Laurie-Anne Ancenys on Data Privacy

CNIL requests public comments on draft recommendations on the use of tracking pixels in emails

On June 12 2025, the French supervisory authority (CNIL) requested public comments on the draft recommendations on the use of tracking pixels in emails (Draft Recommendations)....more

7/2/2025 / CNIL , Consent , Data Privacy , Data Protection , France , Proposed Rules , Regulatory Requirements

CNIL launches public consultation on draft recommendations relating to multi-terminal consent

On April 24 2025, the French supervisory authority (CNIL) issued a draft recommendation to address challenges in collecting user consent for cookies and trackers across multiple devices (the Draft Recommendation). The new...more

5/12/2025 / CNIL , Consent , Cookies , Data Collection , Data Privacy , Data Protection , France , Mobile Apps , New Regulations , Privacy Laws , Regulatory Requirements , Technology Sector , Tracking Systems

CNIL publishes Data Transfer Impact Assessment guide

On January 31, 2025, the French supervisory authority (CNIL) published the final version of its guide on transfer impact assessments (TIA). A TIA must be undertaken by organisations relying on one of the ‘appropriate...more

2/17/2025 / CNIL , Data Privacy , Data Protection , EU , France , General Data Protection Regulation (GDPR) , International Data Transfers , Privacy Laws , Regulatory Agenda , Regulatory Requirements , Risk Management

Zooming in on AI – #2: AI System vs AI models

The Artificial Intelligence Act (AI Act) entered into force on 1 August 2024 and is the world's first comprehensive legal framework for AI regulation. As companies start incorporating AI tools into their business, products...more

9/4/2024 / Artificial Intelligence , Data Privacy , Data Protection , EU , Machine Learning , Regulatory Agenda , Regulatory Requirements , Technology Sector

France CNIL calls for comments on its draft recommendation on security of critical data processing operations

The French supervisory authority (CNIL) asked for public comments on its draft recommendation on data security in relation to processing that presents particularly high risks to individuals or to the public interest (the...more

9/15/2023 / CNIL , Cybersecurity , Data Breach , Data Privacy , Data Processors , Data Protection , Data Protection Authority , Data Security , France , General Data Protection Regulation (GDPR) , Risk Management

EU-U.S. Data Privacy Framework: adequacy decision adopted, the framework becomes operational

On 10 July 2023, the European Commission adopted the adequacy decision for the EU-U.S. Data Privacy Framework (DPF). This decision enables the free flow of personal data from the EU and three EEA countries (Iceland,...more

8/14/2023 / Cross-Border Transactions , Cybersecurity Framework , Data Privacy , Department of Transportation (DOT) , EU , EU-US Privacy Shield , European Commission , Federal Trade Commission (FTC) , General Data Protection Regulation (GDPR) , UK

Happy birthday, GDPR – five lessons from five years of EU data protection law

In the five years since the European Union’s General Data Protection Regulation came into force, what have been the main learnings for business, and what will the future hold?...more

5/26/2023 / Cybersecurity , Data Privacy , Data Protection , Data Security , General Data Protection Regulation (GDPR) , International Data Transfers , Personal Data

Increasing global cybersecurity regulation of private companies on the near horizon

Within the past year, a number of countries around the world, including the United States, United Kingdom, France, and The Netherlands have initiated regulatory inquiries and developed new strategies for the purpose of more...more

4/25/2023 / Corporate Counsel , Cybersecurity , Data Privacy , Data Protection , Data Security , EU , Federal Trade Commission (FTC) , General Data Protection Regulation (GDPR) , Information Commissioner's Office (ICO) , NIST , Popular , UK

Laurie-Anne Ancenys

A&O Shearman

Popular Topics by This Author

Latest Posts › Data Privacy