Any entity processing personal data on your behalf (i.e., your vendors) must have a written contract in place. The GDPR requires specific language in your vendor contracts. Review steps 1–4 below to bring your vendor...more
10/27/2017
/ Contract Amendments ,
Cybersecurity ,
Data Controller ,
Data Processors ,
EU ,
General Data Protection Regulation (GDPR) ,
Member State ,
Personal Data ,
Third-Party Service Provider ,
Vendors ,
Written Consent
Follow our three-question flowchart to answer the question: “Does GDPR Apply to You?” If “Yes” then you may be required to designate a Data Protection Officer (“DPO”) by May 25, 2018, when the GDPR applies.
Follow our...more
The EU’s General Data Protection Regulation goes into effect on May 25, 2018. GDPR replaces the EU Data Protection Directive. GDPR can apply to US-based businesses even if they do not have offices or employees in the EU. It...more
After months of uncertainty, the U.S. again has a framework of rules to follow that will govern U.S. business’ use of EU residents’ data. The European Commission approved the text of the EU-U.S. Privacy Shield (the “Privacy...more
7/14/2016
/ EU ,
EU-US Privacy Shield ,
European Commission ,
Federal Trade Commission (FTC) ,
International Data Transfers ,
Ombudsman ,
Opt-Outs ,
Personal Data ,
Schrems I & Schrems II ,
Surveillance ,
Third-Party Agents ,
U.S. Commerce Department ,
US-EU Safe Harbor Framework
European privacy law is a bold new world for U.S. businesses doing business in Europe. An October Court of Justice ruling struck down the Safe Harbor arrangement which had governed E.U.-U.S. data transfer transactions for...more
6/8/2016
/ Binding Corporate Rules ,
EU ,
EU Data Protection Laws ,
EU-US Privacy Shield ,
European Commission ,
European Court of Justice (ECJ) ,
Facebook ,
Federal Trade Commission (FTC) ,
Google ,
International Data Transfers ,
Personal Data ,
Right to Be Forgotten ,
Schrems I & Schrems II ,
Standard Contractual Clauses ,
Surveillance ,
U.S. Commerce Department ,
US-EU Safe Harbor Framework
The U.S. and EU are one step closer to implementing the new EU-U.S. Privacy Shield. On March 1, 2016, the European Commission and U.S. Department of Commerce announced the release of the legal texts that will put in place...more
The U.S. and E.U. are one step closer to entering into a new data transfer agreement. On February 24, 2016, President Barack Obama signed into legislation the Judicial Redress Act, giving citizens of certain allied countries,...more
United States and European Union officials have reached a last-minute agreement in an attempt to salvage the US-EU Data Transfer Safe Harbor, nearly four months after the European Court of Justice issued an opinion...more
2/4/2016
/ Data Protection Authority ,
EU ,
EU-US Privacy Shield ,
European Commission ,
European Court of Justice (ECJ) ,
Federal Trade Commission (FTC) ,
International Data Transfers ,
Schrems I & Schrems II ,
Surveillance ,
U.S. Commerce Department ,
US-EU Safe Harbor Framework
A major European court has just pulled the rug out from under nearly 5,000 US companies, snatching away the relative business certainty of the Data Transfer Safe Harbor, and maybe the safety of standard contract clauses and...more
10/7/2015
/ Binding Corporate Rules ,
Data Collection ,
Data Privacy ,
Data Protection Authority ,
Data Security ,
Edward Snowden ,
EU ,
EU Data Protection Laws ,
European Commission ,
European Court of Justice (ECJ) ,
Facebook ,
International Data Transfers ,
National Security Agency (NSA) ,
Personal Data ,
Personally Identifiable Information ,
SCC ,
Surveillance ,
US-EU Safe Harbor Framework