INDUSTRY INSIGHTS YOUR PEERS ARE READING
Recently, the EU’s Article 29 Working Party (the “Working Party”) adopted guidelines (the “Guidance”) on the meaning of consent under the EU General Data Protection Regulation (“GDPR”). European Union Information Security International Article 29 Working Party Consent Data Controller Data Processor EU Regulation Privacy MORE
The Article 29 Working Party (“Working Party”) recently issued its Opinion on data processing at work (the “Opinion”). The Opinion considers data protection by design, data protection impact assessments and Article 88 with respect to processing employee data. MORE
Separately, Europe’s Article 29 Working Party issued a statement on data protection and privacy aspects of cross-border access to electronic evidence , warning that: “the adoption of an instrument compelling organizations not subject to the jurisdiction of an EU Member State would conflict with the applicable law and jurisdiction of the country where the organization is established. Territoriality will continue to be one of the most vexing problems for data regulation in 2018. MORE
My latest CMSWire article is " How Information Architecture Improves Customer Experience ": Have you ever had a problem finding information on a website or app? If so, you were experiencing a poor information architecture (IA). Conversely, a great experience with a site or application is only possible with solid IA under the surface. MORE
I'm still in the process of migrating content from my old blog - for a consolidated list of my articles, presentations and papers please see this page MORE
What does Article 30 require? Article 30 of the EU General Data Protection Regulation (GDPR) sets out what exactly organisations need to document in order to comply with the Regulation. What do you need to do to comply with Article 30? MORE
Interesting article by Major General Hao Yeli, Chinese People's Liberation Army (ret.), a senior advisor at the China International Institute for Strategic Society, Vice President of China Institute for Innovation and Development Strategy, and the Chair of the Guanchao Cyber Forum. MORE
On January 16, 2017, the Article 29 Working Party (“Working Party”) published further information about its Action Plan for 2017 , which sets forth the Working Party’s priorities and objectives in the context of implementation of the EU General Data Protection Regulation (“GDPR”) for the year ahead. International Article 29 Working Party Data Protection Authority Data Transfer EU Regulation MORE
Last week the Article 29 Data Protection Working Party released updated guidelines in relation to personal data breach notifications and automated individual decision-making and profiling under the General Data Protection Regulation. The significance of ‘awareness’ is that this concept triggered when the clock starts ticking to notify the relevant supervisory authority under Article 33(1) GDPR. MORE
On 12 December 2017, the Article 29 Working Party (“WP29”) published draft guidance on the obligation of transparency , to be found here. In particular article 12, which cuts this principle into the following elements: 1. The post EUROPE: Article 29 Working Party publish draft Guidelines on Transparency appeared first on Privacy Matters. MORE
On January 18, 2018, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP submitted formal comments to the Article 29 Working Party (the “Working Party”) on its updated Working Documents, which include a table with the elements and principles found in Binding Corporate Rules (“BCRs”) and Processor Binding Corporate Rules (the “Working Documents”). MORE
This requirement outlines a number of controls that organizations must build into the systems that process any personal data. GDPR Compliance Compliance systems Data security Data privacy MORE
On February 7, 2018, representatives of European Data Protection Authorities (“DPAs”) met in Brussels to appoint the new leader of the current Article 29 Data Protection Working Party (the “Working Party”). European Union International Article 29 Working Party Austria Data Protection Authority EU Member States EU Regulation Germany MORE
On January 29, 2018, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP submitted formal comments to the Article 29 Working Party (the “Working Party”) on its Guidelines on Consent (the “Guidelines”). Centre for Information Policy Leadership European Union Article 29 Working Party Consent Data Controller Data Processor EU Data Protection Directive EU Regulation Privacy MORE
Learn more about the right way to approach your data governance governance strategy in 2018 by checking out our top performing articles MORE
