On January 19, the Irish Data Protection Commission (DPC) announced the conclusion of an inquiry into the data processing practices of a U.S.-based messaging service’s Ireland operations and fined the messaging service €5.5...more
Ireland’s Data Protection Commission has imposed a fine of €225 million (more than $267 million) on WhatsApp, a popular messaging app owned by Facebook. Here are some key takeaways for companies subject to GDPR:.....more
Will the EU finally deny the right to transfer any personal data from its shores to the United States? Its privacy decisions have been inching closer to this determination for years, and an Irish case against Facebook may tip...more
Report on Supply Chain Compliance 3, no. 5 (March 5, 2020) - On Feb. 3, Facebook Inc. informed the Irish Data Protection Commission (DPC) that it would be rolling out a new dating service Feb. 14. The DPC was concerned about...more
Shook Weighs in on Updated CCPA Regulations - In response to extensive public comment, the California Attorney General’s office released modified draft regulations under the CCPA on February 7. Shook has provided initial...more
Report on Supply Chain Compliance 3, no. 4 (February 20, 2020) - After a number of complaints regarding Google‘s processing of location data, the Irish Data Protection Commission opened an investigation into whether or not...more
Bond Connect applications - The Central Bank of Ireland confirmed on 21 March 2019 that it would begin to accept applications from Irish authorized investment funds to participate in China Bond Connect ("Bond Connect")....more
The Irish Data Protection Commissioner (DPC) has launched a public consultation on children and data protection issues. The consultation will have two streams: one aimed at adult stakeholders, and the other aimed directly...more
Blackstone CEO Stephen Schwarzman and BlackRock CEO Larry Fink have joined JPMorgan’s Jamie Dimon and a growing list of other business titans who have withdrawn from Saudi Arabia’s “Davos in the Desert” investment conference...more
With the proliferation of location-based app services like traffic alerts and ride-sharing programs, the collection of consumers’ location information has exploded in recent years. It comes as no surprise, therefore, that...more
In this edition of our Privacy & Cybersecurity Update, we examine recent developments, including the U.S. Supreme Court's holding in Spokeo that consumer plaintiffs must show "real harm" to sue in federal court, the EU data...more
On October 20, 2015, the Irish High Court ordered the Irish Data Protection Commissioner (DPC) to investigate Facebook’s European data privacy practices, bringing Max Schrems’ three-year fight full circle. The Court quashed...more
Earlier last week, the European Court of Justice (CJEU) invalidated the Safe Harbor framework between the United States and the European Union -- effective immediately. This decision significantly disrupts the flow of data...more
In our recent update, we reported that the Advocate General (“AG”) to the Court of Justice of the European Union (“CJEU”), the highest court in the EU, gave an opinion that “safe harbor” should be declared invalid and that...more
In an important case involving Facebook, and instigated by an Austrian student in response to the Snowden revelations about US security agency access to mass data, the Advocate General (“AG”) to the Court of Justice of the...more