News & Analysis as of

General Data Protection Regulation (GDPR) Regulatory Requirements International Data Transfers

Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts... more +
Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts individuals throughout the Union and all businesses operating therein. less -
A&O Shearman

CJEU publishes an updated Fact Sheet summarising key case law on protection of personal data

A&O Shearman on

On April 28 2025, the Court of Justice of the European Union (CJEU) published an updated version of the fact sheet (the Fact Sheet) summarising key case law on protection of personal data. The Fact Sheet covers the case law...more

Hogan Lovells

Malaysia’s Groundbreaking Cross Border Data Transfer Guidelines Explained

Hogan Lovells on

Malaysia’s newly released Cross Border Personal Data Transfer Guidelines mark a groundbreaking shift in its data protection regulatory landscape, requiring data controllers to conduct Transfer Impact Assessments and implement...more

Amundsen Davis LLC

Is My U.S.-Based Company Subject to the GDPR? Clearing Up European Data Privacy Law Misinformation

Amundsen Davis LLC on

If you are a compliance professional for a U.S.-based company, you have probably been told at some point that you have to worry about the General Data Protection Regulation (GDPR). Have you encountered one of these...more

Latham & Watkins LLP

Preparing for the European Health Data Space - Opportunities and Challenges for Europe’s Digital Future

Latham & Watkins LLP on

The EU regulation designed to facilitate secondary use of clinical data for research brings benefits for health research, but also poses challenges for companies....more

Ogletree, Deakins, Nash, Smoak & Stewart,...

Data in the Balance: Political Influence on EU-U.S. Data Transfers

Ogletree, Deakins, Nash, Smoak & Stewart,... on

In politically uncertain times, is your organisation’s data transfer compliance unquestionable? The EU-U.S. Data Privacy Framework (DPF) serves as a useful mechanism for transatlantic data transfers, and it can assist...more

Latham & Watkins LLP

Kingdom of Saudi Arabia Issues New Data Transfer Risk Assessment Guidelines

Latham & Watkins LLP on

The guidelines specify the requirements for data controllers to conduct risk assessments related to the transfer or disclosure of personal data outside the Kingdom. ...more

Constangy, Brooks, Smith & Prophete, LLP

Chile brings its data privacy laws in line with global data privacy standards

Constangy, Brooks, Smith & Prophete, LLP on

Chile has amended its data privacy law granting significant rights to data subjects, and imposing stricter obligations on data controllers and processors. Published in the Official Gazette (Diario Oficial) on December 13,...more

A&O Shearman

CNIL publishes Data Transfer Impact Assessment guide

A&O Shearman on

On January 31, 2025, the French supervisory authority (CNIL) published the final version of its guide on transfer impact assessments (TIA). A TIA must be undertaken by organisations relying on one of the ‘appropriate...more

Jackson Lewis P.C.

Firings at the US Privacy and Civil Liberties Oversight Board and Potential Impact on Transatlantic Data Transfers

Jackson Lewis P.C. on

President Trump recently fired the three democrats on the Privacy and Civil Liberties Oversight Board (PCLOB). Since these firings bring the Board to a sub-quorum level, they have the potential to significantly disrupt...more

A&O Shearman

EU and UK Data Protection Regulatory Trends so far in 2024: a focus on international data transfers

A&O Shearman on

This series of blogs rounds up some of the key data protection regulatory trends we have seen during 2024, focused on the EU and UK. 2024 has seen behavioural advertising and cookies continue to dominate the agenda of...more

Benesch

China Officially Promulgates New Cross-Border Data Transfer Requirements

Benesch on

The newly promulgated measures increase the threshold of data triggering security assessments and contract requirements while leaving room for Chinese authorities to heavily restrict cross-border data transfers. In...more

Mayer Brown

EDPB Provides Guidance On Determining A 'Main Establishment' And The 'One-Stop-Shop' Mechanism

Mayer Brown on

The opinion was issued in response to a request by the French Data Protection Authority and provides guidance on the conditions for determining a controller's main establishment where that controller has establishments in...more

Littler

Department of Commerce Launches the EU-U.S. Data Privacy Framework: Considerations for Multinational Employers that Transfer EU...