On January 29, 2018, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP submitted formal comments to the Article 29 Working Party (the “Working Party”) on its Guidelines on Transparency (the “Guidelines”). CIPL believes Articles 13 and 14 of the GDPR already require sufficient information, and the risk-based approach gives organizations the opportunity to prioritize which information should be provided. MORE
The cases subsequently were consolidated, and on December 29, 2018, the Northern District of Illinois dismissed the case on standing grounds, finding that despite the existence of statutory standing under BIPA, neither plaintiff had claimed any injury that would support Article III standing. Robins , the Supreme Court held that Article III standing requires a concrete and particularized injury even in the context of a statutory violation. MORE
On December 12, 2017, the Article 29 Working Party (“Working Party”) published its guidelines on transparency under Regulation 2016/679 (the “Guidelines”). Content of the notice : With respect to the content of information to be provided to data subjects, the Guidelines refer to Articles 13 and 14 of the GDPR and the Annex to the Guidelines, which list the categories of information that must be included in the notices. MORE
Check out my latest article on MEDIUM: Is it even possible to be “completely secure”? Business Defense Devil's Advocate Humans MEDIUM Articles Mobile and Device Personal Security Privacy Softwarelink]. MORE
On February 12, 2018, the Article 29 Working Party (WP29) published guidance regarding Article 49 of the General Data Protection Regulation (GDPR) for public comment. and (2) where the entity therein has committed to handle the Personal Data of European data subjects applying appropriate safeguards in accordance with Article 46 of the GDPR. The February 12 draft guidance for public comment addresses each of the exemptions specified in Article 49. MORE
On April 11, 2018, the Article 29 Working Party (the “Working Party”) adopted two Recommendations on the Standard Application for Approval of Data Controller or Processor Binding Corporate Rules for the Transfer of Personal Data (the “Recommendations”). These Recommendations, in the form of questionnaires, are intended to help BCR applicants demonstrate how they fulfill the requirements of Article 47 of the GDPR. MORE
On October 17, 2017, the Article 29 Working Party (“Working Party”) issued Guidelines on Automated individual decision-making and Profiling for the purposes of Regulation 2016/679 (the “Guidelines”). When engaging in automated decision-making under the Article 22(2)(a) exception (necessary for the performance of a contract), necessity should be interpreted narrowly. European Union International Article 29 Working Party Data Controller MORE
Check out my latest article on MEDIUM: Cybersecurity Trends for 2019?—?The The Good and The Bad MORE
On December 15, 2016, the Article 29 Working Party (“Working Party”) issued a press release announcing its December 13, 2016, adoption and release of three sets of guidelines and FAQs on key implementation issues under the EU General Data Protection Regulation (“GDPR”): Guidelines and FAQs on the Right to Data Portability; Guidelines and FAQs on Data Protection Officers (DPO); and. MORE
TITLE. LOREM IPSUM DOLOR SIT AMET, CONSECTETUR ADIPISCING ELIT. DUO REGES: CONSTRUCTIO INTERRETE. PRODEST, INQUIT, MIHI EO ESSE ANIMO. SEQUITUR DISSERENDI RATIO COGNITIOQUE NATURAE; IN QUA QUID EST BONI PRAETER SUMMAM VOLUPTATEM, ET EAM SEMPITERNAM? NOS QUIDEM VIRTUTES SIC NATAE SUMUS, UT TIBI SERVIREMUS, ALIUD NEGOTII NIHIL HABEMUS. QUI AUTEM DE SUMMO BONO DISSENTIT DE TOTA PHILOSOPHIAE RATIONE DISSENTIT. AVARITIAMNE MINUIS? MORE
40 
Check out my latest article on MEDIUM: Deepfakes and Deep Video Portraits?—?What Media MEDIUM Articles Privacy Social Media TechWhat are they and what is the difference? link]. MORE
On 12 December 2017, the Article 29 Working Party (WP29) published draft Guidelines on Consent under the General Data Protection Regulation (GDPR). The Guidelines begin with an overview of the elements of valid consent under Article 4(11), reiterating that consent must be (i) freely given, (ii) specific, (iii) informed, and (iv) unambiguously indicated. Article 7(3) requires controllers to ensure that consent can be withdrawn as easily it was given. MORE
A look back at the 10 top news articles, features and slideshows that were the most popular with Information Management readers. MDM Analytics Machine learning Business intelligence Artificial intelligence Big data Industry salaries Data security Data governance MORE
