority

Hogan Lovells on

The Italian Data Protection Authority (“Garante per la Protezione dei Dati Personali”) published a provision in which it established that some services for e-mail management are configured to collect and store metadata...more

Hogan Lovells

Brazil’s Data Protection Authority releases guidance on data protection officer responsibilities and duties

Hogan Lovells on

On July 16, 2024, the National Data Protection Authority (ANPD) published Resolution No. 18/2024 (Resolution 18) outlining rules on the appointment, definition, duties and activities of a Data Protection Officer (DPO) in...more

A&O Shearman

UK - When is a data protection claim not a data protection claim?

A&O Shearman on

In a recent case, Pacini & Anor v Dow Jones & Company Inc., the publisher of the Wall Street Journal unsuccessfully applied to strike out a data protection claim concerning two historic articles....more

Hogan Lovells

Public consultation and major updates from French Data Protection Authority on health data and research

Hogan Lovells on

On May 16, 2024, the CNIL announced a critical public consultation and three significant updates to adapt health research regulations in France. These updates, focusing on remote quality control, home monitoring, and...more

Hogan Lovells

Dutch DPA issues guidelines on data scraping

Hogan Lovells on

On 1 May 2024, the Dutch Data Protection Authority (DPA) issued guidelines on data scraping used by private organisations in relation to GDPR principles including ‘lawfulness’. The guidelines could affect the way GenAI...more

Hogan Lovells

AI deployment: German DPAs issue guidance on data protection compliance

Hogan Lovells on

On 6 May 2024, the German data protection authorities (“DPAs”) issued an extensive guidance paper on the GDPR compliant deployment of artificial intelligence (“AI”) applications. This article summarizes the key findings of...more

Hogan Lovells

Bilan de l’activité contentieuse de la CNIL en 2023 : un rétroviseur pour lire l’avenir

Hogan Lovells on

Il n’y a pas de question plus difficile en matière contentieuse que celle de l’anticipation des risques de faire l’objet d’un contrôle ou d’une sanction. C’est la raison pour laquelle il est utile de se nourrir des évolutions...more

Mayer Brown

EDPB Provides Guidance On Determining A 'Main Establishment' And The 'One-Stop-Shop' Mechanism

Mayer Brown on

The opinion was issued in response to a request by the French Data Protection Authority and provides guidance on the conditions for determining a controller's main establishment where that controller has establishments in...more

Robinson+Cole Data Privacy + Security Insider

Italian Data Protection Authority Alleges Breaches of GDPR by ChatGPT Platform

Robinson+Cole Data Privacy + Security Insider on

On January 29, 2024, the Italian Data Protection Authority (Garante) notified OpenAI of breaches of data protection laws involving its ChatGPT platform....more

Hogan Lovells

Brazilian Data Protection Authority opens a call for contribution for its Regulatory Sandbox for Artificial Intelligence and Data...

Hogan Lovells on

On October 3, the Brazilian National Data Protection Authority (“ANPD”) announced the commencement of a public consultation process regarding its pilot regulatory sandbox program ("Consultation"). All interested parties can...more

A&O Shearman

France CNIL calls for comments on its draft recommendation on security of critical data processing operations

A&O Shearman on

The French supervisory authority (CNIL) asked for public comments on its draft recommendation on data security in relation to processing that presents particularly high risks to individuals or to the public interest (the...more

Hogan Lovells

Public consultation on binding rules for phone marketing – Spanish update

Hogan Lovells on

The Spanish Data Protection Authority has opened a public consultation process to obtain comments for an incoming decision establishing the rules for commercial communications via telephone. This decision will be binding upon...more

Hogan Lovells

Comprendre et tirer les leçons de la riche activité de la CNIL de ces derniers mois

Hogan Lovells on

Les derniers mois ont vu une activité bouillonnante de la CNIL avec l’adoption de nombreuses délibérations. Nous avons analysé ces décisions pour comprendre les principales orientations prises par l’autorité française....more

