Examples, Exercises, Personal data and Security

UAE: Federal level data protection law enacted

DLA Piper Privacy Matters

DECEMBER 3, 2021

45 of 2021 on the Protection of Personal Data Protection (“ PDPL ”), which was issued on 26 September 2021. Reassuringly, the PDPL does not contain any major divergences from other well-known data protection regimes, including the GDPR. What does the PDPL cover and who does it apply to? Definitions. Territoriality.

Personal data

Personal data Data breaches GDPR Compliance

Colorado AG Publishes Draft Colorado Privacy Act Rules

Hunton Privacy

NOVEMBER 1, 2022

Below are key examples of topics addressed by the proposed regulations. Right to Request to Exercise Personal Data Rights (Rule 4.02 – Rule 4.07; 6.11). Businesses are required to document and maintain records of all consumer data rights requests, in a readable format, for at least twenty-four (24) months.

Privacy

Privacy Personal data Data collection Compliance

CNIL’s New Guidelines on HR Processing

HL Chronicle of Data Protection

APRIL 21, 2020

The new guidelines are applicable to public and private companies for the processing of their employees’ personal data. “Employees” is broadly understood as including permanent employees, temporary workers, interns and trainees, civil servants, apprentices, etc. Categories of personal data.

Personal data

Personal data GDPR Big data Compliance

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

The GDPR puts forth a litany of rules for how organizations in and outside of Europe handle the personal data of EU residents. The details of any organization’s plan to become fully GDPR compliant will vary based on the data the organization collects and what it does with that data.

GDPR

GDPR Compliance Personal data Privacy

How to comply with Article 30 of the GDPR

IT Governance

JUNE 21, 2018

Article 30 of the EU General Data Protection Regulation (GDPR) sets out what exactly organisations need to document in order to comply with the Regulation. One key part of this record-keeping activity is to document the category of individuals (employees, customers, etc.) Where to begin with a data flow map? Formats (e.g.

GDPR

GDPR Personal data Risk Cloud

France: The CNIL publishes a practical guide on Data Protection Officers

DLA Piper Privacy Matters

NOVEMBER 29, 2021

The CNIL provides practical advice to the management and the operational staff who process personal data, in order to ensure that such processing is carried out in compliance with the applicable data protections laws. The DPO is the key contact for the CNIL and data subjects. Provide information and advice.

GDPR

GDPR Compliance Personal data Communications

CNIL Publishes Six Step Methodology and Tools to Prepare for GDPR

Hunton Privacy

MARCH 17, 2017

Step 1: Appointing a Data Protection Officer (“DPO”) or “Pilot”. The CNIL’s methodology first stresses the need for organizations to appoint a leader to pilot governance of data protection within their structure. This person will internally carry out informational, advisory and control tasks.

GDPR

GDPR Personal data Compliance Privacy

EDPB Publishes Guidelines on the Concepts of Controller and Processor in the GDPR

Hunton Privacy

SEPTEMBER 10, 2020

On September 7, 2020, the European Data Protection Board (“EDPB”) released draft Guidelines 07/2020 on the concepts of controller and processor in the EU General Data Protection Regulation (“GDPR”) (the “Guidelines”). It is not necessary that controllers have access to the personal data.

GDPR

GDPR Personal data Data breaches Compliance

Europe: EDPB issues Recommendations on Supplementary Measures and European Essential Guarantees for surveillance measures following Schrems II

DLA Piper Privacy Matters

NOVEMBER 12, 2020

On 11 November, the European Data Protection Board (“ EDPB ”) published recommendations on measures that supplement transfer tools to ensure compliance with the EU level of protection of personal data (“ Recommendations ”) as well as recommendations on the European Essential Guarantees for surveillance measures (“ EEGs ”).

Paper

Paper Personal data Privacy Access

7 key stages of the data protection impact assessment (DPIA)

IT Governance

SEPTEMBER 4, 2019

2 ) Large-scale use of sensitive data : “(b) processing on a large scale of special categories of data referred to in Article 9(1), or of personal data relating to criminal convictions and offences referred to in Article 10”. The nature of the processing is what you plan to do with the personal data.

