News & Analysis as of

Cybersecurity CNIL Personal Data

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Hogan Lovells

Measuring diversity at work: the CNIL finally opens a public consultation

Hogan Lovells on

On July 9, 2024, the CNIL launched a public consultation on a draft recommendation (“Draft Recommendation”) on measuring diversity in the workplace. While measuring diversity is an important indicator in the fight against...more

Hogan Lovells

Bilan de l’activité contentieuse de la CNIL en 2023 : un rétroviseur pour lire l’avenir

Hogan Lovells on

Il n’y a pas de question plus difficile en matière contentieuse que celle de l’anticipation des risques de faire l’objet d’un contrôle ou d’une sanction. C’est la raison pour laquelle il est utile de se nourrir des évolutions...more

Hogan Lovells

Significant data breach investigation launched by CNIL affecting over 33 million in France

Hogan Lovells on

The CNIL has launched an investigation into a significant data breach affecting over 33 million individuals in France, involving third-party payment operators Viamedis and Almerys. It is the biggest breach in France involving...more

Hogan Lovells

CNIL publishes new reference methodologies for French public database access for health research purposes

Hogan Lovells on

The French Data Protection Authority (the "CNIL") has just published two new reference methodologies for research, studies, or evaluations necessitating access to the data in the French Healthcare database. These new...more

Orrick, Herrington & Sutcliffe LLP

France fines facial recognition company additional €5.2 million for noncompliance

Orrick, Herrington & Sutcliffe LLP on

On May 10, the French data protection agency, Commission Nationale de l’Informatique et des Libertés (CNIL), fined a facial recognition company an overdue penalty payment in the amount of €5.2 million for failing to comply...more

Orrick, Herrington & Sutcliffe LLP

France Cybersecurity Update: Cyber-Attacks Must Be Reported to Authorities Within 72-Hours to Benefit from Insurance Coverage

Orrick, Herrington & Sutcliffe LLP on

From 24 April, 2023, victims of cyber-attacks (as defined by the Criminal Code in italic text below) will have 72 hours to file a complaint with “competent authorities” if they want to obtain reimbursement under their...more

Orrick, Herrington & Sutcliffe LLP

French and Italian Data Protection Authorities Take Issue with Google Analytics: Analysis and Key Takeaways

Orrick, Herrington & Sutcliffe LLP on

Google Analytics remains a hot topic for businesses and apparently also for data protection authorities (DPAs). With the advent of these new decisions and the new CNIL guidance, businesses have an even harder time justifying...more

Hogan Lovells

Reform of the procedure before the French Data Protection Authority

Hogan Lovells on

On 24 January and 8 April 2022, the procedure before the French Data Protection Authority (CNIL) was reformed with the aim notably to better respond to the growing number of complaints that the CNIL receives each year...more

Hogan Lovells

French DPA opened public consultation on standards for Early Access and Compassionate Access

Hogan Lovells on

The healthcare sector is a current focus of the French data protection authority (CNIL) which just published two draft standards regarding processing of personal data in the context of Early Access and Compassionate Access....more

Davis Wright Tremaine LLP

Growing Trouble for EU-U.S. Data Transfers Through Google Analytics

Davis Wright Tremaine LLP on

France's data protection authority (DPA), Commission Nationale de l'Informatique et des Libertés (CNIL), announced its ruling on February 10, 2022, that the use of Google Analytics by companies in the EU violates Article 44...more

Cooley LLP

France Issues Processor Guidelines on “Reusing Personal Data to Improve or Develop Services or Products”

Cooley LLP on

On January 12, 2022, the French Data Protection Authority (CNIL) issued guidance (available in French only) that sets out the conditions for processors to reuse the personal data entrusted by controllers for their own...more

Faegre Drinker Biddle & Reath LLP

The EU’s Collective Redress Directive — An Analysis of the Interplay with EU General Data Protection (GDPR)

Faegre Drinker Biddle & Reath LLP on

In this fourth alert in our series regarding the European Parliament’s formal endorsement of a new collective actions legislation titled the Directive of the European Parliament and of the Council on Representative Actions...more

McGuireWoods LLP

CNPD vs. Amazon, the largest GDPR fine on record – what do we know so far?