Data science, machine learning, artificial intelligence and big data were the topics that drew the most interest from Information Management readers. Data science Machine learning Artificial intelligence Analytics Big data MORE
This is a good article on the complicated story of hacker Marcus Hutchins. bitcoin cybersecurity fraud hacking killswitch privacy ransomware MORE
Today my first CMSWire article was published: Why You Need a Unified Information Strategy. Information is one of the most important business assets, yet organizations continue to struggle with growing information chaos. Even with continuing advances in technology, buying more tech is not solving the problem. Yes, technology is part of the solution, but to get it right, you must get your information strategy right. Read more » I appreciate CMSWire for letting me be a contributor. MORE
On December 1, 2017, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP submitted formal comments to the Article 29 Working Party (the “Working Party”) on its Guidelines on Personal Data Breach Notification (the “Guidelines”). The definition of an “availability breach” used in the Guidelines does not fit the GDPR’s Article 4(12) definition of a “personal data breach.” MORE
Recent enforcement actions by data protection authorities in the European Union demonstrate that they’re more than willing to enforce GDPR Article 5. What Does GDPR Article 5 Require? GDPR Article 5 details the standards organizations have to follow when processing personal data. MORE
How to Get Your Information Governance Projects Funded One of the big challenges for information governance professionals is getting buy-in from business stakeholders and sponsors for funding projects. MORE
Creating a Culture of Information Management Excellence Last year, I wrote an article titled, “ What Does Culture Have to Do with Information Management? ” which made the case for addressing culture as a part of any successful information management implementation project. Today, I wanted to offer some practical advice on how to create or install a culture of information management excellence. So, how do we actually create this type of culture? Borrowing from John C. MORE
General Counsel Can Spur Legal Hold Success Check out my latest article which was published in the December/January 2017 digital edition of Today’s General Counsel titled: “General Counsel Can Spur Legal Hold Success” . Read the article here MORE
As 2018 is coming to a close, we at Connotate are looking back at the blog posts we published this year to see which ones you responded to the most. In case you missed some of the posts and only have time to read the most popular ones — here are the top five most […]. MORE
On December 1, 2017, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP submitted formal comments to the Article 29 Working Party (the “Working Party”) on its Guidelines on Automated Individual Decision-Making and Profiling (the “Guidelines”). The meaning of “legal” effect and “similarly significant” effect must be interpreted strictly to ensure Article 22 only covers truly impactful ADM. MORE
The New York Times just published a long article on the Shadow Brokers and their effects on NSA operations. Summary: it's been an operational disaster, the NSA still doesn't know who did it or how, and NSA morale has suffered considerably. This is me on the Shadow Brokers from last May. MORE
Recently, the EU’s Article 29 Working Party (”Working Party”) held a plenary meeting to discuss, among other things, the implementation of the EU General Data Protection Regulation (“GDPR”) and the EU-U.S. Future work includes: developing a position on Article 3 of the GDPR, which pertains to the GDPR’s territorial scope; a new opinion on the proposal of the ePrivacy Regulation, which the European Commission aims to introduce alongside the GDPR. MORE
Article Related Topics InfoGoTo
JULY 24, 2019
Recent enforcement actions by data protection authorities in the European Union demonstrate that they’re more than willing to enforce GDPR Article 5. What Does GDPR Article 5 Require? GDPR Article 5 details the standards organizations have to follow when processing personal data.
CILIP
APRIL 16, 2019
TITLE. LOREM IPSUM DOLOR SIT AMET, CONSECTETUR ADIPISCING ELIT. DUO REGES: CONSTRUCTIO INTERRETE. PRODEST, INQUIT, MIHI EO ESSE ANIMO. SEQUITUR DISSERENDI RATIO COGNITIOQUE NATURAE; IN QUA QUID EST BONI PRAETER SUMMAM VOLUPTATEM, ET EAM SEMPITERNAM? NOS QUIDEM VIRTUTES SIC NATAE SUMUS, UT TIBI SERVIREMUS, ALIUD NEGOTII NIHIL HABEMUS. QUI AUTEM DE SUMMO BONO DISSENTIT DE TOTA PHILOSOPHIAE RATIONE DISSENTIT. AVARITIAMNE MINUIS?
