In June 2025, the European Commission (EC) and the French Competition Authority (FCA) took enforcement action against three cartels involving “no-poach” practices – agreements not to hire or solicit rivals’ employees. Five...more
Since our last update in December, the UK and the EU have officially agreed on a Brexit deal. The agreement has brought with it a multitude of legislative changes across various areas of UK law. In support of understanding...more
2/11/2021
/ Antitrust Provisions ,
Competition ,
Cybersecurity ,
EU ,
General Data Protection Regulation (GDPR) ,
Life Sciences ,
Merger Controls ,
Popular ,
UK ,
UK Brexit ,
UK Competition and Markets Authority (CMA)
On 31 January 2020, the UK left the European Union and entered a transition period that is due to end at 11:00 pm GMT on 31 December 2020. At this point, it is still uncertain whether a new EU/UK deal will be reached. To...more
12/4/2020
/ Antitrust Provisions ,
Competition ,
Contract Drafting ,
Court of Justice of the European Union (CJEU) ,
Cybersecurity ,
Data Privacy ,
Employer Liability Issues ,
EU ,
EU Single Market ,
European Economic Area (EEA) ,
Free Trade Agreements ,
General Data Protection Regulation (GDPR) ,
Insurance Industry ,
Life Sciences ,
Merger Controls ,
Patents ,
Popular ,
Tax Planning ,
Trademarks ,
UK ,
UK Brexit ,
UK Competition and Markets Authority (CMA)
On July 16, 2020, the Court of Justice of the European Union issued a decision that uprooted long-standing legal frameworks on which thousands of US and EU companies have relied to transfer personal data from the EU to the...more
Privacy regulation in the EU (including the UK) is about to undergo significant change: new laws will come into force next year that will impact any company (even those without a presence in the EU) that operates an EU-facing...more
In December 2017, the Article 29 Working Party released for comment a draft of its guidance on consent under the GDPR. Consent is one of the lawful bases for processing personal data and one of the permitted means by which...more
Who is covered by the General Data Protection Regulation (GDPR)?
If a company has EU-based employees whose behaviour it “monitors” it will need to take steps to ensure that it is compliant with the GDPR when it comes into...more
The UK Government has published its report entitled "Cyber Security Regulation and Incentives Review"), which sets out its intentions following Brexit on the implementation of the Network and Information Security Directive...more
The people of the UK have voted to leave the European Union and at the moment it is fair to say that the only certainty is uncertainty for the foreseeable future. However, when it comes to data protection - there really is...more
At the start of February, the European Commission announced it had finally struck a deal with the US Department of Commerce on Safe Harbor's replacement. Below, we address some of the key questions organisations are asking...more
3/3/2016
/ Article 29 Working Party (WP29) ,
Court of Justice of the European Union (CJEU) ,
Data Privacy ,
Data Protection Authority ,
EU ,
EU-US Privacy Shield ,
European Commission ,
European Economic Area (EEA) ,
Federal Trade Commission (FTC) ,
Personal Data ,
U.S. Commerce Department
Until its invalidation in October last year, many businesses relied on the EU-US Safe Harbor framework as a safe passage for transatlantic data flow. After months of negotiating, a new deal has been reached, renamed the...more
Following a September 23, 2015 opinion by Advocate General (AG) Bot that the US-EU Safe Harbor framework, which provided for the "safe" transfer of personal data from the EU to the US, did not provide sufficient guarantees...more
10/26/2015
/ Advocate General ,
Binding Corporate Rules ,
Data Protection Authority ,
EU ,
EU Data Protection Laws ,
European Court of Justice (ECJ) ,
International Data Transfers ,
Judicial Redress Act ,
Model Contracts ,
Pending Legislation ,
US-EU Safe Harbor Framework
Last week Europe's highest court, the Court of Justice of the European Union (CJEU) declared invalid a "Safe Harbor" framework whereby personal data could be easily transferred between many European countries and the US. The...more
10/22/2015
/ Colleges ,
Data Protection Authority ,
Educational Institutions ,
EU ,
EU Data Protection Laws ,
European Court of Justice (ECJ) ,
European Economic Area (EEA) ,
International Data Transfers ,
Safe Harbors ,
Student Privacy ,
Universities ,
US-EU Safe Harbor Framework
Last week Europe's highest court, the Court of Justice of the European Union, (CJEU) declared the Safe Harbor framework invalid. You can read more about the decision in our previous alerts here. Although it is unlikely that...more
Last week Europe's highest court, the Court of Justice of the European Union, (CJEU) declared the Safe Harbor framework invalid. You can read more about the decision in our previous alerts here. Although it is unlikely that...more
10/15/2015
/ Binding Corporate Rules ,
Data Protection Authority ,
EU ,
EU Data Protection Laws ,
European Court of Justice (ECJ) ,
European Economic Area (EEA) ,
International Data Transfers ,
Member State ,
Model Contracts ,
Social Media ,
Social Networks ,
US-EU Safe Harbor Framework
Last week Europe's highest court, the Court of Justice of the European Union (CJEEA) declared the Safe Harbor framework invalid. Many life sciences and biotech companies relied on Safe Harbor to legitimise transfers of...more
10/13/2015
/ Best Practices ,
Binding Corporate Rules ,
Data Protection Authority ,
EU ,
EU Data Protection Laws ,
European Commission ,
European Court of Justice (ECJ) ,
European Economic Area (EEA) ,
International Data Transfers ,
Model Contracts ,
Safe Harbors ,
US-EU Safe Harbor Framework
On 23 September 2015, Advocate General (AG) Bot found that the Safe Harbor framework, which allowed for the "safe" transfer of personal data from the EU to the US, did not provide sufficient guarantees for the protection of...more