On September 7, 2020, the European Data Protection Board (EDPB) published draft guidelines (Guidelines) intended to clarify the roles of the parties processing personal data and when they are operating as controllers, joint...more
Over the last few days, the European Data Protection Board (EDPB), the European Data Protection Supervisor (EDPS) and various Supervisory Authorities (SAs) across Europe issued statements addressing the decision of the...more
The COVID-19 virus outbreak poses serious challenges to businesses operating globally, including in Europe. In response to the outbreak, governments worldwide are taking increasingly severe measures to fight the pandemic, and...more
3/26/2020
/ Coronavirus/COVID-19 ,
Corporate Counsel ,
Data Privacy ,
Data Processors ,
Data Protection ,
Data Security ,
Data Subject Access Requests ,
EU ,
General Data Protection Regulation (GDPR) ,
Information Security ,
Personal Data ,
Privacy Laws
On February 7, 2020, the European Data Protection Board (EDPB) published draft guidelines on the processing of personal data in the context of connected vehicles and mobility related applications. If adopted in their current...more
3/10/2020
/ Automotive Industry ,
Connected Cars ,
Consultation ,
Cybersecurity ,
Data Collection ,
Data Protection ,
Draft Guidance ,
EU ,
European Data Protection Board (EDPB) ,
General Data Protection Regulation (GDPR) ,
Personal Data
On June 28, 2019, the French Data Protection Authority (CNIL) released its 2019-2020 action plan on ad targeting (action plan); among other things, the CNIL announced that it will issue new cookie guidance later this month...more
On July 9, 2019, the European Court of Justice (ECJ)—the highest court of the European Union—will hear oral arguments in the Schrems 2.0 case relating to the validity of two key data transfer mechanisms: the Standard...more
7/26/2019
/ Binding Corporate Rules ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Protection ,
Data Protection Authority ,
EU Data Protection Laws ,
EU-US Privacy Shield ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Safe Harbors ,
Standard Contractual Clauses
On June 27, 2019, the EU Regulation on Information and Communication Technology (Cybersecurity Act or Act) became effective introducing, for the first time, EU-wide rules for the cybersecurity certification of products and...more
The UK's pending exit from the European Union on March 29, 2019, will have far-reaching effects on many business activities, including the processing of personal data. While the ultimate legal implications are subject to...more
The EU Parliament Committee in charge of reviewing the EU Commission's Proposal for an e-Privacy Regulation (Proposal) released a Draft Report proposing amendments this week....more
6/23/2017
/ Bluetooth ,
Data Protection ,
Do Not Call List ,
e-Privacy Directive ,
Electronic Communications ,
Encryption ,
EU ,
General Data Protection Regulation (GDPR) ,
Opt-In ,
Web Tracking ,
Wifi
On December 15, 2015, the European Parliament and the Council of the European Union (Council) reached a political agreement on the future EU data protection legal framework. This is a significant step towards adoption of the...more
In this issue of The WSGR Data Advisor, we examine the FCC’s recent TCPA declaratory ruling and order addressing issues regarding calling and texting consumers, and discuss the new privacy, data security, and transparency...more
9/11/2015
/ Auto-Dialed Calls ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Declaratory Rulings ,
Department of Health and Human Services (HHS) ,
Drones ,
Electronic Medical Records ,
EU ,
FCC ,
Federal Trade Commission (FTC) ,
New Legislation ,
Online Privacy Protection Act ,
Security and Privacy Controls ,
TCPA ,
Technical Standards ,
Text Messages
In this issue:
- Navigating Public Company Cybersecurity Obligations: Advising Boards and Disclosing to Investors
- FTC Updates School-Related COPPA Guidance
- Status Update on the EU Data Protection...more
7/14/2015
/ Anti-Spam Legislation ,
Barack Obama ,
Board of Directors ,
Canada ,
COPPA ,
Cybersecurity ,
Data Breach ,
Data Protection ,
EU ,
Federal Trade Commission (FTC) ,
Privacy Laws ,
Public Disclosure ,
Publicly-Traded Companies ,
Risk Assessment ,
Risk Management ,
Sanctions ,
Security and Privacy Controls
On June 15, 2015, the Ministers of Justice of all 28 European Union member states, sitting as the Council of the EU (Council), reached a crucial agreement for the future EU data protection legal framework. Much work still...more
On May 25, 2015, the French data protection authority (CNIL) published its annual inspection program for 2015, unveiling its objectives and priorities for the year. This alert highlights the main priorities of the CNIL for...more
5/29/2015
/ BCRs ,
CNIL ,
Data Collection ,
Data Protection ,
EU ,
France ,
Mobile Payments ,
Popular ,
Privacy Laws ,
Technology ,
Wifi
In this issue:
- Privacy and Data Security in Transactions: What's the Deal?
- Consumer and Financial Institution Class Actions Survive Motions to Dismiss in Target Data Breach Litigation
- California Amends...more
2/24/2015
/ Breach Notification Rule ,
Consumer Financial Protection Bureau (CFPB) ,
COPPA ,
Cybersecurity ,
Data Breach ,
Data Breach Plans ,
Data Protection ,
Financial Institutions ,
Internet ,
Internet of Things ,
Mobile Apps ,
Target
In this issue:
- Proposed California Law Would Impose Data Breach Liability on Retailers and Create More Stringent Data Security Requirements for Businesses
- FTC Continues Its Aggressive FCRA Enforcement and...more
7/30/2014
/ Big Data ,
Breach Notification Rule ,
Data Breach ,
Data Protection ,
Enforcement ,
Enforcement Actions ,
EU ,
EU Data Protection Laws ,
Fair Credit Reporting Act (FCRA) ,
FCC ,
FTC v Wyndham ,
Privacy Laws ,
Text Messages ,
Texting ,
Wyndham
In this issue:
- Kaiser Foundation Health Plan Settles California Attorney General Charges over Delayed Data Breach Notification
- Status of the EU Regulation and the Safe Harbor Framework
- FTC Steps...more
Introduction -
In early October 2013, the body of European data protection regulators (Article 29 Working Party or WP29) issued a working document providing further guidance on obtaining consent in compliance with the...more
Introduction -
On October 21, 2013, the European Parliament's Committee on Civil Liberties, Justice and Home Affairs (LIBE Committee) held its long-awaited vote and adopted compromise amendments that would modify the...more
10/24/2013
/ Consent ,
Cookies ,
Cybersecurity ,
Data Processors ,
Data Protection ,
EU ,
EU Data Protection Laws ,
Extraterritoriality Rules ,
Internet ,
LIBE ,
Notice Requirements ,
Penalties ,
Personally Identifiable Information ,
Right to Delete
The years 2012 and 2013 have been particularly intense for legislators and privacy professionals globally. Many countries have enacted or are in the process of enacting/updating their data protection framework. In that...more
Originally published in "Privacy & Security Law Report" January 21, 2013.
One year ago (Jan. 25, 2012), the European Commission published its proposal to reform the European Union’s (EU) legal framework for data...more
In this issue:
- FTC Releases Final Amendments to Children's Online Privacy Protection Rule
- Mobile Apps Face Heightened Privacy Enforcement - Policies and Practices Scrutinized
- Global and European...more
1/18/2013
/ App Developers ,
COPPA ,
Data Protection ,
De-Identified Protected Health Information ,
FCC ,
Federal Trade Commission (FTC) ,
Mobile Apps ,
Opt-Outs ,
Privacy Policy ,
TCPA ,
Texting