Hogan Lovells

French CNIL is setting the tone for 2023: patients data and medical research on its radar

Hogan Lovells on

While the French Data Protection Authority (the "CNIL") has consistently emphasized the importance of protecting health data, there will be even more focus for 2023 with more investigations and sanctions in this sector. The...more

A&O Shearman

DSK publishes decision on access by third country public authorities to data processed by processors in the EEA

A&O Shearman on

The German Data Protection Conference of supervisory authorities (DSK) issued a decision on how to evaluate the risk of personal data being accessed by non-EEA public authorities, or by a parent company, when processed by a...more

Hogan Lovells

German DPA comments on Executive Order for EU-U.S. Data Privacy Framework

Hogan Lovells on

Ever since the White House issued its Executive Order to pave a path for the new EU-U.S. Data Privacy Framework, stakeholders have provided both praise and criticism about whether the Executive Order sufficiently addresses...more

BCLP

Ransomware - why paying up earns no credit with the UK's Data Protection Authority and others

BCLP on

In a joint letter this summer, the UK’s data protection regulator (the ICO) and the UK’s National Cyber Security Centre (the NCSC) sought to convey some key messages to the legal profession relevant to advising clients...more

Orrick, Herrington & Sutcliffe LLP

Volkswagen Fined 1.1 Million Euros for GDPR Violations During Test Drives

Orrick, Herrington & Sutcliffe LLP on

On 26 July 2022, the Lower Saxony data protection authority ("Lower Saxony DPA") announced that it has imposed a fine of 1.1 million euros on Volkswagen ("VW") due to GDPR violations. It found that VW has violated data...more

Orrick, Herrington & Sutcliffe LLP

French and Italian Data Protection Authorities Take Issue with Google Analytics: Analysis and Key Takeaways

Orrick, Herrington & Sutcliffe LLP on

Google Analytics remains a hot topic for businesses and apparently also for data protection authorities (DPAs). With the advent of these new decisions and the new CNIL guidance, businesses have an even harder time justifying...more

Robinson+Cole Data Privacy + Security Insider

Google Analytics Runs Afoul of GDPR

Robinson+Cole Data Privacy + Security Insider on

Recent reports from several European Data Protection Authorities (DPAs), the bodies empowered to regulate consumer privacy under the General Data Protection Regulation (GDPR), have ruled that Google Analytics violates the...more

Hogan Lovells

European Commission criticizes Dutch DPA's interpretation of legitimate interest

Hogan Lovells on

The European Commission (EC) has proactively reached out to the Dutch Data Protection Authority (DPA) to criticize its interpretation of legitimate interest under the GDPR. The criticism is in response to enforcement actions...more

Hogan Lovells

Reform of the procedure before the French Data Protection Authority

Hogan Lovells on

On 24 January and 8 April 2022, the procedure before the French Data Protection Authority (CNIL) was reformed with the aim notably to better respond to the growing number of complaints that the CNIL receives each year...more

Dechert LLP

Dubai data protection authority plans to launch international privacy risk index and update international data transfer mechanisms

Dechert LLP on

The Dubai International Financial Centre’s ("DIFC") data protection authority has published its proposals for updated tools and guidance on international data transfers. A consultation on these proposals by the DIFC...more

Orrick, Herrington & Sutcliffe LLP

8 Things You Need to Know About United Kingdom (UK) International Data Transfers

Orrick, Herrington & Sutcliffe LLP on

Update: UK international data transfer agreement and UK addendum to the EU standard contractual clauses now in force In February, the Information Commissioner’s Office (“ICO”), the United Kingdom (UK) data protection...more

Hogan Lovells

ANPD publishes Resolution regulating the application of LGPD provisions to small businesses

Hogan Lovells on

On January 27, 2022, the National Data Protection Authority (ANPD) published Resolution nr. 2, regulating the application of certain provisions of the General Personal Data Protection Act (LGPD) to small processing agents,...more

207 Results
 / 
View per page
Page: of 9
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide