Why does this topic matter to organisations?
Understanding the subject matter and the scope of EU data protection law is fundamental to determining whether this law applies to an organisation’s business activities. In...more
Overview of key issues -
The GDPR raises a number of key issues that organisations should consider, including the following...more
4/11/2019
/ Breach Notification Rule ,
Compliance ,
Consent ,
Data Processors ,
Data Protection ,
Data Protection Impact Assessments (DPIAs) ,
Data Protection Officers (DPOs) ,
EU ,
EU Data Protection Laws ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Personally Identifiable Information ,
Popular
Directive 95/46/EC -
Prior to the GDPR, the EU's data protection regime was governed by the Directive. The Directive (as with all EU Directives) did not apply automatically, and had to be transposed into the national laws...more
The Dutch Data Protection Authority (the "Dutch DPA") has issued guidance stating that so-called "cookie walls" are not compliant with the General Data Protection Regulation (the "GDPR"). The guidance is not legally binding,...more
4/5/2019
/ Austria ,
Belgium ,
Consent ,
Cookies ,
Data Protection Authority ,
EU ,
EU Data Protection Laws ,
General Data Protection Regulation (GDPR) ,
Netherlands ,
Popular ,
UK ICO ,
Website Accessibility ,
Websites
Why does this topic matter to organisations?
The Data Protection Principles provide the conditions on which an organisation is permitted to process personal data. If an organisation cannot satisfy the Data Protection...more
Why does this topic matter to organisations?
The defined terms set out in this Chapter are of critical importance to understanding how EU data protection law applies to an organisation. For example, the question of whether...more
4/3/2019
/ Consent ,
Data Breach ,
Data Controller ,
Data Processors ,
Data Protection ,
EU ,
EU Data Protection Laws ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Personally Identifiable Information
On 29 March 2019, the UK will formally leave the EU unless an extension, or a negotiated solution, is agreed between the UK and the European Commission. There is currently no agreement regarding the UK's status from a data...more
1/31/2019
/ BCRs ,
Compliance ,
Consent ,
Data Protection ,
EU ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Model Contracts ,
No-Deal Brexit ,
Personal Data ,
UK ,
UK Brexit ,
UK ICO
The European Commission and the Personal Information Protection Commission of Japan have agreed mutual adequacy decisions regarding the transfer of personal data. This is a significant development, and allows businesses to...more
1/31/2019
/ Adequacy Requirement ,
Bilateral Agreements ,
EU ,
European Commission ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Japan ,
Mutual Recognition Agreement ,
Personal Data ,
Privacy Laws ,
Reciprocity Rules
As the approach of Brexit draws inexorably closer, the continued lack of certainty around what any Brexit withdrawal deal will look like, or indeed whether a deal will be agreed at all, is causing increasing concern among the...more
1/16/2019
/ Breach of Contract ,
Contract Terms ,
Cross-Border Transactions ,
EU ,
EU Single Market ,
EU-US Privacy Shield ,
General Data Protection Regulation (GDPR) ,
International Litigation ,
Jurisdiction ,
Member State ,
No-Deal Brexit ,
Risk Management ,
Risk Mitigation ,
Technology Sector ,
Trade Relations ,
UK ,
UK Brexit ,
WTO