News & Analysis as of

General Data Protection Regulation (GDPR) Data Controller

Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts... more +
Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts individuals throughout the Union and all businesses operating therein. less -
Mayer Brown

Personal Data Sharing: What Information About Recipients Do We Need to Provide to Individuals Under the GDPR?

Mayer Brown on

Sharing personal data is necessary for most organisations, but it also entails certain data protection risks. Controllers who share personal data with others must, among other obligations, ensure that they comply with the...more

Fox Rothschild LLP

Uber’s 290 Million Euro Fine: What You Need to Know

Fox Rothschild LLP on

What can U.S.-based and multi-national companies learn from the 290 million euro fine Autoriteit Persoonsgegevens, the Dutch Data Protection Authority, issued against Uber in connection with the processing of Dutch driver...more

BCLP

Analysing the CNIL’s Latest Recommendations for AI Systems

BCLP on

Following the very recent adoption of the EU Regulation on AI (the AI Regulation) the CNIL (the French data regulator) has issued the second in its series of recommendations for the development of privacy-friendly AI models....more

Orrick, Herrington & Sutcliffe LLP

The SREN Law: 5 Things to Know About New French Legislation to Supplement the EU Data Act, Digital Services Act, GDPR and More

Orrick, Herrington & Sutcliffe LLP on

The French government has adopted a law aimed at regulating digital services. The new SREN law (Loi Visant à Sécuriser et à Réguler l'Espace Numérique) adapts French legislation to new EU regulations, including the Digital...more

BCLP

Auction of Personal Data: Clarification of the Concepts of Personal Data and Data Controller

BCLP on

On 7 March 2024, the Court of Justice of the European Union issued a ruling (C-604/22 | IAB Europe) clarifying the concepts of personal data and controller in the context of the use of a Transparency and Consent Framework...more

Ius Laboris

Employers liable for employees’ GDPR errors

Ius Laboris on

A recent judgment of the European Court of Justice (ECJ) sheds light on the question of whether a data controller can be exempted from liability for the error of a person acting under its authority....more

Miles & Stockbridge P.C.

What Businesses Need to Know About Md.’s New Online Data Privacy Act

Miles & Stockbridge P.C. on

Maryland will soon have some of the strictest data protection and privacy requirements in the nation after the Maryland Online Data Privacy Act of 2024 (MODPA) was signed into law by Gov. Wes Moore last week....more

Skadden, Arps, Slate, Meagher & Flom LLP

Data Protection Rulings by European Regulators Offer Insights Into Their Security Expectations

Skadden, Arps, Slate, Meagher & Flom LLP on

Valuable insights into the measures European regulators expect businesses to take to protect data privacy can be found in a report from the European Data Protection Board (EDPB) summarizing decisions under the EU’s General...more

Pillsbury Winthrop Shaw Pittman LLP

China Issues Rules to Clarify and Relax Cross-Border Data Transfer Controls

Pillsbury Winthrop Shaw Pittman LLP on

A data controller that is not a critical information infrastructure operator that cumulatively exports personal information (excluding any sensitive personal information) of less than 100,000 individuals since January 1 of...more

A&O Shearman

CJEU publishes AG opinion on sale of a database of personal data

A&O Shearman on

The Court of Justice of the European Union (CJEU) published the Advocate General's Opinion on whether the GDPR would restrict the sale of a database by court enforcement officers to satisfy creditor claims without the consent...more

Sheppard Mullin Richter & Hampton LLP

DPA 101: Do You Know Where Your Data Is?

Sheppard Mullin Richter & Hampton LLP on

As more and more states enact laws that mirror aspects of GDPR, and as companies begin to get used to the EU’s new standard contractual clauses, now may be a good opportunity for a refresh on data sharing agreements. As most...more

WilmerHale

The EU Data Act: A new European legal framework with rules for data access, switching cloud providers and interoperability

WilmerHale on

On 22 December 2023, the EU published Regulation (EU) 2023/2854, the Data Act, in the Official Journal of the EU. The Data Act is a new regulation providing harmonised rules on access to data, switching cloud providers and...more

