In politically uncertain times, is your organisation’s data transfer compliance unquestionable?
The EU-U.S. Data Privacy Framework (DPF) serves as a useful mechanism for transatlantic data transfers, and it can assist...more
4/4/2025
/ Biden Administration ,
Court of Justice of the European Union (CJEU) ,
Data Privacy ,
Data Transfers ,
EU ,
European Commission ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Regulatory Requirements ,
Risk Management ,
Standard Contractual Clauses ,
Trump Administration ,
UK
Organisations that make international transfers of personal data have undergone significant challenges and changes over the last few years. With the invalidation of the Privacy Shield agreement in 2020 and the introduction of...more
9/26/2024
/ Compliance ,
Consent ,
Corporate Fines ,
Data Breach ,
EU ,
EU-US Privacy Shield ,
Extraterritoriality Rules ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Regulatory Oversight ,
Schrems I & Schrems II ,
Standard Contractual Clauses ,
Third-Party Service Provider ,
UK
On March 25, 2022, the European Union (EU) announced that the United States and the EU had reached an agreement in principle to replace the EU-U.S Privacy Shield framework, which the European Court of Justice (CJEU) struck...more
4/1/2022
/ Corporate Counsel ,
Court of Justice of the European Union (CJEU) ,
Data Collection ,
EU ,
EU-US Privacy Shield ,
European Data Protection Board (EDPB) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Schrems I & Schrems II ,
Standard Contractual Clauses
On June 4, 2021, the European Commission adopted two new sets of standard contractual clauses (SCCs): one for data transfers from data controllers to data processors and one for data transfers from data exporters to data...more
6/14/2021
/ Compliance ,
Corporate Counsel ,
Data Controller ,
Data Processors ,
Data Protection ,
Data Transfers ,
Employee Privacy Rights ,
EU ,
European Commission ,
European Data Protection Board (EDPB) ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
Human Resources Professionals ,
International Data Transfers ,
Personal Data ,
Schrems I & Schrems II ,
Standard Contractual Clauses
The Court of Justice of the European Union (CJEU) recently declared that the EU-U.S. Privacy Shield is invalid because it does not provide an adequate level of protection for the transfer of personal data from the European...more
An employer’s response to COVID-19 involves numerous privacy issues. Below are some answers to frequently asked questions (FAQs) about these issues within the United States and globally, based on laws such as the Americans...more
As coronavirus disease 2019 (COVID-19) continues to spread, employers have been trying to strike a balance between safety and privacy as they apply their own policies and attempt to follow laws such as the General Data...more
3/4/2020
/ Centers for Disease Control and Prevention (CDC) ,
Coronavirus/COVID-19 ,
Emergency Management Plans ,
Employee Privacy Rights ,
Employer Liability Issues ,
EU ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Infectious Diseases ,
Public Health ,
Workplace Safety
Much has happened since the European Union (EU) General Data Protection Regulation (GDPR) went into effect on May 25, 2018. Many EU countries have enacted national legislation to implement and expand the requirements of the...more
5/22/2019
/ Austria ,
CCTV ,
CNIL ,
Data Breach ,
Data Protection ,
Data Protection Authority ,
Employer Liability Issues ,
Enforcement Actions ,
EU ,
European Data Protection Board (EDPB) ,
France ,
General Data Protection Regulation (GDPR) ,
Germany ,
Human Resources Professionals ,
Netherlands ,
Personal Data ,
Personnel Records ,
Portugal ,
Regulatory Violations ,
Risk Management ,
Social Networks ,
Surveillance ,
Video Recordings
Much has happened since the European Union (EU) General Data Protection Regulation (GDPR) went into effect on May 25, 2018. Many EU countries have enacted national legislation to implement and expand the requirements of the...more
Much has happened since the European Union (EU) General Data Protection Regulation (GDPR) went into effect on May 25, 2018. Many EU countries have enacted national legislation to implement and expand the requirements of the...more
On April 19, 2018, the Article 29 Working Party (Working Party), which is comprised of representatives from the data protection authorities in each of the 28 European Union (EU) member states, issued a position paper stating...more
On March 27, 2018, Helen Dixon, the data protection commissioner for Ireland, outlined the enforcement priorities of the Irish data protection authority (DPA) for the General Data Protection Regulation (GDPR) during the...more
With less than six months until the May 25, 2018, effective date for the European Union (EU) General Data Protection Regulation (GDPR), companies are assessing their GDPR readiness and concentrating their compliance efforts...more
On October 18, 2017, the European Commission published its report and supporting documents regarding its first annual review of the EU-U.S. Privacy Shield (Privacy Shield), which sets forth procedures and safeguards for...more
On May 25, 2018, a short 12 months from now, employers must be in full compliance with the EU General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) for EU human resources data. The GDPR requirements regarding...more
As employers catch their breaths after an action-packed 2016, they need to gear up for another turbulent year for international data privacy issues in 2017. The top five international data privacy issues follow....more
The people of the United Kingdom have spoken on the issue of whether the United Kingdom should leave or remain in the European Union (EU), and by a narrow margin have decided to leave. In fact, by region, the voters of...more
6/24/2016
/ Currency Fluctuation ,
EU ,
EU-US Privacy Shield ,
Financial Markets ,
Foreign Subsidiaries ,
General Data Protection Regulation (GDPR) ,
International Finance ,
International Labor Laws ,
London Stock Exchange ,
Member State ,
Popular ,
Referendums ,
Treaty on the Functioning of the European Union (TFEU) ,
UK ,
UK Brexit
On February 3, 2016, the Article 29 Working Party, the EU body representing the data protection authorities (DPA) of each EU member country, announced that all of the DPAs across the EU have agreed to extend the current...more
2/5/2016
/ Article 29 Working Party (WP29) ,
Binding Corporate Rules ,
Data Protection Authority ,
Enforcement Actions ,
EU ,
EU-US Privacy Shield ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Moratorium ,
Standard Contractual Clauses ,
US-EU Safe Harbor Framework
After four years of debate and a year of uncertainty over the future of data transfers from the European Union (EU) to the United States, this week has seen a historic move towards finalizing new legislation to govern data...more