On January 8, 2025, the second highest court of the European Union (EU), the General Court of the Court of Justice of the EU (the Court), ordered (in Bindl v European Commission, Case T-354/22) the European Commission (EC) to...more
1/10/2025
/ Class Action ,
Compliance ,
Corporate Counsel ,
Damages ,
Data Privacy ,
Data Protection ,
EU ,
General Data Protection Regulation (GDPR) ,
Personal Data ,
Privacy Laws ,
Regulatory Requirements
On July 10, 2023, the European Commission (EC) adopted an adequacy decision in relation to the EU-U.S. Data Privacy Framework (DPF). This paves the way for organizations to certify to the DPF, reducing friction for transfers...more
On July 4, 2023, the European Commission (EC) published its proposal for a regulation laying down additional procedural rules for the enforcement of the EU General Data Protection Regulation (GDPR) (proposal). The proposal...more
7/5/2023
/ Cross-Border Transactions ,
Data Controller ,
Data Processors ,
Data Protection ,
Data Security ,
EU ,
EU Data Protection Laws ,
European Commission ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data
On October 7, 2022, President Biden signed an Executive Order (Order) on Enhancing Safeguards for United States Signals Intelligence Activities. This marks the latest step towards the new EU-U.S. Data Privacy Framework...more
On November 11, 2020, the European Data Protection Board (EDPB), comprised of the European data protection regulators (DPAs), issued two long-awaited sets of recommendations. These recommendations are critical for any...more
On July 9, 2019, the European Court of Justice (ECJ)—the highest court of the European Union—will hear oral arguments in the Schrems 2.0 case relating to the validity of two key data transfer mechanisms: the Standard...more
7/26/2019
/ Binding Corporate Rules ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Protection ,
Data Protection Authority ,
EU Data Protection Laws ,
EU-US Privacy Shield ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Safe Harbors ,
Standard Contractual Clauses
The UK's pending exit from the European Union on March 29, 2019, will have far-reaching effects on many business activities, including the processing of personal data. While the ultimate legal implications are subject to...more
The EU Parliament Committee in charge of reviewing the EU Commission's Proposal for an e-Privacy Regulation (Proposal) released a Draft Report proposing amendments this week....more
6/23/2017
/ Bluetooth ,
Data Protection ,
Do Not Call List ,
e-Privacy Directive ,
Electronic Communications ,
Encryption ,
EU ,
General Data Protection Regulation (GDPR) ,
Opt-In ,
Web Tracking ,
Wifi
On December 15, 2015, the European Parliament and the Council of the European Union (Council) reached a political agreement on the future EU data protection legal framework. This is a significant step towards adoption of the...more
In this issue:
- Navigating Public Company Cybersecurity Obligations: Advising Boards and Disclosing to Investors
- FTC Updates School-Related COPPA Guidance
- Status Update on the EU Data Protection...more
7/14/2015
/ Anti-Spam Legislation ,
Barack Obama ,
Board of Directors ,
Canada ,
COPPA ,
Cybersecurity ,
Data Breach ,
Data Protection ,
EU ,
Federal Trade Commission (FTC) ,
Privacy Laws ,
Public Disclosure ,
Publicly-Traded Companies ,
Risk Assessment ,
Risk Management ,
Sanctions ,
Security and Privacy Controls
On June 15, 2015, the Ministers of Justice of all 28 European Union member states, sitting as the Council of the EU (Council), reached a crucial agreement for the future EU data protection legal framework. Much work still...more
On May 25, 2015, the French data protection authority (CNIL) published its annual inspection program for 2015, unveiling its objectives and priorities for the year. This alert highlights the main priorities of the CNIL for...more
5/29/2015
/ BCRs ,
CNIL ,
Data Collection ,
Data Protection ,
EU ,
France ,
Mobile Payments ,
Popular ,
Privacy Laws ,
Technology ,
Wifi
In this issue:
- Proposed California Law Would Impose Data Breach Liability on Retailers and Create More Stringent Data Security Requirements for Businesses
- FTC Continues Its Aggressive FCRA Enforcement and...more
7/30/2014
/ Big Data ,
Breach Notification Rule ,
Data Breach ,
Data Protection ,
Enforcement ,
Enforcement Actions ,
EU ,
EU Data Protection Laws ,
Fair Credit Reporting Act (FCRA) ,
FCC ,
FTC v Wyndham ,
Privacy Laws ,
Text Messages ,
Texting ,
Wyndham
Introduction -
In early October 2013, the body of European data protection regulators (Article 29 Working Party or WP29) issued a working document providing further guidance on obtaining consent in compliance with the...more
Introduction -
On October 21, 2013, the European Parliament's Committee on Civil Liberties, Justice and Home Affairs (LIBE Committee) held its long-awaited vote and adopted compromise amendments that would modify the...more
10/24/2013
/ Consent ,
Cookies ,
Cybersecurity ,
Data Processors ,
Data Protection ,
EU ,
EU Data Protection Laws ,
Extraterritoriality Rules ,
Internet ,
LIBE ,
Notice Requirements ,
Penalties ,
Personally Identifiable Information ,
Right to Delete
Originally published in "Privacy & Security Law Report" January 21, 2013.
One year ago (Jan. 25, 2012), the European Commission published its proposal to reform the European Union’s (EU) legal framework for data...more
In this issue:
- FTC Releases Final Amendments to Children's Online Privacy Protection Rule
- Mobile Apps Face Heightened Privacy Enforcement - Policies and Practices Scrutinized
- Global and European...more
1/18/2013
/ App Developers ,
COPPA ,
Data Protection ,
De-Identified Protected Health Information ,
FCC ,
Federal Trade Commission (FTC) ,
Mobile Apps ,
Opt-Outs ,
Privacy Policy ,
TCPA ,
Texting