New announcements and rules expand the scope of existing sanctions and export controls on Russia and Belarus.
This Client Alert summarises the latest sanctions and trade restrictions that have been imposed, or are under...more
The EDPB sets out relevant steps and factors that EU supervisory authorities should consider when calculating administrative fines under the GDPR.
On 16 May 2022, the European Data Protection Board (EDPB) adopted draft...more
6/1/2022
/ Data Controller ,
Data Processors ,
Data Protection ,
Draft Guidance ,
European Data Protection Board (EDPB) ,
Fines ,
General Data Protection Regulation (GDPR) ,
Infringement ,
Personal Data ,
Statutory Penalties ,
Trademark Infringement
New rules and announcements expand existing sanctions and export controls relating to Russia.
This Client Alert is published in the context of ongoing developments and should be read in conjunction with the Latham &...more
5/16/2022
/ Biden Administration ,
Economic Sanctions ,
EU ,
Export Controls ,
Financial Transactions ,
Foreign Policy ,
General Licenses ,
Military Conflict ,
Office of Foreign Assets Control (OFAC) ,
Russia ,
SDN List ,
UK ,
Ukraine
New rules significantly expand the scope of existing sanctions and export controls on Russia.
This Client Alert is published in the context of ongoing developments and should be read in conjunction with the Latham &...more
4/13/2022
/ Asset Freeze ,
Belarus ,
Economic Sanctions ,
EU ,
Export Controls ,
Financial Crimes ,
Foreign Investment ,
General Licenses ,
Japan ,
Russia ,
Trade Relations ,
Trade Restrictions ,
UK ,
Ukraine
The proposals includes fines for non-compliance of up to the greater of £18 million or 10% of a provider’s annual global revenue.
On 12 May 2021, the UK government published the Online Safety Bill (the Bill), which aims...more
6/28/2021
/ Digital Service Providers ,
Digital Services ,
Duty of Care ,
EU ,
New Legislation ,
OFCOM ,
Online Marketplace ,
Online Platforms ,
Proposed Legislation ,
Regulatory Requirements ,
Search Engines ,
Social Media ,
UK ,
User-Generated Content
Companies have three months to prepare to use the latest standard contractual clauses for new data transfers, and 18 months to migrate existing arrangements.
On 4 June 2021, the European Commission released its...more
6/28/2021
/ Court of Justice of the European Union (CJEU) ,
Data Controller ,
Data Processors ,
Data Protection ,
EU ,
EU-US Privacy Shield ,
European Data Protection Board (EDPB) ,
FISA ,
General Data Protection Regulation (GDPR) ,
Information Commissioner's Office (ICO) ,
International Data Transfers ,
Personal Data ,
Schrems I & Schrems II ,
Standard Contractual Clauses ,
UK
Die Datenschutzorganisation noyb droht mit über 10.000 Beschwerden wegen möglicher rechtswidriger Verwendung von Cookies.
Am 31. Mai 2021 startete die Datenschutzorganisation noyb (die Abkürzung steht für „none of your...more
The privacy organisation noyb will file more than 10,000 complaints for use of cookies contrary to its interpretation of compliance.
On 31 May 2021, the nonprofit privacy organisation noyb (short for “none of your...more
The Technology, Media and Telecommunications Review is now in its 11th edition, and I am excited to be taking the reins of this publication after a decade under the steady hand of long-time editor John Janka. This Review...more
Organisations face fines of up to 10% of annual global turnover or £18 million (whichever the greater) for failure to comply.
On 15 December 2020, the UK government published its full response to the Online Harms White...more
2/24/2021
/ Corporate Fines ,
Duty of Care ,
Enforcement Authority ,
Instant Messaging Apps ,
OFCOM ,
Online Platforms ,
Proportionality ,
Regulatory Agenda ,
Risk-Based Approaches ,
Search Engines ,
Social Networks ,
UK ,
White Papers
As the Brexit transition period draws to a close, businesses will need to consider their data protection efforts to comply with both UK and EU regimes.
The end of the Brexit transition period on 31 December 2020 will have...more
The French data protection authority’s decisions cite violations of the cookie rules under the ePrivacy Directive and provide important insights on explicit consent.
Between December 2019 and May 2020, the French data...more
The European Commission has published draft updated standard contractual clauses in light of the Schrems II decision.
On 12 November 2020, the European Commission (the Commission) published a draft implementing decision,...more
12/8/2020
/ Data Controller ,
Data Processors ,
EU ,
European Commission ,
European Data Protection Board (EDPB) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Member State ,
Personal Data ,
Public Consultations ,
Schrems I & Schrems II ,
Standard Contractual Clauses ,
UK
The EDPB takes a strict approach in its recent guidance on international data transfers following Schrems II, posing a difficult challenge for businesses.
On 10 November, the European Data Protection Board (EDPB) released...more
Swiss companies are advised to take additional measures when transferring personal data from Switzerland to the US.
On 8 September 2020, the Swiss data protection authority, Adrian Lobsiger (the Federal Data Protection and...more
Latham develops new resource to identify considerations for assessing SCC and BCR data transfers in Europe.
Following the Schrems II decision in July 2020, organisations relying on the standard contractual clauses (SCCs) or...more
The proposed Data Security Law has a broad jurisdictional scope and will expand the PRC’s regulatory framework for information and data.
On July 3, 2020, the Standing Committee of China’s National People’s Congress issued...more
A ruling by the EU’s top court invalidates the key mechanism for transferring personal data from the EU to the US and imposes additional conditions for use of the standard contractual clauses.
On 16 July 2020, the Court of...more
New tracking and privacy-related features will apply to all iOS apps when iOS 14 is released in September 2020.
Key Points:
..During Apple’s WWDC 2020 keynote address on June 22, 2020, Apple announced two key privacy...more
After the recent two-year anniversary of the GDPR, one fundamental question remains — who does the GDPR apply to?
Last month marked the two-year anniversary of the General Data Protection Regulation (GDPR), but its...more
Update confirms the introduction of an active “duty of care” and a dedicated regulator, as part of a comprehensive new online regulatory regime.
Following a wave of commentary from industry, the social sector, and other...more
2/21/2020
/ Digital Services ,
Duty of Care ,
Enforcement ,
EU ,
EU Directive ,
Likelihood of Harm ,
New Regulations ,
Online Platforms ,
Public Communications ,
Regulatory Standards ,
Social Networks ,
UK ,
White Papers
IT companies face higher fines in Russia for noncompliance with data privacy and content moderation rules.
In December 2019, Russia imposed large fines for certain types of violations of the Russian data privacy and...more
“Business as usual” for UK-EU data protection transition in 2020.
On 29 January 2020, the EU Parliament approved the UK Withdrawal Agreement after the UK Parliament’s ratification via the EU Withdrawal Act 2020 on 23 January...more
2/14/2020
/ Corporate Counsel ,
EU ,
EU-US Privacy Shield ,
European Data Protection Board (EDPB) ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
Information Commissioner's Office (ICO) ,
International Data Transfers ,
Privacy and Electronic Communications Regulation 2003 (PECR). ,
Transitional Arrangements ,
UK ,
UK Brexit ,
Withdrawal Agreement
Potential amendments to the PDPO would impose much stricter controls on organisations that process personal data of individuals located in Hong Kong.
Key Points:
..On 20 January 2020 the Legislative Council debated...more
As it has since inception, this tenth edition of The Technology, Media and Telecommunications Review provides a survey of evolving legal constructs in 21 jurisdictions around the world. It remains a business-focused framework...more