The EU Commission issued today a “Communication to the European Parliament and the Council” which is entitled “Data protection rules as a trust enabler in the EU and beyond- taking stock”, which outlines the current state of...more
Dear GDPR,
Before you were born, you already attracted a lot of attention, after all, not everyone is born over two years after they are conceived and has 28 parents! And your parents had to ?resist an enormous pressure...more
5/29/2019
/ Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Processors ,
Data Protection ,
Data Security ,
Enforcement Actions ,
EU ,
EU Data Protection Laws ,
European Supervisory Authorities (ESAs) ,
General Data Protection Regulation (GDPR) ,
Personal Data
It has been rough weather for Google in France. Three weeks after the French ?Data Protection Authority imposed a record fine against Google for non-compliance with the GDPR, the Paris District Court (“Tribunal de Grande...more
4/15/2019
/ Contract Terms ,
Cookies ,
Data Controller ,
Data Privacy ,
Data Processors ,
Data Protection ,
Data Protection Authority ,
Data Rights ,
Data Security ,
Data Transfers ,
France ,
General Data Protection Regulation (GDPR) ,
Google ,
Hyperlink ,
Notification Requirements ,
Privacy Policy ,
Social Media ,
Terms of Use
It’s been rough weather for Google in France. Three weeks after the French ?Data Protection Authority imposed a record fine against Google for non-compliance with the GDPR, the Paris District Court (“Tribunal de Grande...more
3/12/2019
/ Copyright Infringement ,
Corporate Fines ,
Data Protection ,
Data Protection Authority ,
DMCA ,
France ,
General Data Protection Regulation (GDPR) ,
General Licenses ,
Google ,
Intellectual Property Protection ,
Privacy Policy ,
Social Media ,
Terms of Use
On January 23, 2019, the European Data Protection Board (“EDPB”) issued an interesting opinion about personal data processed in relation to clinical trials.
The main role of the EDPB – which succeeded the Article 29...more
2/21/2019
/ Clinical Trials ,
Consent ,
Data Collection ,
Data Protection ,
EU ,
European Data Protection Board (EDPB) ,
General Data Protection Regulation (GDPR) ,
Personal Data ,
Pharmaceutical Industry ,
Public Interest ,
Scientific Research
Checklists for Your Privacy Notices and Consent Forms -
On January 21, 2019, the French Data Protection Authority (the “French DPA”) fined Google LLC 50 million euros for violating the requirements of the GDPR “for lack of...more
On 21 January 2019, the French Data Protection Authority (the “French DPA”) fined Google LLC 50 million euros for breach of the GDPR.
As we reported on this blog, just after GDPR became applicable, noyb.eu (None of Your...more
1/23/2019
/ Consent ,
Data Controller ,
Data Privacy ,
Data Protection ,
Data Protection Authority ,
Data Security ,
Data Storage ,
Disclosure Requirements ,
Enforcement Actions ,
EU ,
Fines ,
General Data Protection Regulation (GDPR) ,
Google ,
Online Advertisements ,
Personal Data ,
Privacy Policy ,
Terms of Service ,
Transparency
On January 10, 2019, Advocate General Szpunar issued his much awaited opinion in the Google case that was referred to the European Court of Justice by the French “Conseil d’Etat”, the highest administrative court of the...more
Many companies share personal information they gather directly from individuals with “business partners” who use the information for their own direct marketing purposes. It is the case, for example, of companies that provide...more
Four months after the GDPR came into effect, the French Data Protection Authority (“CNIL“) published a first assessment with some impressive figures:
..It received more than 600 personal data breach notifications, ?i.e.,...more
On June 7, 2018, the French Data Protection Authority (the CNIL) published a decision (issued one month earlier) in which it imposed a record 250,000 euros fine on Optical Center (which, although its name does not indicate,...more
On Friday, May 25, the day when GDPR became effective, noyb.eu (None of Your Business), the non-profit privacy organization recently set up by Max Schrems, filed the first complaints based on GDPR.
Max Schrems is the...more
Cultural gap between the EU and the US -
EU Data Protection Rules -
Why should you care about those rules?
..GDPR is « general » i.e. it applies to all activities including the Healthcare/Life Sciences.
..As of...more
In the European Union (“EU”), “everyone has the right to the protection of personal data concerning him or her” under the Charter of Fundamental Rights. Intellectual property is also protected as a fundamental right under the...more
The new GDPR is much more detailed than the 1995 Directive. The GDPR has 99 articles, versus 34 in the Directive. And a few new key concepts clearly require new guidance....more
A 152 page judgment was rendered on October 3, 2017 by the Irish High Court in Schrems II: DPC v Facebook Final.
Nor surprisingly, the court decided to refer the case to the Court of Justice of the European Union to make...more
Even though the GDPR is a general regulation, some provisions are expressly addressing the specificities of the processing of personal data in the healthcare/life science sectors....more
The clock is ticking: on May 25, 2018, in less than a year from now, the General Data Protection Regulation (“the GDPR”) will apply in all Member States of the European Union (“EU”) and will replace the Directive 95/46/CE...more
New General Features of the GDPR -
Some of the GDPR general features may be of particular interest for companies in the healthcare/life science sectors....more
The new (EU) 2016/679 General Data Protection Regulation (GDPR) will enter into force on 25 May 2018. Its scope is broader than that of the current 95/46/CE Directive, which means that more companies headquartered outside of...more
US companies with employees or clients in Switzerland will be interested to hear that the new Swiss-US Privacy Shield was approved on 11 January.
Although Switzerland is not a member of the European Union, its data...more
Reuters reported earlier this month that, according to three former employees, Yahoo Inc. had “complied with a classified U.S. government demand, scanning hundreds of millions of Yahoo mail accounts at the behest of the NSA...more
What the recent Amazon decision tells us -
On 28 July 2016, the European Court of Justice rendered a decision in a dispute between an Austrian Consumer Protection organization known as VKI (Verein für...more
9/6/2016
/ Amazon ,
Austria ,
Data Protection ,
EU ,
EU Data Protection Laws ,
European Court of Justice (ECJ) ,
Extraterritoriality Rules ,
General Data Protection Regulation (GDPR) ,
Google ,
Hungary ,
Luxembourg ,
Member State ,
Personal Data ,
Preamble ,
Spain ,
Subsidiaries ,
Terms and Conditions
After years of intense discussions, the EU General Data Protection Regulation (GDPR) was finally adopted on 14 April 2016.
The GDRP sets out uniform new rules in the field of data protection across the EU, rules that...more
On June 12, 2015 the French Data Protection Authority (Commission Nationale de l’Informatique et des Libertés – CNIL) issued a notice ordering Google to draw all the consequences of the CJEU May 13, 2014 ruling and to apply...more
10/1/2015
/ CNIL ,
Data Privacy ,
Data Protection ,
Data Protection Authority ,
Delisting ,
EU Data Protection Laws ,
European Court of Justice (ECJ) ,
France ,
Google ,
Right to Be Forgotten ,
Search Engines