McGuireWoods LLP on

Amazon’s financial records have revealed that the Luxembourg data protection supervisory authority, the Commission Nationale pour la Protection des Données (“CNPD”), is fining the retailer’s European arm (Amazon Europe Core...more

BakerHostetler

International Data Protection Update – First Quarter 2021

BakerHostetler on

This quarterly update highlights some of the international data protection issues that have caught our attention, and the attention of our clients, in the past three months....more

A&O Shearman

Schrems II: French Conseil d’Etat provides insight into sufficient safeguards for EU personal data accessed from the US

A&O Shearman on

On 12 March 2021, the Conseil d’Etat, the highest administrative court of France, issued a decision that might have significant impact on personal data transfers to third countries in the aftermath of the Schrems II decision...more

A&O Shearman

France – CNIL releases guidance on data protection aspects of chatbots

A&O Shearman on

On 19 February 2021, CNIL released guidance on the use of chatbots in compliance with data protection law (the Guidelines). The CNIL notes that in order to operate the chatbots, controllers will often need to process personal...more

Jones Day

Jones Day Global Privacy & Cybersecurity Update | Vol. 27

Jones Day on

United States - Regulatory—Policy, Best Practices, and Standard - NIST Unveils Draft Guidance to Protect Critical Infrastructure - On October 22, 2020, the National Institute of Standards and Technology ("NIST")...more

Carlton Fields

EU Data Protection Authority Levies Its First Fine for Violations of the GDPR

Carlton Fields on

The French Data Protection Authority, CNIL, has levied its first fine for enforcement of the General Data Protection Regulation (GDPR). The enforcement target, Spartoo, is a French online shoe retailer that makes its website...more

K&L Gates LLP

French Administrative Supreme Court Endorses Data Protection Authority's Position on Cookies, Prohibits Prohibition on Cookie...

K&L Gates LLP on

On 4 July 2019, the French Data Protection (CNIL) published its Guidelines on Cookies and Other Tracking Technologies. The Guidelines further detailed the nature of the interplay between the General Data Protection Regulation...more

Orrick, Herrington & Sutcliffe LLP

French Court Annuls Parts of the CNIL’s Cookie Guidelines

Orrick, Herrington & Sutcliffe LLP on

On June 19, 2020, the Conseil d’Etat, the highest administrative court in France, annulled in part the cookie guidelines issued by the CNIL (the French data protection authority). The court ruled that the CNIL did not have...more

Kramer Levin Naftalis & Frankel LLP

Fichiers de gestion des ressources humaines : il faut s'assurer de la conformité sans attendre la fin de la pandémie

Kramer Levin Naftalis & Frankel LLP on

Le Covid-19 n’a pas empêché la Commission nationale de l’informatique et des libertés (« CNIL ») de publier le 15 avril 2020 son référentiel relatif aux traitements de données à caractère personnel mis en œuvre aux fins de...more

Hogan Lovells

CNIL’s New Guidelines on HR Processing

Hogan Lovells on

The French Data Protection Authority (CNIL) has recently released new guidelines (French only) regarding human resources processing operations. ...more

Hogan Lovells

Whistleblowing Schemes: New Guidelines Issued by the CNIL

Hogan Lovells on

The French Data Protection Authority (CNIL) published new Guidelines (French only) on December 10, 2019 applicable to whistleblowing schemes, following a public consultation process. The Guidelines replace the former Single...more

Locke Lord LLP

EU’s Top Court Makes Key “Right to Be Forgotten” Decision

Locke Lord LLP on

On 24 September 2019, the European Union’s top court issued a landmark ruling declaring that Google does not have to extend the “right to be forgotten” rules to its search engines globally.1 This decision provides important...more

Sheppard Mullin Richter & Hampton LLP

CNIL Issues Record-Keeping Guidance

Sheppard Mullin Richter & Hampton LLP on

Under GDPR, companies are required to keep certain records of their processing activities. There has been some question about the types of records controllers should keep. To help clarify the questions arising from many...more

42 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide