Latest Publications

Share:

ENISA Publishes Report on Recommendations for Data Protection Certification Mechanisms Under the GDPR

On 27 November 2017, the European Union Agency for Network and Information Security (“ENISA”) published a report on Recommendations on European Data Protection Certification (“Report”). The aim of the Report is to identify...more

CJEU Rules Digital Rights Ireland’s Privacy Shield Invalidation Action Inadmissible

On 22 November 2017, the Court of Justice of the European Union (“CJEU”) gave judgment in a case taken by the not-for-profit company, Digital Rights Ireland Limited (“DRIL”). DRIL sought an annulment of the European...more

Article 29 Working Party Publishes Guidelines on Personal Data Breach Notification

On 3 October 2017, the Article 29 Working Party (“WP29”) published draft guidelines on personal data breach notification (“Guidelines”) under the General Data Protection Regulation 2016/279 (“GDPR”). In this blog, we look at...more

Article 29 Working Party Publishes Guidelines on Automated Individual Decision Making and Profiling

On 17 October 2017, the Article 29 Working Party (“Art 29 WP”) published draft guidelines on automated individual decision-making and profiling (“Guidelines”). In the Guidelines, the Art 29 WP states that profiling and...more

Article 29 Data Protection Working Party Publishes Final Guidelines on Data Protection Impact Assessments

On 4 October 2017, the Article 29 Working Party (“WP29”) released its final guidelines on Data Protection Impact Assessments (“DPIA”), which were initially proposed in draft form in April 2017. Article 35 of the General Data...more

European Commission Publishes First Annual Report on EU-US Privacy Shield

Following our previous blog on the upcoming first annual review of the EU-US Privacy Shield, the European Commission (“Commission”) published its report on 18 October 2017 (“Report”). Overall, the Report confirms that the...more

ICO Publishes Response to Consultation on European Commission’s Implementing Regulation to the NIS Directive

The Information Commissioner, Ms Elizabeth Denham, has published her comments on the European Commission’s consultation on the draft implementing regulation (“Implementing Regulation”) of the Network and Information Security...more

House of Lords Publishes Briefing on Data Protection Bill

The House of Lords Library, which provides research and information services to Members of the House of Lords, has published a briefing on the Data Protection Bill (“Bill”) which sets out an overview of and reactions to the...more

Proposal for a Regulation on the Free Flow of Non-personal Data in the EU

The European Commission has issued a proposal for a new Regulation on the free flow of non-personal data (“the Proposal”). The Commission adopted a Communication in January 2017 on “Building a European Data Economy”, in...more

Irish High Court Asks European Court to Rule on Legality of EU-US Data Transfers

On 3 October 2017, the Irish High Court held that it is up to the European Court of Justice (“ECJ”) to determine whether Standard Contractual Clauses (“SCCs”) are a valid method of transferring personal data outside of the EU...more

Spanish DPA Fines Facebook €1.2 Million for Data Protection Infringements

The Spanish Data Protection Authority (AEPD) has imposed a fine of €1.2 million against Facebook following its investigation into whether Facebook’s data processing activities were in accordance with the Spanish Data...more

ICO Publishes Draft Guidance on Contracts and Liabilities Under the GDPR

The UK’s Information Commissioner (ICO) has published draft GDPR guidance on contracts and liabilities between controllers and processors. The draft guidance is currently open for consultation,with responses due by 10 October...more

UK Government Publishes Draft of the Data Protection Bill

On 14 September 2017, the Government published the long-awaited draft of the Data Protection Bill (the Bill). The Bill was first announced in the Queen’s Speech on 21 June 2017 (see our previous blog) and will incorporate the...more

ICO Sets the Record Straight on Data Breach Reporting Under the GDPR

The latest in the series of blogs from the UK Information Commissioner’s Office (ICO) looks at some of the myths around data breach reporting under the General Data Protection Regulation (GDPR). Given the misleading press...more

EU Case Confirms That Employers Do Not Have Carte Blanche For Workplace Monitoring

In early 2016, a European Court of Human Rights (ECHR) case (Barbulescu v. Romania) attracted much publicity because it appeared to give employers the green light to read employees’ private emails. The decision in the...more

UK Government Publishes Its Position on UK-EU Data Transfers Post-Brexit

The UK Government has published a position paper (“the Paper”), which will form part of a series of papers setting out key issues forming the Government’s vision for their partnership with the EU post-Brexit. The Paper...more

ICO Confirms That Consent is Not the ‘Silver Bullet’ for GDPR Compliance

In her blog last week, the UK Information Commissioner, Elizabeth Denham, tackled the issue of consent under the GDPR. This blog, the second in a series to be published by the ICO, is intended to address some of the myths...more

Government Announces Proposals for a New Data Protection Bill

The government has released a Statement of Intent (“the Statement”) for a new Data Protection Bill (“the Bill”). The Bill was originally announced in the Queen’s Speech earlier this year. This Statement provides further...more

UK Government Posts New NIS Directive Consultation Addressing Cybersecurity Threats

The security and reliability of the UK’s IT infrastructure remains a key priority for the government. In August 2017, the Department for Digital, Culture, Media and Sport launched a public consultation on its plans to...more

House of Lords Publishes Report on Brexit and the EU Data Protection Package

The House of Lords EU Home Affairs Sub-Committee (“the Committee”) has published a report on the EU Data Protection Package and the impact of Brexit (“the Report”). The Report considers the implications of the UK’s exit from...more

House of Commons Publishes Briefing Paper on Brexit and Data Protection

The House of Commons Library, which aims to provide impartial research and analysis to MPs and their staff, has published a briefing paper on the impact of Brexit on data protection law in the UK (“the Paper”). The Paper...more

Article 29 Working Party Releases Detailed Opinion on Data Processing in the Workplace

The Article 29 Working Party (“WP29”) recently published an opinion on data processing at work (“Opinion”). The Opinion restates the position and conclusions in WP29’s 2001 Opinion on processing personal data in the...more

ICO Publishes International Strategy

The Information Commissioner’s Office (“ICO”) has released its International Strategy 2017-2021 (“Strategy”). The Strategy supports its Information Rights Strategic Plan, which we reported on earlier this year. The first...more

Subject Access Requests: ICO Publishes Updated Guidance

The Information Commissioner’s Office (ICO) has published an updated data subject access code of practice (the Code) to reflect developments following two major Court of Appeal judgments published in early 2017: Dawson-Damer...more

FCA Guidance On Tackling Cyber Crime

The Financial Conduct Authority recently released guidance regarding cyber resilience (in the form of new webpages) which FCA regulated firms should take account of. While many larger regulated firms have substantial cyber...more

196 Results
/
View per page
Page: of 8

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.