Hunton Privacy

APRIL 20, 2020

On April 15, 2020, the French Data Protection Authority (the “CNIL”) published the final version of its standard (“Referential”) concerning the processing of personal data for core Human Resources (“HR”) management purposes. Main Changes in the Referential on HR Data Processing. telephone call listening/recording.

Personal data 71

Personal data GDPR Compliance Archiving 71

Data Protection Report

JUNE 7, 2021

On Friday 4 June, the European Commission published the finalised version of the new Standard Contractual Clauses for transferring personal data from the EU to third countries (the New SCCs). Companies now have 18 months to update their supplier contracts and other data export arrangements. Module 1, clause 10 ); and.

Personal data 119

Personal data GDPR Data breaches Access 119

DLA Piper Privacy Matters

MAY 23, 2023

For Meta, the decision has resulted in a record administrative fine of €1.2bn, an order to suspend further transfers of EEA personal data to the US within five months, and an order to cease all unlawful processing of EEA personal data transferred to the US in violation of GDPR, within six months.

Personal data 59

Personal data GDPR Risk Privacy 59

DLA Piper Privacy Matters

MAY 4, 2021

Second drafts of the new overarching national personal data protection and data security laws have just been published, and give a clearer picture of the impending new national frameworks in China. Draft Personal Information Protection Law. Draft Data Security Law. extra-territorial effect) – must comply.

Compliance 77

Compliance Security Personal data Privacy 77

Data Protection Report

JULY 11, 2023

On 10 July, the European Commission adopted its adequacy decision for the EU-US Data Privacy Framework (the DP Framework ). More broadly, the DP Framework will significantly reduce the challenges faced by EU organisations transferring personal data to the US, at least for the time being.

Data Privacy 40

Data Privacy Privacy IT Personal data 40

DLA Piper Privacy Matters

MAY 5, 2020

Adjacent to these initiatives, the European Data Protection Board (“EDPB”) recently published draft guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility related applications. Hence, personal data can be collected through vehicle sensors, telematics boxes or mobile applications.

Privacy 69

Privacy Personal data GDPR Insurance 69

IT Governance

NOVEMBER 16, 2018

This week, we discuss a Bank of England cyber resilience exercise, the latest cyber security news from the US Office of Personnel Management, the highlights of this month’s Patch Tuesday, and a surprising admission by a Japanese cyber security minister. The ones that affected the unencrypted personal data of 4.2

Encryption 58

Encryption Risk Passwords Government 58

Hunton Privacy

DECEMBER 14, 2020

On October 1, 2020, the CNIL published a revised version of its Guidelines and its final Recommendations. Against that background, on December 2019, March 6 and May 19, 2020, the CNIL carried out three remote inspections of the amazon.fr On March 16, 2020, the CNIL also carried out a remote inspection of the google.fr

GDPR 102

GDPR Personal data Access IT 102

Data Protection Report

JUNE 9, 2022

Categories of personal data affected (e.g. These may even include significant socio-economic changes, such as the pandemic radically changing data processing. The variation range in the illustrations is 10%-40% increase or decrease. Duration of the infringement (not negative in itself but it may signify wilfulness).

GDPR 52

GDPR Compliance Personal data IT 52

DLA Piper Privacy Matters

JULY 29, 2020

Until recently, most decisions of the Belgian Data Protection Authority (Belgian DPA) concerned national companies or individuals. However, on 14 July 2020, the Belgian DPA imposed a fine of EUR600,000 on Google Belgium SA/NV (Google Belgium) for not respecting a Belgian resident’s right to be forgotten. 2 [link].

GDPR 75

GDPR Compliance IT Privacy 75

Data Matters

MARCH 10, 2021

On February 10, 2021, the Council of the European Union (which includes representatives of the European Union (EU) member states, hereinafter Council) reached an agreement on the ePrivacy Regulation proposal that governs the protection of privacy and confidentiality of electronic communications services (ePrivacy Regulation).

