News & Analysis as of

Data Controller Data Protection

Mayer Brown

China Finalises the Measures for Personal Information Protection Compliance Audits

Mayer Brown on

On 14 February 2025, the Cyberspace Administration of China (“CAC”) issued the “Administrative Measures for Personal Information Protection Compliance Audits” (the "Measures"), which will take effect on 1 May 2025. The...more

Latham & Watkins LLP

Preparing for the European Health Data Space - Opportunities and Challenges for Europe’s Digital Future

Latham & Watkins LLP on

The EU regulation designed to facilitate secondary use of clinical data for research brings benefits for health research, but also poses challenges for companies....more

Cooley LLP

UK Data Privacy Litigation: What’s New?

Cooley LLP on

In honour of the International Association of Privacy Professionals (IAPP) London 2025 conference , we hosted a webinar on European privacy litigation. This post summarises some of the key UK privacy cases we covered in that...more

Baker Botts L.L.P.

Right to Erasure in the Spotlight as EU Data Protection Board Launches 2025 Coordinated Action

Baker Botts L.L.P. on

The European Data Protection Board (EDPB), the independent EU body responsible for ensuring the consistent application of the EU General Data Protection Regulation (GDPR) across all EU member states, has kicked off its...more

White & Case LLP

Mexico Enacts New Data Protection Regime

White & Case LLP on

On March 20, 2025, the evening edition of the Federal Official Gazette published a decree (the "Decree") enacting the General Law on Transparency and Access to Public Information ("LGTAIP"), the General Law on the Protection...more

Latham & Watkins LLP

Kingdom of Saudi Arabia Issues New Data Transfer Risk Assessment Guidelines

Latham & Watkins LLP on

The guidelines specify the requirements for data controllers to conduct risk assessments related to the transfer or disclosure of personal data outside the Kingdom. ...more

BCLP

Mobile Apps: What Does the CNIL Recommend From a Privacy Perspective?

BCLP on

While mobile apps have become one of the major means of access to digital services, their ubiquity is accompanied by significant risks to users' privacy, due to the massive amount of personal data they collect and process....more

Ogletree, Deakins, Nash, Smoak & Stewart,...

Frequently Asked Questions About the New Jersey Data Protection Act, Effective January 15, 2025

The New Jersey Data Protection Act (NJDPA), N.J. Stat. § 56:8-166.4 et seq., will go into effect on January 15, 2025, as New Jersey joins eighteen other states with comprehensive data privacy laws. ...more

Baker Botts L.L.P.

European Data Protection Board Releases Opinion on the Use of Personal Data with Artificial Intelligence

Baker Botts L.L.P. on

On December 17, 2024, the European Data Protection Board ("EDPB" or Board) issued Opinion 28/2024, addressing data protection aspects related to the processing of personal data in the context of artificial intelligence ("AI")...more

Mintz - Privacy & Cybersecurity Viewpoints

2024 Round-Up on State Consumer Data Privacy Laws

2024 was a busy year for state consumer data privacy laws in the United States. Seven states enacted comprehensive data privacy statutes throughout the year, and laws enacted in 2023 went into effect in Montana, Florida,...more

Fox Rothschild LLP

How Anonymous Is Your AI Model?

Fox Rothschild LLP on

There is more to learn from the European Data Protection Board’s recent opinion on AI models. I previously reviewed the EDPB’s take on what the consequences could be for the unlawful processing of personal data in the...more

Conyers

Brief Overview of the Data Protection Regime in Bermuda, British Virgin Islands and Cayman Islands

Conyers on

Bermuda, the British Virgin Islands (“BVI”) and the Cayman Islands have each introduced data protection regimes in recent years which align with global data protection standards. It is therefore increasingly important for...more

BCLP

European Data Protection Board's Opinion on AI Models

BCLP on

On 17 December 2024, the European Data Protection Board (EDPB) adopted its opinion on certain data protection aspects related to the processing of personal data in the context of AI models (Opinion). The Opinion comes as a...more