Personal data

Personal data GDPR Risk Access

California Consumer Privacy Act Signed, Introduces Key Privacy Requirements for Businesses

Hunton Privacy

JUNE 29, 2018

This definition of personal information aligns more closely with the EU General Data Protection Regulation’s definition of personal data. Detect security incidents; protect against malicious, deceptive, fraudulent or illegal activity; or prosecute those responsible for that activity.

Privacy

Privacy Sales Personal data Communications

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

The GDPR applies to entities that are established in the EU, as well as entities not established in the EU that process the personal data of persons located in the EU in the context of either (i) offering goods or services to persons in the EU, or (ii) monitoring the behavior of persons in the EU.

GDPR

GDPR Privacy Personal data Sales

When And How Cos. Should Address Cyber Legal Compliance

Data Matters

OCTOBER 30, 2017

They can, however, engage in probing internal due diligence of their companies’ cyber governance and compliance posture before it is too late — that is, before a cyber event occurs. Responsibility for corporate cybersecurity extends from the chief information security officer’s office, to the C-suite, to the corporate boardroom.

Compliance

Compliance Cybersecurity Risk Government

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. Specific categories defined as personal information include.

GDPR

GDPR Privacy Sales Data breaches

5 learnings from the “Meeting the CCPA Challenge” webinar

Collibra

MARCH 12, 2020

Collibra recently partnered with Kelle O’Neal, CEO of First San Francisco Partners (FSFP), to host a joint webinar “ Meeting the CCPA Challenge ” about the complexities of the California Consumer Protection Act (CCPA) for the International Association of Privacy Professionals (IAPP). What kind of personal information do we have?

Data Privacy

Data Privacy Privacy Government Compliance

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

The GDPR applies to entities that are established in the EU, as well as entities not established in the EU that process the personal data of persons located in the EU in the context of either (i) offering goods or services to persons in the EU, or (ii) monitoring the behavior of persons in the EU.

GDPR

GDPR Privacy Personal data Sales

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

HL Chronicle of Data Protection

OCTOBER 3, 2018

The GDPR applies to entities that are established in the EU, as well as entities not established in the EU that process the personal data of persons located in the EU in the context of either (i) offering goods or services to persons in the EU, or (ii) monitoring the behavior of persons in the EU.

GDPR

GDPR Privacy Personal data Sales

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

According to the bill’s author, it was consciously designed to emulate the new European General Data Protection Regulation (GDPR) that went into effect on May 25, and if and when it goes into effect, it would constitute the broadest privacy law in the United States. Specific categories defined as personal information include.

GDPR

GDPR Privacy Sales Data breaches

GDPR is upon us: are you ready for what comes next?

Data Protection Report

MAY 23, 2018

The European Commission Fact Sheet and Q&A includes statistics that nine out of ten Europeans have expressed concern about mobile apps collecting their data without their consent, and seven out of ten worry about the potential use that companies may make of the information disclosed. Challenge #1. Challenge #3.

GDPR

GDPR Personal data Compliance Data breaches

Data Protection Regime in Turkey Takes Shape

Data Protection Report

DECEMBER 6, 2017

On October 28, 2017, the Turkish Data Protection Authority (the “ Authority ”) published an important regulation supplementing the Law on Protection of Personal Data (the “ Data Protection Law ”), namely the Regulation on the Deletion, Destruction and Anonymization of Personal Data (the “ Regulation ”).

Personal data

Personal data Paper Encryption Cloud

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

And existing California law provides for the confidentiality of personal information in various contexts, including under the Online Privacy Protection Act, the Privacy Rights for California Minors in the Digital World Act, and Shine the Light. Derives 50% or more of annual revenues from selling consumer “personal information”.

Privacy

Privacy Sales Compliance Cybersecurity

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

Data Protection Report

JUNE 29, 2018

It also requires a description of consumers’ rights and the categories of personal information the business has sold in the preceding 12 months. Consumer access and data portability rights. Individuals will be able to require to direct Covered Entities to delete their personal information. Right to opt in for children.

Privacy

Privacy GDPR Personal data Risk

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

Data Protection Report

JUNE 29, 2018

It also requires a description of consumers’ rights and the categories of personal information the business has sold in the preceding 12 months. Consumer Access and Data Portability Rights. Individuals will be able to require to direct Covered Entities to delete their personal information. Right to Opt In for Children.

