On January 12, 2022, the French data protection authority (“CNIL“) published guidance on the reuse of personal data by processors for their purposes (“Guidance”). This the most recent guidance of a major EU regulator on a...more
The first sanction taken in application of the General Data Protection Regulation (GDPR) in France was issued by the French data protection authority (the "CNIL") on January 21, 2019 against Google LLC....more
2/8/2019
/ CNIL ,
Compliance ,
Data Breach ,
Data Protection Authority ,
Enforcement Actions ,
Fines ,
France ,
General Data Protection Regulation (GDPR) ,
Google ,
Personal Data ,
Sanctions ,
Uber
On 27 April 2016, following a prolonged legislative process over some four years, the European Council and Parliament finally adopted a new data protection law: the General Data Protection Regulation (GDPR). The GDPR was...more
We reported in our recent update, that in the Schrems v. Data Protection Commissioner of Ireland decision the Court of Justice to the European Union (“CJEU”) declared Safe Harbor invalid under EU law. We subsequently...more
10/22/2015
/ Article 29 Working Party (WP29) ,
Binding Corporate Rules ,
Data Protection Authority ,
EU Data Protection Laws ,
European Court of Justice (ECJ) ,
International Data Transfers ,
Safe Harbors ,
Schrems I & Schrems II ,
Standard Contractual Clauses ,
U.S. Commerce Department ,
US-EU Safe Harbor Framework