BCLP

Out With the Old and In With the New - The Data (Use and Access) Bill

BCLP on

On 23 October 2024, the Data (Use and Access) Bill (the “DUAB”) was introduced to Parliament. The DUAB is the Labour government’s answer to the perceived shortfalls of the since-abandoned Data Protection and Digital...more

Robinson+Cole Data Privacy + Security Insider

Colorado Amends its Consumer Privacy Rights Act

Earlier this month, after the conclusion of the public comment period, the Colorado Department of Law adopted amendments to the Colorado Privacy Act (CPA), which grants rights to Colorado consumers concerning their personal...more

Alston & Bird

Chile Passes New Data Protection Law

Alston & Bird on

On 14 November, and after many years of negotiations, Chile adopted a new Data Protection Act (la Ley que regula la protección y el tratamiento de los datos personales y crea la Agencia de protección de datos personales)....more

Fisher Phillips

Brazil Court Reminds Businesses of Key Data Protection Obligations – What Do Those Doing Business in Brazil Need to Know?

Fisher Phillips on

Four years after the Brazilian General Data Protection Law (LGPD) came into force, Brazil’s Superior Court of Justice (STJ) recently issued a list of precedents exploring how the court applied the law and addressed the...more

Fox Rothschild LLP

Web Scraping: 16 Data Protection Authorities Say Controllers Need to Protect Their Properties

Fox Rothschild LLP on

Sixteen data protection authorities recently confirmed that controllers must protect their properties from web scraping. And that includes web scraping for the purpose of training AI....more

Alston & Bird

EDPB Adopts Opinion on the Use of Processors and Sub-processors

Alston & Bird on

On October 7, 2024, the European Data Protection Board (“EDPB”) adopted an opinion on obligations following from the use of processors and sub-processors (the “Opinion”). The EDPB is the body that seeks to ensure harmonised...more

Morgan Lewis - Tech & Sourcing

GDPR: When Can Data Controllers Rely on 'Legitimate Interests' for Data Processing? New Guidelines from the EDPB

The European Data Protection Board (EDPB), the umbrella group of the EU’s data protection authorities, has issued new Guidelines 01/2024 of October 9, 2024 on the processing of personal data based on the legitimate interest...more

Fisher Phillips

Brazil’s New International Data Transfer Rules Could Impact Your Multinational Business: What You Need to Know and Your 6-Step...

Fisher Phillips on

New rules just took effect in Brazil regulating international data transfers, and employers doing business in the country must take note. Covered data processing agents – such as companies in Brazil that transfer data to...more

Wilson Sonsini Goodrich & Rosati

Cybersecurity: A Critical Element in Your 2025 Business Forecast

As cyberattacks become more sophisticated, cybersecurity remains a top concern for regulators, consumers, business partners, and investors. Weak security can cause substantial harm to a company and lead to litigation,...more

DLA Piper

Data Act Frequently Asked Questions Answered by the EU Commission

DLA Piper on

The EU Data Act is one of the cornerstones of the EU's Data Strategy and introduces a new and horizontal set of rules on data access and use to boost the EU's data economy. Most of the provisions of the Data Act will become...more

Jones Day

Brazil Amps Up Enforcement of Data Protection Law

Jones Day on

Actions in the last six months of the Brazilian National Data Protection Authority (“ANPD”) suggest that it intends to aggressively enforce the Brazilian Data Protection Law (“LGPD”). The LGPD applies to any entity that...more

Mayer Brown

Personal Data Sharing: What Information About Recipients Do We Need to Provide to Individuals Under the GDPR?

Mayer Brown on

Sharing personal data is necessary for most organisations, but it also entails certain data protection risks. Controllers who share personal data with others must, among other obligations, ensure that they comply with the...more

333 Results
 / 
View per page
Page: of 14

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide