Blogs

On February 8, 2016, the French Data Protection Authority (CNIL) issued a formal notice to Facebook to comply within three months with the French Data Protection Act. According to CNIL, among other violations, Facebook is breaching French Data Protection Laws by transferring “personal data to the United States on the basis of Safe Harbour, although the […]

On February 3, 2016, Article 29 Working Party (WP29) met to discuss the consequences of the European Court of Justice’s ruling of October 6, 2015, which declared the old Safe Harbor framework invalid (see here for more information). WP29 welcomed the recent EU-U.S. announcement that the “Privacy Shield” will substitute the old “Safe Harbour” (see here). However, it […]

On February 2, 2016, the EU Commission and the U.S. government approved the EU-U.S. “Privacy Shield”. This new framework reflects the requirements set out by the European Court of Justice in its ruling of October 6, 2015, which declared the old Safe Harbor framework invalid (see here for more information). The new Privacy Shield will […]

Considering the technological developments in the public utilities’ sector and the use of “smart” technological components, the AGCOM (Italian Regulatory Authority for Communications) – after studying the results a survey on M2M (see Delibera n. 708/13/CONS) – has established a permanent working group to study M2M issues. Delibera n. 459/15/CONS. The working group – which is open to the interested public […]

The author explains how the implementation of the General Data Protection Regulation, GDPR”, will impact organizations and Data Controllers processing EU citizen’s personal data. The author specifically discusses the figure of the qualified Data Protection Officers (DPO) and its professional requirements. He predicts a shortage of DPOs in Europe in the near future. The full […]

According to this source, in November 2015, in a discussion on the  Internet of Things (IoT) policies, Thibaut Kleiner (head at the European Commission Directorate General for Communications Networks, Content & Technology (DG Connect)), said this is for a the EU “key moment in policy in relation to IoT”. Kleiner questioned whether the IoT should be […]

What’s this all about? As you will be well aware, the European Court ruled in the Schrems case last autumn 2014 that the EU US Safe Harbor Decision was invalid (see here for our earlier alert and a short film update). The EU and the US have been in discussion to try and agree a “Safe Harbor […]

On January 1, 2016, the Dutch bill introducing compulsory notifications for data security breaches (see here) came into force. The legislation also increases fines in case of privacy violations. The Dutch law anticipates the new Regulation which introduced a generalized data breach notification (within 72 hours) to enter into force in 2018. See here. For more […]

According to the author, the General Data Protection Regulation is a milestone law attempting “to apply new order to the complexity of data in society”. In his essay, author discusses how “we will continue to see a public policy debate over many of the provisions of the GDPR”.   The full text is available at […]

The author explains how “the EU’s new data protection rules will impact every entity that holds or uses European personal data both inside and outside of Europe, according to legal experts”, and how organizations will have to encompass the three key components of the GDPR (General Data Protection Regulation) “namely a new compliance journey, a […]