Schneier on Security
MARCH 16, 2018
This is a good article on the complicated story of hacker Marcus Hutchins. bitcoin cybersecurity fraud hacking killswitch privacy ransomware
IT Governance
JUNE 21, 2018
What does Article 30 require? Article 30 of the EU General Data Protection Regulation (GDPR) sets out what exactly organisations need to document in order to comply with the Regulation. What do you need to do to comply with Article 30?
Getting Information Done
DECEMBER 6, 2016
General Counsel Can Spur Legal Hold Success Check out my latest article which was published in the December/January 2017 digital edition of Today’s General Counsel titled: “General Counsel Can Spur Legal Hold Success” . Read the article here
Information Management Resources
JANUARY 10, 2019
A look back at the 10 top news articles, features and slideshows that were the most popular with Information Management readers. MDM Analytics Machine learning Business intelligence Artificial intelligence Big data Industry salaries Data security Data governance
|
Getting Information Done
MARCH 14, 2017
Creating a Culture of Information Management Excellence Last year, I wrote an article titled, “ What Does Culture Have to Do with Information Management? ” which made the case for addressing culture as a part of any successful information management implementation project. Today, I wanted to offer some practical advice on how to create or install a culture of information management excellence. So, how do we actually create this type of culture? Borrowing from John C.
Information Management Resources
JANUARY 22, 2018
Data science, machine learning, artificial intelligence and big data were the topics that drew the most interest from Information Management readers. Data science Machine learning Artificial intelligence Analytics Big data
Schneier on Security
NOVEMBER 14, 2017
The New York Times just published a long article on the Shadow Brokers and their effects on NSA operations. Summary: it's been an operational disaster, the NSA still doesn't know who did it or how, and NSA morale has suffered considerably. This is me on the Shadow Brokers from last May.
Architect Security
JANUARY 8, 2019
Check out my latest article on MEDIUM: Deepfakes and Deep Video Portraits?—?What Media MEDIUM Articles Privacy Social Media TechWhat are they and what is the difference? link].
Schneier on Security
JANUARY 17, 2018
Interesting article by Major General Hao Yeli, Chinese People's Liberation Army (ret.), a senior advisor at the China International Institute for Strategic Society, Vice President of China Institute for Innovation and Development Strategy, and the Chair of the Guanchao Cyber Forum.
|
Architect Security
JANUARY 8, 2019
Check out my latest article on MEDIUM: Is it even possible to be “completely secure”? Business Defense Devil's Advocate Humans MEDIUM Articles Mobile and Device Personal Security Privacy Softwarelink].
Connotate
DECEMBER 4, 2018
As 2018 is coming to a close, we at Connotate are looking back at the blog posts we published this year to see which ones you responded to the most. In case you missed some of the posts and only have time to read the most popular ones — here are the top five most […].
Hunton Privacy
JANUARY 15, 2019
The cases subsequently were consolidated, and on December 29, 2018, the Northern District of Illinois dismissed the case on standing grounds, finding that despite the existence of statutory standing under BIPA, neither plaintiff had claimed any injury that would support Article III standing. Robins , the Supreme Court held that Article III standing requires a concrete and particularized injury even in the context of a statutory violation.
