News & Analysis as of

General Data Protection Regulation (GDPR) Data Collection Personal Data

Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts... more +
Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts individuals throughout the Union and all businesses operating therein. less -
Amundsen Davis LLC

Is My U.S.-Based Company Subject to the GDPR? Clearing Up European Data Privacy Law Misinformation

Amundsen Davis LLC on

If you are a compliance professional for a U.S.-based company, you have probably been told at some point that you have to worry about the General Data Protection Regulation (GDPR). Have you encountered one of these...more

Hogan Lovells

Overview of the CNIL’s enforcement actions in 2024: the simplified procedure generates an increase in sanctions

Hogan Lovells on

In 2024, the CNIL stepped up its enforcement action, issuing 87 sanctions, 180 compliance orders and 64 reprimands. However, only 12 decisions were made public, thus complicating the exercise of making the regulator’s...more

BCLP

Mobile Apps: What Does the CNIL Recommend From a Privacy Perspective?

BCLP on

While mobile apps have become one of the major means of access to digital services, their ubiquity is accompanied by significant risks to users' privacy, due to the massive amount of personal data they collect and process....more

Fox Rothschild LLP

Valid Consent: General Public vs. Gamblers

Fox Rothschild LLP on

A new decision by the United Kingdom’s high court says that even if you have cookie and marketing consent mechanisms that are sufficient for valid consent under privacy laws for the general public, they may not be enough for...more

Barnea Jaffa Lande & Co.

Expansion of Privacy Protection Regulations regarding data from the EEA

Barnea Jaffa Lande & Co. on

As of January 1, 2025, the Israeli Privacy Protection Regulations (Instructions for data being transferred to Israel from the European Economic Area) will also apply to data being stored or processed in Israel or in other...more

Osano

Privacy by Design: Understanding and Implementing the Framework

Osano on

As of this writing, the CAM4 security incident remains the largest data breach in history. The attack on the website exposed nearly 11 billion records, including users' names, email addresses, sexual orientations, chat...more

Bricker Graydon LLP

Oh My Gourd, Another Data Privacy Law?! 

Bricker Graydon LLP on

In 2018, there were two comprehensive state data privacy bills introduced across the United States and a whopping zero were in effect. Fast forward six years and there have been 41 new data privacy bills considered this year...more

Fisher Phillips

Netherlands Imposes Record-Breaking Data Privacy Fine on Uber: 4 Key Steps Companies Can Take to Ensure Compliance

Fisher Phillips on

Dutch data privacy officials recently imposed a staggering penalty on Uber – €290 million ($324 million) – for allegedly breaching the European Union’s comprehensive data privacy and security law. This groundbreaking fine is...more

DLA Piper

Europe/Germany: Right to Bring Collective Action for Violations of Information Obligations Under GDPR

DLA Piper on

Summary - In its judgement of 11 July 2024 (C-757/22), the European Court of Justice (‘ECJ’) ruled that the violation of a controller’s information obligations under Art. 12 and 13 GDPR, can be subject to a representative...more

BCLP

Analysing the CNIL’s Latest Recommendations for AI Systems

BCLP on

Following the very recent adoption of the EU Regulation on AI (the AI Regulation) the CNIL (the French data regulator) has issued the second in its series of recommendations for the development of privacy-friendly AI models....more

BCLP

Auction of Personal Data: Clarification of the Concepts of Personal Data and Data Controller

BCLP on

On 7 March 2024, the Court of Justice of the European Union issued a ruling (C-604/22 | IAB Europe) clarifying the concepts of personal data and controller in the context of the use of a Transparency and Consent Framework...more

International Lawyers Network

Data Privacy Guide - Spain

International Lawyers Network on

Introduction - We have compiled the main differences between the REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing...more

Robinson+Cole Data Privacy + Security Insider

Watchdog Files GDPR Privacy Complaint Over ChatGPT’s Hallucinations

Robinson+Cole Data Privacy + Security Insider on

The privacy advocacy group noyb, founded by privacy activist Max Schrems, has raised concerns over how ChatGPT handles questions about real-life individuals. The group alleges that ChatGPT has been generating inaccurate...more

Parker Poe Adams & Bernstein LLP

Feds Focus on Data Privacy and Cybersecurity in Latest Legislative and Rule Proposals

Parker Poe Adams & Bernstein LLP on

By now, companies that collect, process, and store the personal data of consumers are used to a fast pace of state privacy and cybersecurity legal activity. This year, companies should also expect increased activity from...more

Barnea Jaffa Lande & Co.

GDPR – Company Fined for Improper Data Collection

Barnea Jaffa Lande & Co. on

The French Data Protection Authority (CNIL) recently imposed a EUR 310,000 fine, representing 1% of its turnover, on FORIOU, a telemarketing company promoting loyalty programs. The fine stemmed from FORIOU’s use of...more

Wilson Sonsini Goodrich & Rosati

EU Court of Justice Landmark Ruling on Digital Advertising and GDPR Compliance

Wilson Sonsini Goodrich & Rosati on

On March 7, 2024, the European Court of Justice (CJEU) issued a landmark ruling on digital advertising and the concepts of personal data and joint controllership under the General Data Protection Regulation (GDPR)....more

Littler

Developing a Global Data Protection Framework for Artificial Intelligence in the Workplace

Littler on

As employment-related artificial intelligence (“AI”) tools proliferate, multinational employers feel increasing pressure to deploy AI across their global offices.  These tools can provide great value and efficiency across the...more

Integreon

Demystifying DSARs: A Beginner’s Guide

Integreon on

This article originally appeared in The Legal Technologist November/December 2023 Issue here. As individuals, we have the legal right to access personal data held by an organisation, and an increasing number of requests are...more

Hogan Lovells

Second time´s a charm – Spanish DPA's decision on NOYB vs. Google Analytics Part 2

Hogan Lovells on

Following NOYB's filing of 101 complaints over continuous EU-U.S. data transfers by websites operators in the European Economic Area (EEA) in the post-Schrems II era, the Spanish Data Protection Agency (AEPD) issued its first...more

BCLP

Privacy Speaks: A clearer view?

BCLP on

Clearview AI Inc's successful challenge to the ICO’s £7.5 million fine focused on the limits of the UK GDPR’s jurisdictional reach, succeeding on the grounds that Clearview’s processing activities were outside the scope of...more

King & Spalding

New Jersey Enacts Privacy Law

King & Spalding on

On January 8, 2024, New Jersey’s State Legislature passed the Disclosure and Accountability Transparency Act (the “Data Act”). Following Governor’s signature within 45 days, the Data Act would take effect one (1) year after...more

A&O Shearman

CJEU considers approach to retention of personal data from public debt registers

A&O Shearman on

In joined Cases C‑26/22 and C‑64/22, related to the German Credit Reference Agency Schufa (see A&O blog on the automated decision making case), the CJEU considered the retention of personal data regarding individuals who had...more

Morgan Lewis - Tech & Sourcing

What the EU Data Act Means for Cloud Providers

Morgan Lewis - Tech & Sourcing on

The European Council adopted the EU Data Act (the Act) on November 27, 2023, representing a major regulatory shift in cloud services and data processing. The Act’s objectives include ensuring fairness in the allocation of...more

Orrick, Herrington & Sutcliffe LLP

ICO Issues Draft Guidance On Biometric Personal Data

Orrick, Herrington & Sutcliffe LLP on

The ICO has issued a draft guidance on using biometric data and technologies. Who is the guidance aimed at? If your organisation develops or uses biometric technologies, you should familiarise yourself with this guidance....more

Osano

GDPR Compliance Checklist: 8 Steps You Need to Complete

Osano on

GDPR compliance can be tricky. Even if you summon the willpower to read through the law’s text, it can be tough to know where to start. As an alternative to pouring through the GDPR’s legalese, one way to establish a...more

247 Results
 / 
View per page
Page: of 10
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide