The Data Governance Act (“DGA”) will become applicable as from 24 September 2023. From that date, (i) DGA intermediation services (that have carried out the necessary notification process) can start operating as such in the...more
A new EU General Court ruling has nuanced the threshold between pseudonymous and anonymous data. In particular, it clarifies that supervisory authorities need to carry out a “test” to assess whether data can be deemed...more
The Spanish Data Protection Authority has opened a public consultation process to obtain comments for an incoming decision establishing the rules for commercial communications via telephone. This decision will be binding upon...more
The Data Act Proposal envisages the rights of users of medical devices / health wearables to have access to and to share the data originated from the use of the device with third parties. These access and sharing rights are...more
La propuesta del Data Act tiene por objeto garantizar la equidad en el acceso a los datos y propone nuevas normas sobre quién puede utilizar y acceder a los datos generados en la UE en todos los sectores económicos. Crea la...more
The EU has moved up a gear in recent times, and it is producing new legal tools for companies to maximize the possibilities to collect and make use of data (including personal data) in the context of its European Strategy for...more
The European Union has already enacted several Directives to allow (or mandate) the possibility for companies to access and re-use the data held by EU public administrations in the European Union. However, in many cases this...more
Spanish Government has approved a Royal Decree by which people or companies that offer lodging and/or rental car (without driver) services, will need to share a very broad list of personal data with Spanish enforcement...more
La Comisión Europea acaba de publicar un modelo tipo de contrato de encargo del tratamiento bajo el artículo 28 del Reglamento General de Protección de Datos ("RGPD"). ...more
The Spanish Data Protection Agency (“Spanish DPA”) decided to start 2021 the same way it ended 2020: by imposing the highest fines to date (EUR 5,000,000 and 6,000,000) to two large Spanish financial entities. ...more
3/11/2021
/ Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Protection Authority ,
Enforcement Actions ,
EU ,
Financial Institutions ,
Fines ,
General Data Protection Regulation (GDPR) ,
Personal Data ,
Personally Identifiable Information ,
Spain
The General Data Protection Regulation 2016/679 (GDPR) provides means to enforce provisions related to personal data processing by you as a data controller or data processor. It introduces collective actions everywhere in...more
The General Data Protection Regulation 2016/679 (GDPR) provides means to enforce provisions related to personal data processing by you as a data controller or data processor. It introduces collective actions everywhere in...more
11/22/2019
/ Burden of Proof ,
Class Action ,
Cybersecurity ,
Data Breach ,
Data Processors ,
Data Protection ,
EU ,
EU Data Protection Laws ,
European Commission ,
Evidence ,
Forum Shopping ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Litigation Strategies ,
Personal Data ,
Personally Identifiable Information ,
Private Right of Action ,
Risk Management ,
Russia
Whilst political uncertainty may have businesses’ attention fixed, the Hogan Lovells Global Survey on Digital Regulation: ‘A Turning Point for Tech’ suggests that tech companies should be looking elsewhere. During yesterday’s...more
10/31/2019
/ 5G Network ,
Big Tech ,
Business Model ,
Competition ,
Copyright ,
Corporate Taxes ,
Cybersecurity ,
Data Protection ,
Digital Platforms ,
Enforcement Programs ,
EU ,
Freedom of Expression ,
General Data Protection Regulation (GDPR) ,
Innovative Technology ,
Privacy Concerns ,
Regulatory Agenda ,
Regulatory Oversight ,
Regulatory Standards ,
United Arab Emirates (UAE)