News & Analysis as of

General Data Protection Regulation (GDPR) Cybersecurity Corporate Counsel

Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts... more +
Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts individuals throughout the Union and all businesses operating therein. less -
Womble Bond Dickinson

The ICO’s Penalty Against 23andMe Brings New Emphasis on Cybersecurity Risks - Key Takeaways for U.S. Companies

Womble Bond Dickinson on

The dramatic increase in global reach that the internet provides U.S.-based companies comes as a double edge sword. While it significantly increases a company’s potential customer pool, it also subjects companies to...more

Skadden, Arps, Slate, Meagher & Flom LLP

Key Themes From the 2025 IAPP Global Privacy Summit

Skadden, Arps, Slate, Meagher & Flom LLP on

On April 23 and 24, 2025, regulators, industry leaders and data privacy leaders from across the globe convened in Washington, D.C. for the 2025 International Association of Privacy Professionals (IAPP) Global Privacy Summit....more

DLA Piper

EU: DLA Piper GDPR Fines and Data Breach Survey: January 2025

DLA Piper on

The seventh annual edition of DLA Piper’s GDPR Fines and Data Breach Survey has revealed another significant year in data privacy enforcement, with an aggregate total of EUR1.2 billion (USD1.26 billion/GBP996 million) in...more

Wilson Sonsini Goodrich & Rosati

10 Privacy Predictions in the EU for 2024

Wilson Sonsini Goodrich & Rosati on

In 2024, businesses will continue to face an evolving landscape of privacy opportunities and challenges, including an increasingly complex data regulatory environment that extends beyond the General Data Protection Regulation...more

Orrick, Herrington & Sutcliffe LLP

EU court clarifies conditions for imposing GDPR fines

Orrick, Herrington & Sutcliffe LLP on

On December 5, the Court of Justice of the European Union (CJEU) issued a judgment clarifying the conditions under which a General Data Protection Regulation (GDPR) fine can be imposed on data controllers....more

Morgan Lewis

New EU Data Act: Impact On Data Flows Within And Outside The EU’s Borders

Morgan Lewis on

The Council of the European Union adopted the Data Act on November 27, 2023. The Data Act, together with the Data Governance Act and EU General Data Protection Regulation (GDPR), as key elements of the broader European data...more

Cooley LLP

Landmark Decision Handed Down on ICO’s Responsibilities in Handling Subject Access Requests

Cooley LLP on

On 10 October 2023, the England and Wales Court of Appeal handed down its decision in Delo, R. (On the Application Of) v. The Information Commissioner1, in which it upheld an earlier High Court ruling that the UK’s data...more

Hogan Lovells

CNIL confirms the compatibility of AI with the GDPR

Hogan Lovells on

On October 12, 2023, the CNIL released its first guidance on how to comply with the General Data Protection Regulation (GDPR) when developing and using artificial intelligence (AI) using personal data or impacting...more

Miles & Stockbridge P.C.

EU-US Data Privacy Framework, UK-US Data Bridge Ease Transatlantic Data Transfers

Miles & Stockbridge P.C. on

Sharing personal data across borders is critical for organizations operating and doing business internationally. Doing so in compliance with data security and privacy laws, however, can be a complex and challenging exercise...more

Orrick, Herrington & Sutcliffe LLP

European Data Protection Board clarifies GDPR transfers

Orrick, Herrington & Sutcliffe LLP on

On July 18, the European Data Protection Board (EDPB) published an information note to provide clarity on data transfers under the GDPR to the United States following the European Commission’s adoption of the adequacy...more

Cooley LLP

Irish Circuit Court Awards Damages for ‘Non-Material’ Harm Under GDPR

Cooley LLP on

On 11 July 2023, the Circuit Court of Ireland awarded 2,000 euros in compensation to a plaintiff seeking ‘non-material damage’ under Article 82 of the General Data Protection Regulation, in what is believed to be the first...more

Orrick, Herrington & Sutcliffe LLP

EU-U.S. Data Privacy Framework: Next Steps for U.S. Companies

Orrick, Herrington & Sutcliffe LLP on

On July 10, 2023, the European Commission formally approved the EU-U.S. Data Privacy Framework (“DPF"). You can view our brief video discussion about the DPF or read our initial update. Companies that maintained their...more

Wilson Sonsini Goodrich & Rosati

EU and U.S. Finalize Data Privacy Framework: Here’s How to Get Certified

Wilson Sonsini Goodrich & Rosati on

On July 10, 2023, the European Commission (EC) adopted an adequacy decision in relation to the EU-U.S. Data Privacy Framework (DPF). This paves the way for organizations to certify to the DPF, reducing friction for transfers...more

A&O Shearman

EU CJEU confirms broad right of access to personal data under GDPR but protects employee privacy

A&O Shearman on

The Court of Justice of the European Union (CJEU) published its decision in the case of J.M. v Pankki S (Case C‑579/21) on 22 June 2023....more

Miller Nash LLP

This Is Not a Test: The Significant Impacts of the Ireland Data Protection Commission’s Meta Decision

Miller Nash LLP on

It shouldn’t come as a surprise that the European Data Protection Board (EDPB), through Ireland’s Data Protection Commission (DPC), issued another fine against a large US technology company. What may come as a surprise is the...more

Jones Day

CJEU Clarifies the Right to Compensation for GDPR Infringements Causing Non-Material Damage

Jones Day on

In Short - The Situation: There has been uncertainty over the circumstances in which data subjects can claim compensation for "mere" infringement of their rights without specific evidence of harm. On May 4, 2023, the Court...more

Faegre Drinker Biddle & Reath LLP

Meta Fined EUR 1.2 Billion for Violating GDPR

Faegre Drinker Biddle & Reath LLP on

On 22 May 2023, the Irish Data Protection Commission (DPC) issued Meta Platforms Ireland Limited (Meta Ireland) with a EUR 1.2 billion (approximately 1.3 billion U.S. dollar) fine for breaches of the GDPR with respect to...more

A&O Shearman

CJEU clarifies key aspects of the GDPR: an overview of recent cases

A&O Shearman on

The Court of Justice of the European Union (CJEU) issued on 4 May 2023 three decisions in cases concerning interpretation of key aspects of the GDPR. It also published three opinions of the Advocate General (AG). Below is a...more

Cooley LLP

European Court of Justice Clarifies Rules on Damages Compensation for GDPR Breaches

Cooley LLP on

On 4 May 2023, the Court of Justice of the European Union (CJEU) delivered its decision in the Österreichische Post case (Case C-300/21), in essence deciding that a mere infringement of the General Data Protection Regulation...more

A&O Shearman

Increasing global cybersecurity regulation of private companies on the near horizon

A&O Shearman on

Within the past year, a number of countries around the world, including the United States, United Kingdom, France, and The Netherlands have initiated regulatory inquiries and developed new strategies for the purpose of more...more

Hogan Lovells

UK government announces its competing vision for AI regulation in Europe

Hogan Lovells on

On 29 March 2023, the UK government published its long-awaited white paper on its intended approach to regulating AI. The proposal seeks to strike a balance between the primary policy objective of creating a ‘pro-innovation’...more

Hogan Lovells

Comprendre et tirer les leçons de la riche activité de la CNIL de ces derniers mois

Hogan Lovells on

Les derniers mois ont vu une activité bouillonnante de la CNIL avec l’adoption de nombreuses délibérations. Nous avons analysé ces décisions pour comprendre les principales orientations prises par l’autorité française....more

Wilson Sonsini Goodrich & Rosati

EU Privacy Regulators Coordinate to Assess Compliance with the GDPR Rules on Data Protection Officers

Wilson Sonsini Goodrich & Rosati on

On March 15, 2023, the European Data Protection Board (EDPB) announced a coordinated action on the role of the data protection officers (DPOs). The data protection authorities (DPAs) will ask DPOs a series of questions to...more

Orrick, Herrington & Sutcliffe LLP

5 Things You Need to Know About the EDPB's Cookie Report

Orrick, Herrington & Sutcliffe LLP on

On 18 January 2023, the European Data Protection Board ("EDPB") published a report on the work undertaken by its Cookie Banner Task Force to ensure a uniform approach regarding a number of cookie-banner-related complaints...more

A&O Shearman

EU top court rules that controllers must disclose actual identity of data recipients in response to data subject access request

A&O Shearman on

The Court of Justice of the European Union (CJEU) delivered its judgment in Case C-154/21 Österreichische Post (the Österreichische Post case) on 12 January 2023. The case relates to the interpretation of Art. 15(1)(c) GDPR,...more

168 Results
 / 
View per page
Page: of 7
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide