Rosa Barcelo on Data Protection

Data Privacy and Cybersecurity Developments We Are Watching in 2025

The act of predicting what will become the dominating storyline of data privacy and cybersecurity in 2025 is a hazardous enterprise, as one is almost surely to get something wrong. Without fail, every year, regulators and the...more

1/6/2025 / Artificial Intelligence , Corporate Counsel , Cybersecurity , Data Privacy , Data Protection , Data Security , Digital Operational Resilience Act (DORA) , Enforcement Actions , EU , Machine Learning , PCI-DSS Standard , Privacy Laws , Regulatory Agenda , Regulatory Requirements , Risk Management , State Privacy Laws , Technology Sector , Web Tracking , Websites

Shaping the Digital Future: The Newly Adopted EU Data Act and Its Impact

In the rapidly evolving digital landscape, the European Union’s Data Act (Data Act), adopted on November 27, 2023 marks a significant shift in data, privacy, and intellectual property regulation. The Data Act applies to...more

2/9/2024 / DATA Act , Data Protection , Data-Sharing , EU , EU Data Protection Laws , European Commission , General Data Protection Regulation (GDPR) , Intellectual Property Protection , New Legislation , Technology Sector

Get Ready to Update Your Binding Corporate Rules Regulators Expand Requirements

At the end of June, the European Data Protection Board (EDPB) published its Recommendations (Recs) on Binding Corporate Rules (BCRs). Among other things, the Recs require existing and in process BCRs to: - Incorporate...more

7/7/2023 / Audits , BCRs , Data Privacy , Data Protection , EU , European Court of Justice (ECJ) , European Data Protection Board (EDPB) , General Data Protection Regulation (GDPR) , International Data Transfers , Privacy Laws , Regulatory Requirements , Schrems I & Schrems II

EU-US Transatlantic Data Flows Framework: EU Supervisors Shine Light at the End of the Tunnel

In a recent non-binding opinion, EU regulators expressed timid positivity about the European Commission’s draft adequacy decision on the EU-US transatlantic data flows framework (Data Privacy Framework or DPF). While some...more

3/10/2023 / Data Privacy , Data Protection , EU , EU-US Privacy Shield , European Data Protection Board (EDPB) , Personal Data , Schrems I & Schrems II

European Privacy Risk Exposure

2022 was yet another eventful year in terms of GDPR compliance. The continued evolution of the enforcement landscape, with increasing number of sanctions and individuals exercising their rights required time and attention...more

1/30/2023 / Corporate Counsel , Data Protection , Data Security , Enforcement Actions , EU , EU-US Privacy Shield , General Data Protection Regulation (GDPR) , International Data Transfers , Personal Data , Privacy Laws , Risk Assessment , Sanctions , UK

[Webinar] GDPR Risk Exposure: Lessons Learned from 2022 and How to Prepare for 2023 - January 12th, 12:00 pm - 1:00 pm EST

As global businesses evolve and become more digitally driven, companies around the world must focus on their data privacy strategy. In 2022, both US and EU based companies have seen an increase in GDPR enforcement actions and...more

1/5/2023 / Continuing Legal Education , Data Privacy , Data Protection , Enforcement Actions , EU , General Data Protection Regulation (GDPR) , Privacy Laws , Risk Mitigation , Sanctions , Webinars

European Commission Begins Process for Adoption of US Adequacy Decision

Since Schrems II invalidated the US/EU Privacy Shield, the flow of personal data from the European Union to the United States has been subject to intense regulatory scrutiny. Companies transferring personal data to the United...more

12/15/2022 / Data Protection , Data Transfers , EU , EU-US Privacy Shield , European Commission , European Data Protection Board (EDPB) , General Data Protection Regulation (GDPR) , Personal Data , Schrems I & Schrems II , Standard Contractual Clauses

Rosa Barcelo

McDermott Will & Emery

Popular Topics by This Author

Latest Posts › Data Protection