News & Analysis as of

EU Data Protection Laws Corporate Counsel

White & Case LLP

The Data Act – the EU's bid to "ensure fairness in the digital environment and a competitive data market" – has been adopted

White & Case LLP on

On November 27, 2023, the European Union ("EU") adopted the final text of the Data Act, marking an effort to create a harmonized, cross-sectoral data sharing framework with the stated goal of ensuring fair access to and use...more

WilmerHale

Almost there: The European Parliament passes the EU Data Act, with new rules for data access, switching cloud providers and...

WilmerHale on

On November 9, 2023, the European Parliament adopted the EU Data Act, a new regulation providing harmonized rules on access to data, switching cloud providers and interoperability requirements across the EU. It is widely...more

Wilson Sonsini Goodrich & Rosati

EU’s Top Court Rules That Competition Authorities Can Consider Data Protection Breaches in Their Investigations

In a landmark judgment issued on July 4, 2023, the European top court, the Court of Justice (ECJ), ruled that competition authorities in the EU can consider a company’s compliance with the EU’s data protection rules when...more

Wilson Sonsini Goodrich & Rosati

EU Privacy Regulators Coordinate to Assess Compliance with the GDPR Rules on Data Protection Officers

On March 15, 2023, the European Data Protection Board (EDPB) announced a coordinated action on the role of the data protection officers (DPOs). The data protection authorities (DPAs) will ask DPOs a series of questions to...more

Wilson Sonsini Goodrich & Rosati

CJEU Finds That Companies Must Provide Individuals with the Identity of Data Recipients When Responding to Data Access Requests

On January 12, 2023, the Court of Justice of the European Union (CJEU) ruled that the data subject’s right of access to personal data requires controllers to provide the data subject with the identity of the companies that...more

Katten Muchin Rosenman LLP

#tiktokcringe: Targeted Ads Are No 'Legitimate Basis' for Data Processing, Says Italy's Data Privacy Protection Authority -...

European data authorities are increasingly united in policing data and privacy violations - It began, innocently enough, with an update to TikTok's privacy policy. Via upbeat messaging, users learned that they would soon...more

Orrick, Herrington & Sutcliffe LLP

8 Things You Need to Know About United Kingdom (UK) International Data Transfers

Update: UK international data transfer agreement and UK addendum to the EU standard contractual clauses now in force In February, the Information Commissioner’s Office (“ICO”), the United Kingdom (UK) data protection...more

Dechert LLP

UK Court of Appeal considers territorial scope of GDPR

Dechert LLP on

A recent UK Court of Appeal decision highlights ongoing uncertainty regarding the jurisdictional reach of the GDPR and invites intervention from the Information Commissioner’s Office. ...more

Wyrick Robbins Yates & Ponton LLP

5 Key Takeaways from the EDPB’s Final Guidelines on Examples Regarding Personal Data Breach Notification

Following a public consultation on an initial version released last January, the European Data Protection Board (“EDPB”) last month adopted a final version of its Guidelines on Examples regarding Personal Data Breach...more

BCLP

BCLP Global Data Privacy FAQs: What counts as a “transfer” of data under the EU GDPR? New draft EU Guidelines released

BCLP on

It is well known that the EU GDPR (specifically, Chapter V) restricts transfers of personal data from the EU to a “third country” (i.e. a jurisdiction outside the EEA) or to an international organisation. But what is meant by...more

Butler Snow LLP

The European Commission’s New Standard Contractual Clauses: Transferring Personal Data from the EU (A Long Overdue “Take Two”)

Butler Snow LLP on

On June 4, 2021, the European Commission adopted a new, highly anticipated set of standard contractual clauses to facilitate the transfer of personal data out of the European Economic Area (“EEA”) in accordance with the...more

Morgan Lewis

UK Adequacy Decision for European Data Transfers

Morgan Lewis on

The European Commission has finally approved two decisions  on 28 June granting the United Kingdom the cherished status of having “adequate” data protection laws so that transfers of personal data from the European Union are...more

Wilson Sonsini Goodrich & Rosati

A New Data Transfer Mechanism Is Available for EU Personal Data

New Set of SCCs for Data Transfers to Third Countries On June 4, 2021, the European Commission (EC) published its long awaited new set of Standard Contractual Clauses (New SCCs). This new data transfer mechanism allows for...more

Wyrick Robbins Yates & Ponton LLP

The Short Arm of GDPR? UK Court Decision Analyzes Application of GDPR to US-based Company

Organizations in the United States often ask us how to comply with GDPR. But starting with that question skips a key inquiry: the extent to which GDPR applies to a US company in the first place....more

K&L Gates LLP

English High Court Examines Extent of GDPR's Extraterritorial Jurisdiction

K&L Gates LLP on

When the General Data Protection Regulation (GDPR) came into force throughout the European Union nearly three years ago, one of its most eye-catching features was its extraterritorial jurisdiction provisions. These extend the...more

Wilson Sonsini Goodrich & Rosati

EDPB Publishes New Guidance for Data Breach Notification

On January 18, 2021, the European Data Protection Board (EDPB), comprised of all national supervisory authorities (SAs) of the European Union, published draft guidelines for data breach notification (the Guidelines)....more

Fox Rothschild LLP

EDPB Addresses Data Exchange With International Organizations Under GDPR

Fox Rothschild LLP on

How does GDPR apply to the transfer of personal data from an EU entity to an international organization? “Entities subject to the GDPR that exchange personal data with international organisations have to comply with the...more

Orrick, Herrington & Sutcliffe LLP

Have EU Employees? Beware: H&M Slapped with Massive GDPR Fine for Wrongful Processing of Employee Data, Despite Cooperation

On October 1st, 2020, the Data Protection Authority of Hamburg (“DPA”) announced that it issued a massive EUR 35.3 million fine against the clothing company H&M Hennes & Mauritz Online Shop A.B. & Co. KG (“H&M”) for the...more

Akin Gump Strauss Hauer & Feld LLP

European Data Protection Board Forms Two New Taskforces to Address Schrems II Aftermath

On Friday September 4, 2020, the European Data Protection Board (EDPB), a body consisting of representatives of all the Data Protection Authorities (DPAs) in the European Economic Area, announced that it had formed two new...more

Carlton Fields

EU Data Protection Authority Levies Its First Fine for Violations of the GDPR

Carlton Fields on

The French Data Protection Authority, CNIL, has levied its first fine for enforcement of the General Data Protection Regulation (GDPR). The enforcement target, Spartoo, is a French online shoe retailer that makes its website...more

Husch Blackwell LLP

EDPB Issues Guidance For Cross-Border Data Transfers In Wake of Schrems II Judgment

Husch Blackwell LLP on

Keypoint: The EDPB’s FAQs resolve some open questions, such as whether there will be a grace period for companies relying on Privacy Shield, but raise other questions, such as what “supplementary measures” companies need to...more

Hogan Lovells

Dutch DPA Issues Record Fine for Violating GDPR Data Subject Rights

Hogan Lovells on

The Dutch Data Protection Authority (DPA) issued a EUR 830,000 (approximately USD 937,000) fine against the Dutch Credit Registration Bureau (BKR) for violating data subject rights. The fine stems from BKR’s practice of...more

Cozen O'Connor

The European Data Protection Board Issues Updated Guidelines On Consent

Cozen O'Connor on

On May 4, 2020, the European Data Protection Board adopted updated guidelines on what does and does not constitute consent under the General Data Protection Regulation (GDPR) in certain situations. Consent is one of the...more

Orrick, Herrington & Sutcliffe LLP

Guidance from E.U. Supervisory Authorities on Data Processing in a Time of COVID-19

The European Data Protection Board (EDPB) and a number of European data protection supervisory authorities have recently issued guidance on processing personal data, including special categories of personal data (i.e., health...more

BakerHostetler

Reexamining the GDPR's Territorial Scope: Key Takeaways from the European Data Protection Board's New Guidance

BakerHostetler on

In November 2019, the European Data Protection Board (EDPB) issued its final guidance on territorial scope of the General Data Protection Regulation (GDPR), following release of the draft guidelines in November 2018 and a...more

84 Results
 / 
View per page
Page: of 4

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide