News & Analysis as of

Data Controller

Update AVGB: Rechten van betrokkenen (inzage, rectificatie en overdraagbaarheid) (Dutch)

by Dentons on

When processing personal data, organisations are obliged to inform data subjects on their rights. As set out in our previous GDPR Update, the introduction of the GDPR substantially affects the existing information obligation...more

GDPR Update: Rights of Data Subjects (access, rectification and portability)

by Dentons on

As a follow-up to last month’s update in this June edition of the GDPR Update, we again discuss certain data subjects’ rights. This time we will go into the right to access, rectification and data portability....more

French Data Protection Authority Approves Implementation of Biometric Authentication Tools in Banking Sector

by Jones Day on

On May 29, 2017, the French Data Protection Authority (Commission Nationale Informatique et Libertés, or "CNIL") announced that it had authorized nine banking institutions to implement, on an experimental basis,...more

French Data Protection Authority Clarifies Responsibilities for the Use of Cookies in Online Advertising

by Jones Day on

In the online advertising sector, achieving a successful advertising campaign often involves implementing cookies (small files stored on computers or mobile devices that contain information on the user's browsing history),...more

How to Comply with the New General Data Protection Regulation: A Q&A with Partner Gail Crawford and Counsel Ulrich Wuermeling

by Latham & Watkins LLP on

In less than one year, from 25 May 2018, the General Data Protection Regulation (GDPR or Regulation) will become enforceable. The GDPR introduces a rigorous, far-reaching privacy framework for businesses that operate, target...more

The Countdown Continues: One Year to the GDPR

by Latham & Watkins LLP on

The General Data Protection Regulation (GDPR or Regulation) will become applicable in one year, as of May 25, 2018. A lot has happened since we set out the key provisions of the Regulation last year....more

The Information Commissioner’s Guidance on Consent under the GDPR

by Ropes & Gray LLP on

The General Data Protection Regulation (the “GDPR”) came into force in May 2016 and makes numerous changes to European data protection laws. Among other things, the GDPR updates the rules on the use of consent by data...more

Guide from the Italian Data Protection Authority on the Application of the GDPR: Recommendations on How to Get Started!

by McDermott Will & Emery on

On April 28, 2017, the Italian Data Privacy Authority published a Guide on the application of the new General Data Protection Regulation (GDPR). The Guide does not set out implementing rules of the GDPR but rather provides a...more

Court Of Appeal Provides Further Guidance For Data Controllers On Handling Subject Access Requests

by Dentons on

In the first April edition of our employment law round-up we considered the Court of Appeal's decision in Dawson–Damer v. Taylor Wessing LLP [2017] EWCA Civ 74, which (amongst other things) concerned the relevance of an...more

Monthly newsletter GDPR: Accountability Privacy by Design and Privacy by Default (Dutch)

by Dentons on

This fourth edition of the GDPR newsletter, the first after our tie-up with Dentons, deals with the (new) data protection principles of accountability, privacy by design and privacy by default....more

Monthly newsletter GDPR: Accountability Privacy by Design and Privacy by Default

by Dentons on

This fourth edition of the GDPR newsletter, the first after our tie-up with Dentons, deals with the (new) data protection principles of accountability, privacy by design and privacy by default....more

Meritas Data Protection & Privacy Law GDPR: New territorial scope, one stop shop and consistency mechanisms

One of the undeniable highlights of the new General Data Protection Regulation (GDPR), which will come into force on 25 May 2018, is its extended territorial scope. The new geographical reach does not only come as a reaction...more

Meritas Data Protection & Privacy The GDPR - new data governance obligations on businesses

Let’s start with the good news. The current obligation to register with the national data protection authority will be abolished. Along with the fines and criminal offences of failing to do so. In its place, the...more

Subject Access Requests: "not an obligation to leave no stone unturned"

by White & Case LLP on

The English Court of Appeal has ruled in two recent cases that subject access requests are generally valid, and businesses must comply with such requests, even if they are made for collateral purposes, such as collecting...more

A Sea Change for Beneficiaries' Right to Information?

by McDermott Will & Emery on

The Court of Appeal’s ruling in Dawson-Damer v Taylor Wessing offers beneficiaries rights of access to personal data held by trustees and their legal advisers. This is a landmark case in which our clients, the claimants,...more

Data subject access requests: proportionality and legal professional privilege

by Dentons on

By way of wider context, the parties in Holyoake v. (1) Candy and (2) CPC Group Limited [2017] EWHC 52 (QB), are currently engaged in a multi-million pound dispute relating to a loan agreement. Separate to these proceedings...more

Use Data from the EU? It’s Time to Update Your Data Breach Notification Procedures

by Fisher Phillips on

This post is the second in a three-part series. With the EU General Data Protection Regulation (GDPR) looming near for organizations that process the data of European citizens, compliance is top-of-mind for...more

Reminder to register your database in the National Registry

by Dentons on

External Circular No. 001 was issued on November 8, 2016 and requires that natural persons, entities of a public nature other than mixed-economy companies and private legal entities that are not registered in the chambers of...more

Only six months remain to register your database with the RNBD

by Dentons on

Your Data Controller must register your databases in the RNBD according to the instructions in the user manual of the National Registration Database. The Superintendency of Industry and Commerce, Habeas Data Management...more

Data Maps and Data Inventories: A Comparison of US Law, EU Law, and Soon-To-Be EU Law

by Bryan Cave on

In the United States companies are not required to inventory the type of data that they maintain, or map where that data flows in (and out) of their organization. That said, knowing the type of data that you collect, where it...more

The EU’s Article 29 Working Party Releases Guidelines Ahead of GDPR Implementation and Addresses the Privacy Shield

by WilmerHale on

The EU’s Article 29 Working Party (WP29) held a plenary meeting in early December 2016. At the meeting, the WP29 adopted guidelines and issued FAQs relating to the EU General Data Protection Regulation’s (GDPR’s) provisions...more

WP29 Issues Guidance on the Right to Data Portability under the GDPR

by Alston & Bird on

Late last week, the Article 29 Working Party (“WP29”) issued detailed guidance on companies’ obligations under three key provisions of the General Data Protection Regulation (“GDPR”). This is part two of a three-part Alston...more

WP29’s Guidance on the Lead Supervisory Authority

by Alston & Bird on

Late last week, the Article 29 Working Party (“WP29”) issued detailed guidance on companies’ obligations under three key provisions of the General Data Protection Regulation (GDPR). This is part three of a three-part Alston...more

New National Privacy Law in Qatar

by Dentons on

The State of Qatar has announced that it has issued Law No. 13 of 2016 Concerning Privacy and Protection of Personal Data (the Law). Once gazetted, the Law will officially be the first national level legal regime...more

France adopts Law for a Digital Republic: key data provisions are a jump-start on the GDPR

by DLA Piper on

France’s Law for a Digital Republic, under discussion for more than a year, has at last been published. Some key provisions of the law, published in early October, are immediately effective and anticipate the GDPR’s...more

94 Results
|
View per page
Page: of 4
Cybersecurity

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.