Littler on

As of July 17, 2023, U.S.-based multinational employers that can access the personal data of their workforce members in the European Union (EU) via a human resources information system (HRIS), or otherwise transfer the...more

McDermott Will & Emery

Get Ready to Update Your Binding Corporate Rules Regulators Expand Requirements

McDermott Will & Emery on

At the end of June, the European Data Protection Board (EDPB) published its Recommendations (Recs) on Binding Corporate Rules (BCRs). Among other things, the Recs require existing and in process BCRs to: - Incorporate...more

Littler

International Data Transfer of HR Data From the EU to Non-EU Entities – The Deadline for Adapting SCCs is December 27, 2022

Littler on

The EU’s General Data Protection Regulation (GDPR) regulates the transfer of personal data in the European Union. For many multinational employers, Standard Contractual Clauses (SCCs) offer the only practical means of...more

Jenner & Block

Further Clarity on Liability of Local Representatives Under the UK GDPR Expected

Jenner & Block on

Companies not established in the UK who process the personal data of UK-based individuals are required to appoint a representative in the UK pursuant to Article 27 of the UK GDPR. This requirement may become less practical...more

Orrick, Herrington & Sutcliffe LLP

Frequently Asked Questions About the GDPR

Orrick, Herrington & Sutcliffe LLP on

What is the General Data Protection Regulation (GDPR)? The GDPR is an EU law that was passed by parliament and went into effect on May 25, 2018. The GDPR unifies the EU under a single data protection regime for all member...more

BCLP

The Data & Brexit Digest – Drafting tips for contracts and policies

BCLP on

With the UK now unambiguously out of the EU, the EU General Data Protection Regulation (2016/679) (“EU GDPR”) has been replaced by the United Kingdom General Data Protection Regulation (“UK GDPR”). In this third instalment of...more

Hogan Lovells

The Spanish DPA's new take on cookies: back to express consent

Hogan Lovells on

Last November, the Spanish Data Protection Authority (Spanish DPA) published its new Guidelines on the Use of Cookies within the framework of the GDPR and Spanish E-privacy rules. ...more

Hogan Lovells

Should I Be Worried About the GDPR? – EDPB’S Guidelines on the GDPR’S Territorial Scope

Hogan Lovells on

Does the GDPR really apply to my company? From a data protection standpoint, this is the first thing that comes to mind within non-EU companies. In many cases, the GDPR seems like an issue of the Old Continent, so some assume...more

Mintz - Privacy & Cybersecurity Viewpoints

Revised Guidelines on the Territorial Scope of the GDPR and Local Representatives

Mintz - Privacy & Cybersecurity Viewpoints on

The European Data Protection Board (EDPB) recently published an updated version of its guidelines on the territorial scope of the GDPR, which were initially issued just over a year ago. The revised Guidelines do not...more

Littler

12 Months Since GDPR - What Do Employers Really Need to Know?

Littler on

As we sip champagne reflecting on the first anniversary of the effective date of the European General Data Protection Regulation (GDPR), we consider the obligations that employers should bear in mind....more

Hogan Lovells

GDPR – The Year in Review

Hogan Lovells on

Following the one-year anniversary of the coming into effect of the GDPR, Hogan Lovells’ Privacy and Cybersecurity practice has prepared a compilation of key GDPR-related developments of the past 12 months. The compilation...more

Hogan Lovells

Dutch Data Protection Authority Sets GDPR Fines Structure

Hogan Lovells on

On 14 March 2019, the Dutch data protection authority (Autoriteit Persoonsgegevens, DPA) announced (in Dutch) its fining structure for violations of the European General Data Protection Regulation (GDPR) and the Dutch law...more

Neal, Gerber & Eisenberg LLP

Client Alert: No Rest for the Privacy Weary in the New Year: Out with GDPR, in with CCPA

Neal, Gerber & Eisenberg LLP on

The past year brought an onslaught of new data privacy risks and compliance obligations to many companies led in large part by the EU’s landmark General Data Protection Regulation (GDPR) that came into effect last May. ...more

30 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide