EU Data Protection Laws

News & Analysis as of

Fines Issued for Transfer of Customer Data in an M&A Asset Deal

Recent enforcement actions by the Bavarian Data Protection Authority (DPA) [Bayerisches Landesamt für Datenschutzaufsicht] highlight the importance of severe restrictions placed on the transfer of such data, even in the...more

A Primer on Russia’s New Data Localization Law

Privacy and data security professionals worldwide should circle September 1 on their calendars, as it’s the day Russia’s new data localization law goes into effect – and possibly generates major waves far beyond Russian...more

The FTC Continues to Flex its Safe Harbor Enforcement Muscles

On August 17, 2015, the Federal Trade Commission (FTC) announced settlements with 13 companies on charges that they misled consumers by claiming that they were certified members of the U.S.-EU or U.S.-Swiss Safe Harbor...more

Judges Examine Key Differences between U.S. and European E-Discovery

Exterro’s inFusion `15 user conference kicked off with a fascinating keynote on the differences between e-discovery laws in the U.S. and Europe. What made the discussion so interesting was that it featured two judges with a...more

How Private is that Connected Car? US v. EU

Among the fastest growing sectors in the industry of smart things is the connected car. No longer a simple way from point A to point B, cars now comprise a computer, cell phone and camera all rolled into one motorized...more

EU Privacy Law May Require Individual Third Party Consent for Sale of Customer Email Lists

Parties to transactions involving personal data in Europe are well-advised to investigate whether individual consent or the offer of opt-outs are required to avoid the risk of fines and other sanctions imposed by the DPA or...more

Google Declares “Non!” to French Privacy Regulator’s Demands that Google Apply the “Right to be Forgotten” Worldwide

In an expected but controversial move, Google has rejected a demand by the French Data Privacy authority CNIL to apply the European “Right to be Forgotten” worldwide. We have covered the E.U.’s Right to be Forgotten...more

Have You Had Your Annual Checkup? The FTC Cracks Down on Inaccurate U.S.-EU Safe Harbor Claims

While the U.S.-EU “Safe Harbor” Framework for transferring data into the United States is hardly new — it was approved 15 years ago — the Federal Trade Commission has recently focused its enforcement efforts on companies that...more

UK’s First Ever Right To Be Forgotten Enforcement : Google In The Firing Line Again

The UK’s Information Commissioner’s Office (ICO) has made what appears to be its first “right to be forgotten” enforcement action against Google Inc. The ICO issued the notice on 18 August 2015, ordering Google to remove nine...more

What Is Your Case Management Missing? A Look at the Key Functions You Should Expect from Your Case Management Process

We all know how important a Case Management solution is when it comes to collecting and managing incident reports throughout your organization. Not only does it provide you with deeper insights into your employees behavior,...more

Customer Data in Corporate Sales - A Privacy Issue: German Privacy Watchdog Fines Seller and Purchaser for Personal Data Transfer

In a press release on 30 July 2015, the Bavarian data protection authority (DPA) announced that it had recently fined both seller and purchaser for unlawfully transferring customer data as part of an asset...more

The Right to be Forgotten: Another Scuffle between Google and The French Data Protection Authority

On 13 May 2014 the Court of Justice of the European Union (CJEU) issued a judgment which Google called a “landmark ruling” (Google v. Costeja Gonzalez case, C-131/12). The court held, based on the 95/46 Directive on...more

The slow death of EU forum shopping

Forum shopping (i.e. where businesses pick and choose the most privacy-friendly EU state to set up shop) has always been a somewhat unique side effect of EU data privacy law. Then last year saw the Google Spain case where the...more

EU Data Protection Regulation – Did you know there’s an app for that?

As EU data protection watchers know, the draft General Data Protection Regulation (which has been around long enough to be universally referred to by its acronym, GDPR) exists in three major versions, with a fourth version...more

Developing or Enhancing “Bring Your Own Device” Programs – Your First Five Questions . . .

This is the second blog post in Discovery Advocate’s new series, “Your First Five Questions,” in which we identify a question commonly (or sometimes not so commonly) seen in practice followed by the first five questions you...more

A Kinder, Gentler Spanish Data Protection Authority?

As of July 24, Spain has a new director for its Data Protection Authority (Agencia Española de Protección de Datos — AEPD). The AEPD is the agency responsible for conducting investigations and bringing disciplinary actions...more

EU Data Protection Regulation: Final “Trilogue” Negotiations are off to a Good Start

Following the European Parliament’s adoption of a General Approach to the long-awaited draft Data Protection Regulation (DPR) last month, negotiations over the regulation’s final form have now commenced. These negotiations...more

E-Discovery: If you can’t take the data to the tools, take the tools to the data

Today we welcome Jo Sherman, CEO, EDT Inc. to share some of her thoughts on the challenge of international investigations and data collection/analysis. Given the challenges of discovery and data collection across borders in...more

EU Data Privacy Update: European Council Approves Agreement to Data Privacy Reform

European regulators took another step forward on the protracted and procedurally involved path to EU-wide data privacy reform earlier this month when the European Council (the organization of the individual member states)...more

Do You Have The Right To Be Forgotten?

Most of us want to be remembered. But, depending on their past, some people want to be forgotten – or at least they want some of their past deeds to be forgotten. But do you have a right to be forgotten? In the United States,...more

In the E.U., Where to Bring Suit When the Subject is Data and the Defendant is a U.S. Company? Hint: It’s About More Than Just...

When are U.S. social media companies subject to European data privacy laws? As we reported in 2013, the answer is often contingent on geographic location – where the relevant data is processed. In 2013, for example, a German...more

What European Union privacy reform means for U.S. Companies

The European Union (EU) General Data Protection Regulation (GDPR) is one step closer to replacing the EU’s 1995 data privacy directive, known as 95/46/EU. In late June, the Council of Ministers from the EU member states...more

Progress on Data Protection in the European Union

We may see the final text of the proposed EU General Data Protection Regulation by the end of 2015. In mid-June, the Council of the European Union set forth an agreed general approach to the proposed EU General Data...more

Privacy & Cybersecurity Update - June 2015

In This Issue: - USA Freedom Act Brings Changes to Surveillance Program - Connecticut Enacts Bill Imposing Tighter Data Security Obligations - Pennsylvania Court Dismisses Data Breach Negligence...more

Whistleblowing: An Employer’s Guide To Global Compliance

In This Issue: - Foreword - A Summary Across Five Continents - Law and Sanctions - The Legislative Framework: Whistleblower Protections Across the Globe - Global Differences: The Cultural...more

194 Results
|
View per page
Page: of 8

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×