Privacy

Privacy GDPR Personal data Risk

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

And existing California law provides for the confidentiality of personal information in various contexts, including under the Online Privacy Protection Act, the Privacy Rights for California Minors in the Digital World Act, and Shine the Light. Derives 50% or more of annual revenues from selling consumer “personal information”.

Privacy

Privacy Sales Education Compliance

EU data governance regulation – A wave of digital, regulatory and antitrust reform begins – Part Two

Data Protection Report

DECEMBER 17, 2020

The EC anticipates that providers of data sharing services, or data intermediaries, will play a key role in facilitating the aggregation and exchange of substantial amounts of relevant data (personal and non-personal data). What are the other excluded categories? Requirement to notify.

Government

Government Personal data GDPR Access

The debate on the Data Protection Bill in the House of Lords

Data Protector

OCTOBER 11, 2017

We want businesses to ensure that their customers and future customers have consented to having their personal data processed, but we also need to ensure that the enormous potential for new data rights and freedoms does not open us up to new threats. How then will we secure adequacy without adhering to the charter?

GDPR

GDPR Personal data Government IT

The Burden of Privacy In Discovery

Data Matters

SEPTEMBER 29, 2021

Relatively recent advances in technology — smartphones and social media, in particular — have allowed businesses to collect, store, and find ways to monetize far more personal data than ever before. For example, in John B. The principle of proportionality in civil discovery is hardly new.4

Privacy

Privacy e-Discovery Computer and Electronics e-Delivery

The ICO Updates Its Data Sharing Code of Practice

HL Chronicle of Data Protection

AUGUST 5, 2019

On 9 July 2019 the UK data protection authority (ICO) updated its Data Sharing Code of Practice (first published in 2011) (Code). The Code, made under section 121 of the UK’s Data Protection Act (DPA), is publicly available for consultation until 9 September 2019. Specific data sharing cases.

GDPR

GDPR IT Personal data Compliance

Council of the European Union Releases Draft Compromise Text on the Proposed EU Data Protection Regulation

Hunton Privacy

JUNE 4, 2013

The Presidency’s amendments are limited to only Chapters I to IV of the Proposed Regulation, and, accordingly, do not offer amendments on issues addressed in later chapters, including international data transfers, powers of the supervisory authorities or sanctions. Scope of the Proposed Regulation. Risk-Based Approach.

Personal data

Personal data Risk Data breaches Marketing

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Data Matters

MARCH 4, 2021

Rather, to be covered by the VCDPA, an entity must either “(i) during a calendar year, control or process personal data of at least 100,000 consumers or (ii) control or process personal data of at least 25,000 consumers and derive over 50 percent of gross revenue from the sale of personal data.”. Exemptions.

Personal data

Personal data GDPR Sales Privacy

Information Management Today

UAE: Federal level data protection law enacted

Colorado AG Publishes Draft Colorado Privacy Act Rules

Webinars

Trending Sources

CNIL’s New Guidelines on HR Processing

Webinars

How to implement the General Data Protection Regulation (GDPR)

How to comply with Article 30 of the GDPR

France: The CNIL publishes a practical guide on Data Protection Officers

CNIL Publishes Six Step Methodology and Tools to Prepare for GDPR

EDPB Publishes Guidelines on the Concepts of Controller and Processor in the GDPR

Europe: EDPB issues Recommendations on Supplementary Measures and European Essential Guarantees for surveillance measures following Schrems II

7 key stages of the data protection impact assessment (DPIA)

California Consumer Privacy Act Signed, Introduces Key Privacy Requirements for Businesses

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

When And How Cos. Should Address Cyber Legal Compliance

California Enacts Broad Privacy Laws Modeled on GDPR

5 learnings from the “Meeting the CCPA Challenge” webinar

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

California Enacts Broad Privacy Protections Modeled on GDPR

GDPR is upon us: are you ready for what comes next?

Data Protection Regime in Turkey Takes Shape

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

California passes major legislation, expanding consumer privacy rights and legal exposure for US and global companies

California Passes Major Legislation, Expanding Consumer Privacy Rights and Legal Exposure for US and Global Companies

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

EU data governance regulation – A wave of digital, regulatory and antitrust reform begins – Part Two

The debate on the Data Protection Bill in the House of Lords

The Burden of Privacy In Discovery

The ICO Updates Its Data Sharing Code of Practice

Council of the European Union Releases Draft Compromise Text on the Proposed EU Data Protection Regulation

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Stay Connected