GDPR 68

GDPR Metadata Communications Privacy 68

Data Matters

NOVEMBER 4, 2020

The law, most of which does not go into effect until January 1, 2023, will substantially overhaul and amend the California Consumer Privacy Act (CCPA) which went into effect just this year, on January 1, 2020, with final regulations issued just a few months ago, on August 14, 2020. Changes to the Private Right of Action.

Privacy 122

Privacy B2B Sales Data breaches 122

DLA Piper Privacy Matters

MARCH 4, 2021

In its second full year overseeing and regulating the GDPR in Ireland, the Data Protection Commission ( DPC ) has published its 2020 Annual Report , highlighting key observations, emerging guidance, and large scale inquiries and decisions of 2020. 90% of the recorded breach cases were concluded in 2020. Enforcement.

GDPR 105

GDPR Compliance Data breaches Marketing 105

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

The CCPA goes into effect January 1, 2020. Below is a history of the CCPA, a summary of its key elements as adopted, including recently adopted technical amendments, and practical takeaways for covered entities as the law moves from passage to 2020 enforcement. Its final status, however, is far from clear. CCPA Background. 17-0039).

Privacy 58

Privacy Sales Compliance Cybersecurity 58

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

The CCPA goes into effect January 1, 2020. Below is a history of the CCPA, a summary of its key elements as adopted, including recently adopted technical amendments, and practical takeaways for covered entities as the law moves from passage to 2020 enforcement. Its final status, however, is far from clear. CCPA Background. 17-0039).

Privacy 58

Privacy Sales Education Compliance 58

Data Protection Report

JUNE 6, 2019

Businesses already preparing for CCPA should be able to incorporate the Nevada requirements, but note the Nevada law will be effective on October 1, 2019, whereas CCPA goes into effect on January 1, 2020. 10-word summary. Social media data – right to remove and prohibit sale. 10-word summary. Bills to Narrow CCPA.

Sales 40

Sales Privacy Insurance Manufacturing 40

Data Matters

JANUARY 21, 2021

Artificial intelligence : Continuing to build on its first AI strategy, presented in 2018, and the High-Level Expert Group on AI’s Ethics Guidelines on trustworthy AI of April 2019, the Commission presented an EU framework for AI on 19 February 2020. The results of this public consultation were published in November 2020.

Artificial Intelligence 109

Artificial Intelligence Cybersecurity Digital transformation GDPR 109

Data Matters

SEPTEMBER 29, 2021

Relatively recent advances in technology — smartphones and social media, in particular — have allowed businesses to collect, store, and find ways to monetize far more personal data than ever before. social security and credit card numbers, employee and patient health data, and customer financial records).”43

Privacy 97

Privacy e-Discovery Computer and Electronics e-Delivery 97

Data Matters

FEBRUARY 19, 2021

The EU GDPR prohibits the transfer of personal data to a country outside the European Economic Area ( EEA ) (otherwise known as a third country ) that is not considered to provide an ‘adequate level’ of data protection by the EC unless ‘appropriate safeguards’ are implemented (e.g., consent of the data subject).

GDPR 68

GDPR Personal data Privacy Access 68

IT Governance

MARCH 13, 2020

Last updated March 2020. Under the EU GDPR (General Data Protection Regulation) , you need to identify a lawful basis before processing personal data. Do you always need individuals’ consent to process their data? For the purposes of legitimate interests pursued by the data controller.

GDPR 92

GDPR Personal data Compliance Marketing 92

Security Affairs

JANUARY 13, 2021

CyberNews researchers analyzed data from multiple social platforms like Parler, Twitter, Facebook, MeWe’s to compare data policies. Alternative social media platforms, also known as “alt” or alt-tech, were catapulted into the spotlight near the end of 2020 due to US President Donald Trump’s claims of election interference.

Data collection 116

Data collection Privacy Analytics Access 116