Hunton Privacy
JANUARY 17, 2017
On January 16, 2017, the Article 29 Working Party (“Working Party”) published further information about its Action Plan for 2017 , which sets forth the Working Party’s priorities and objectives in the context of implementation of the EU General Data Protection Regulation (“GDPR”) for the year ahead. International Article 29 Working Party Data Protection Authority Data Transfer EU Regulation
IBM Big Data Hub
MARCH 5, 2018
Learn more about the right way to approach your data governance governance strategy in 2018 by checking out our top performing articles
Hunton Privacy
FEBRUARY 8, 2018
On February 7, 2018, representatives of European Data Protection Authorities (“DPAs”) met in Brussels to appoint the new leader of the current Article 29 Data Protection Working Party (the “Working Party”). European Union International Article 29 Working Party Austria Data Protection Authority EU Member States EU Regulation Germany
IBM Big Data Hub
SEPTEMBER 28, 2017
Digital disruption has revolutionized the way we live and do business — and machine learning is the latest wave of that revolution
Hunton Privacy
DECEMBER 20, 2017
On December 12, 2017, the Article 29 Working Party (“Working Party”) published its guidelines on transparency under Regulation 2016/679 (the “Guidelines”). Content of the notice : With respect to the content of information to be provided to data subjects, the Guidelines refer to Articles 13 and 14 of the GDPR and the Annex to the Guidelines, which list the categories of information that must be included in the notices.
Data Protection Report
MARCH 5, 2018
On February 12, 2018, the Article 29 Working Party (WP29) published guidance regarding Article 49 of the General Data Protection Regulation (GDPR) for public comment. and (2) where the entity therein has committed to handle the Personal Data of European data subjects applying appropriate safeguards in accordance with Article 46 of the GDPR. The February 12 draft guidance for public comment addresses each of the exemptions specified in Article 49.
Hunton Privacy
DECEMBER 15, 2017
Recently, the EU’s Article 29 Working Party (the “Working Party”) adopted guidelines (the “Guidance”) on the meaning of consent under the EU General Data Protection Regulation (“GDPR”). European Union Information Security International Article 29 Working Party Consent Data Controller Data Processor EU Regulation Privacy
DLA Piper Privacy Matters
FEBRUARY 21, 2018
Last week the Article 29 Data Protection Working Party released updated guidelines in relation to personal data breach notifications and automated individual decision-making and profiling under the General Data Protection Regulation. The significance of ‘awareness’ is that this concept triggered when the clock starts ticking to notify the relevant supervisory authority under Article 33(1) GDPR.
Hunton Privacy
FEBRUARY 2, 2018
On January 29, 2018, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP submitted formal comments to the Article 29 Working Party (the “Working Party”) on its Guidelines on Transparency (the “Guidelines”). CIPL believes Articles 13 and 14 of the GDPR already require sufficient information, and the risk-based approach gives organizations the opportunity to prioritize which information should be provided.
Hunton Privacy
MAY 1, 2018
On April 11, 2018, the Article 29 Working Party (the “Working Party”) adopted two Recommendations on the Standard Application for Approval of Data Controller or Processor Binding Corporate Rules for the Transfer of Personal Data (the “Recommendations”). These Recommendations, in the form of questionnaires, are intended to help BCR applicants demonstrate how they fulfill the requirements of Article 47 of the GDPR.
DLA Piper Privacy Matters
DECEMBER 13, 2017
On 12 December 2017, the Article 29 Working Party (WP29) published draft Guidelines on Consent under the General Data Protection Regulation (GDPR). The Guidelines begin with an overview of the elements of valid consent under Article 4(11), reiterating that consent must be (i) freely given, (ii) specific, (iii) informed, and (iv) unambiguously indicated. Article 7(3) requires controllers to ensure that consent can be withdrawn as easily it was given.
DLA Piper Privacy Matters
DECEMBER 14, 2017
On 12 December 2017, the Article 29 Working Party (“WP29”) published draft guidance on the obligation of transparency , to be found here. In particular article 12, which cuts this principle into the following elements: 1. The post EUROPE: Article 29 Working Party publish draft Guidelines on Transparency appeared first on Privacy Matters.
Hunton Privacy
JULY 3, 2017
The Article 29 Working Party (“Working Party”) recently issued its Opinion on data processing at work (the “Opinion”). The Opinion considers data protection by design, data protection impact assessments and Article 88 with respect to processing employee data.
Hunton Privacy
FEBRUARY 5, 2018
On January 18, 2018, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP submitted formal comments to the Article 29 Working Party (the “Working Party”) on its updated Working Documents, which include a table with the elements and principles found in Binding Corporate Rules (“BCRs”) and Processor Binding Corporate Rules (the “Working Documents”).
Hunton Privacy
DECEMBER 16, 2016
On December 15, 2016, the Article 29 Working Party (“Working Party”) issued a press release announcing its December 13, 2016, adoption and release of three sets of guidelines and FAQs on key implementation issues under the EU General Data Protection Regulation (“GDPR”): Guidelines and FAQs on the Right to Data Portability; Guidelines and FAQs on Data Protection Officers (DPO); and.
Information Management Resources
JANUARY 16, 2018
This requirement outlines a number of controls that organizations must build into the systems that process any personal data. GDPR Compliance Compliance systems Data security Data privacy
JKevinParker
MAY 7, 2017
My latest CMSWire article is " How Information Architecture Improves Customer Experience ": Have you ever had a problem finding information on a website or app? If so, you were experiencing a poor information architecture (IA). Conversely, a great experience with a site or application is only possible with solid IA under the surface.
Hunton Privacy
FEBRUARY 2, 2018
On January 29, 2018, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP submitted formal comments to the Article 29 Working Party (the “Working Party”) on its Guidelines on Consent (the “Guidelines”). Centre for Information Policy Leadership European Union Article 29 Working Party Consent Data Controller Data Processor EU Data Protection Directive EU Regulation Privacy
Hunton Privacy
OCTOBER 23, 2017
On October 17, 2017, the Article 29 Working Party (“Working Party”) issued Guidelines on Automated individual decision-making and Profiling for the purposes of Regulation 2016/679 (the “Guidelines”). When engaging in automated decision-making under the Article 22(2)(a) exception (necessary for the performance of a contract), necessity should be interpreted narrowly. European Union International Article 29 Working Party Data Controller
JKevinParker
MARCH 27, 2017
Today my first CMSWire article was published: Why You Need a Unified Information Strategy. Information is one of the most important business assets, yet organizations continue to struggle with growing information chaos. Even with continuing advances in technology, buying more tech is not solving the problem. Yes, technology is part of the solution, but to get it right, you must get your information strategy right. Read more » I appreciate CMSWire for letting me be a contributor.
Architect Security
DECEMBER 30, 2018
Check out my latest article on MEDIUM: Cybersecurity Trends for 2019?—?The The Good and The Bad
Hunton Privacy
DECEMBER 8, 2017
Recently, the EU’s Article 29 Working Party (”Working Party”) held a plenary meeting to discuss, among other things, the implementation of the EU General Data Protection Regulation (“GDPR”) and the EU-U.S. Future work includes: developing a position on Article 3 of the GDPR, which pertains to the GDPR’s territorial scope; a new opinion on the proposal of the ePrivacy Regulation, which the European Commission aims to introduce alongside the GDPR.
Hunton Privacy
DECEMBER 8, 2017
On December 1, 2017, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP submitted formal comments to the Article 29 Working Party (the “Working Party”) on its Guidelines on Automated Individual Decision-Making and Profiling (the “Guidelines”). The meaning of “legal” effect and “similarly significant” effect must be interpreted strictly to ensure Article 22 only covers truly impactful ADM.
Hunton Privacy
DECEMBER 7, 2017
On December 1, 2017, the Centre for Information Policy Leadership (“CIPL”) at Hunton & Williams LLP submitted formal comments to the Article 29 Working Party (the “Working Party”) on its Guidelines on Personal Data Breach Notification (the “Guidelines”). The definition of an “availability breach” used in the Guidelines does not fit the GDPR’s Article 4(12) definition of a “personal data breach.”
ChiefTech
AUGUST 4, 2012
I'm still in the process of migrating content from my old blog - for a consolidated list of my articles, presentations and papers please see this page
HL Chronicle of Data Protection
FEBRUARY 8, 2018
Separately, Europe’s Article 29 Working Party issued a statement on data protection and privacy aspects of cross-border access to electronic evidence , warning that: “the adoption of an instrument compelling organizations not subject to the jurisdiction of an EU Member State would conflict with the applicable law and jurisdiction of the country where the organization is established. Territoriality will continue to be one of the most vexing problems for data regulation in 2018.
Let's personalize your content