Fox Rothschild LLP

Oregon Passes State Privacy Law

Fox Rothschild LLP on

The state of Oregon has passed a comprehensive data protection law (SB0619), which will go into effect in July 2024. What do you need to know about SB0619, also known as the Oregon Consumer Privacy Act?...more

BCLP

Paris Litigation Gazette - Issue 4 - October 2023

BCLP on

In an important judgment handed down on 29 June 2023 (Case C-211/22), the Court of Justice of the European Union (the "CJEU") ruled that a vertical agreement to fix minimum prices does not necessarily constitute a restriction...more

Constangy, Brooks, Smith & Prophete, LLP

Legislative Update: Swiss Data Protection Act took effect September 1

Constangy, Brooks, Smith & Prophete, LLP on

The new Swiss Federal Act on Data Protection, known by the acronym “nFADP,” took effect on September 1. The law was enacted by the Swiss parliament in 2020. The law introduces new rights for Swiss citizens, but also...more

Osano

GDPR Compliance Checklist: 8 Steps You Need to Complete

Osano on

GDPR compliance can be tricky. Even if you summon the willpower to read through the law’s text, it can be tough to know where to start. As an alternative to pouring through the GDPR’s legalese, one way to establish a...more

Alston & Bird

Why the New EU-U.S. Data Privacy Framework May Be Good News for Life Sciences Companies in the U.S.

Alston & Bird on

BACKGROUND - U.S.-based life sciences companies can be subject to the European Union (‘EU’) General Data Protection Regulation (‘GDPR’), even if they do not have any subsidiary, affiliate or other physical presence in the...more

Brownstein Hyatt Farber Schreck

U.S. Companies Now Have a Framework for EU-U.S. Personal Data Transfers

Brownstein Hyatt Farber Schreck on

In a significant milestone for EU-U.S. cross-border transfers of personal data under Article 45 of the General Data Protection Regulation (GDPR), the European Commission adopted an adequacy decision for the new EU-U.S. Data...more

Wilson Sonsini Goodrich & Rosati

European Commission Proposes New Rules for Cross Border GDPR Enforcement

Wilson Sonsini Goodrich & Rosati on

On July 4, 2023, the European Commission (EC) published its proposal for a regulation laying down additional procedural rules for the enforcement of the EU General Data Protection Regulation (GDPR) (proposal). The proposal...more

A&O Shearman

Pakistan – MITT releases final draft of the personal data protection bill

A&O Shearman on

The Pakistan Ministry of Information Technology and Telecommunication (MITT) released a new draft of the Personal Data Protection Bill, 2023 (the PDPB) on 19 May 2023. The PDPB aims to regulate the collection, processing,...more

Vinson & Elkins LLP

The Privacy Boot Scoot: Texas Adopts Comprehensive Data Privacy Legislation

Vinson & Elkins LLP on

Texas will soon join the growing list of states that have passed comprehensive data privacy legislation. House Bill 4, the Texas Data Privacy and Security Act (“TDPSA” or the “Act”), has a broad reach and will apply to all...more

Hogan Lovells

Revealing - UK ICO guidance on employee subject access requests

Hogan Lovells on

The UK ICO has provided guidance for employers on responding to employee subject access requests. Although much of the content reflects existing guidance, it deals specifically with issues such as requests made in the context...more

White & Case LLP

Somewhere Between a Summary and a Data Dump – CJEU Finds Controllers Must Provide Data Subjects a “Faithful And Intelligible” Copy...

White & Case LLP on

The Court of Justice of the EU (CJEU)1 has held that the General Data Protection Regulation (GDPR) requires controllers to provide data subjects a "faithful reproduction" of their personal data, which takes into account the...more

Latham & Watkins LLP

CJEU Sets High Bar for Responses to Data Subject Access Requests

Latham & Watkins LLP on

Organisations must provide individuals with information on the specific recipients of their data upon request. The Court of Justice of the European Union (CJEU) has ruled that organisations must generally disclose the...more

Alston & Bird

International Data Transfers: Lessons from the EDPB’s “101 Task Force”

Alston & Bird on

​​​​​​​In August 2020, privacy activist organization NOYB – European Center for Digital Rights filed 101 complaints with the EU Supervisory Authorities (‘SAs’) in connection with the transfer of personal data from Europe to...more

311 Results
 / 
View per page
Page: of 13
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide