News & Analysis as of

General Data Protection Regulation (GDPR) Data Privacy

Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts... more +
Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts individuals throughout the Union and all businesses operating therein. less -
BCLP

EMEA - Data Privacy, Digital and AI Round Up - July 2025

BCLP on

As we pass the mid-point of 2025, it’s a good time to review the important developments we have seen in the first 6 months of this year, particularly reforms to the UK’s data protection laws, the EU’s pathway to...more

WilmerHale

AI and GDPR: A Road Map to Compliance by Design - Episode 5: Using AI

WilmerHale on

The rise of artificial intelligence (AI) and its widespread availability offers significant growth opportunities for businesses. However, it necessitates a robust governance framework to ensure compliance with regulatory...more

WilmerHale

AI and GDPR: A Road Map to Compliance by Design - Episode 3: The Design Phase

WilmerHale on

The rise of artificial intelligence (AI) and its widespread availability offers significant growth opportunities for businesses. However, it necessitates a robust governance framework to ensure compliance with regulatory...more

Katten Muchin Rosenman LLP

EU Initiates Renewal of UK Adequacy Decision Following the UK's Adoption of the Data (Use and Access) Act 2025

Katten Muchin Rosenman LLP on

EU Launches UK Adequacy Decision Renewal Process - On 22 July 2025, the European Commission announced that it had launched the process to renew the adequacy decision for the United Kingdom (UK) and confirmed that the UK’s...more

WilmerHale

AI and GDPR: A Road Map to Compliance by Design - Episode 2: The Design Phase

WilmerHale on

The rise of artificial intelligence (AI) and its widespread availability offers significant growth opportunities for businesses. However, it necessitates a robust governance framework to ensure compliance with regulatory...more

Hogan Lovells

Cambodia moves to enact comprehensive data privacy law

Hogan Lovells on

On July 23, 2025, Cambodia released a draft of its first ever comprehensive personal data protection law, the Law on Personal Data Protection (“LPDP”). Once passed, Cambodia will join the ranks of seven other countries...more

WilmerHale

AI and GDPR: A Road Map to Compliance by Design - Episode 1: The Planning Phase

WilmerHale on

The rise of artificial intelligence (AI) and its widespread availability offers significant growth opportunities for businesses. However, it necessitates a robust governance framework to ensure compliance with regulatory...more

Latham & Watkins LLP

UK Adequacy Holds Firm Under New Data (Use and Access) Act 2025

Latham & Watkins LLP on

The DUAA introduces several reforms to UK data protection law, but their implications are relatively limited in practice. The Data (Use and Access) Act 2025 (the DUAA) was enacted on 19 June 2025 and amends rather than...more

King & Spalding

EU & UK AI Round-up – July 2025

King & Spalding on

Over the last few months, organisations have accelerated efforts to engage with the requirements of the EU AI Act as we fast approach the date for when rules relating to general purpose AI models (“GPAI models”) come into...more

Fisher Phillips

Workday Ruling: How Europe’s Top Courts Raised the Bar for Employee Data Protection

Fisher Phillips on

Cloud-based HR systems have become standard for multinational businesses, driving efficiency but also increasing compliance and privacy risks. Indeed, a recent Workday case, which originated in Germany, has clarified the...more

Goodwin

France and the new EU regulation on political advertising: the CNIL updates its doctrine ahead of the 2025 implementation

Goodwin on

Online political advertising has become central to modern electoral campaigns. However, the growing lack of transparency, particularly regarding funding, targeting, and data processing practices, raises serious concerns about...more

Womble Bond Dickinson

From Data to Decisions: Navigating Privacy and Litigation Risks in the AI Era

Womble Bond Dickinson on

While many systems that are described as AI have been around for decades (e.g., internet search engines), today’s AI tools are much more powerful and are widely accessible. Generative AI and agentic AI extend the power of...more

Goodwin

Goodwin Antitrust & Regulatory Shorts: Three Laws, One challenge; Complying With the DSA, AI Act, and GDPR

Goodwin on

The Digital Services Act (DSA) and the Artificial Intelligence Act (AI Act) are key components of the EU’s constantly evolving, digital regulatory landscape. Once forming policy proposals, both regulations have now evolved...more

Benesch

Vermont Passes New Privacy Law Providing Safety Measures for Children Online

Benesch on

Vermont’s new “Kids Code” hopes to improve children’s safety online by regulating the privacy, design, and data use of certain entities providing online services and collecting data about minors....more

McDermott Will & Schulte

AI meets real estate – Balancing innovation and compliance in the EU, UK, and US

McDermott Will & Schulte on

Artificial Intelligence (AI) is taking the global commercial real estate market by storm. It is accelerating processes, driving down costs, and enhancing efficiency across a range of functions. In the EU, AI optimizes...more

DLA Piper

Italy: Garante Issues Fine for Use of Employee’s Private Chats in Disciplinary Actions

DLA Piper on

The Italian Data Protection Authority (Garante) has fined a company EUR 420,000 for violating privacy laws in the workplace. The decision focuses on the employer’s use of content from Facebook, WhatsApp, and Messenger— shared...more

Skadden, Arps, Slate, Meagher & Flom LLP

Something Is Better Than Nothing: UK and EU GDPR Reform Finally Arrives

Skadden, Arps, Slate, Meagher & Flom LLP on

In recent weeks, the EU and UK have both introduced changes to their respective versions of Europe’s landmark privacy legislation, the General Data Protection Regulation (GDPR). These reforms mark the first substantial...more

Womble Bond Dickinson

The ICO’s Penalty Against 23andMe Brings New Emphasis on Cybersecurity Risks - Key Takeaways for U.S. Companies

Womble Bond Dickinson on

The dramatic increase in global reach that the internet provides U.S.-based companies comes as a double edge sword. While it significantly increases a company’s potential customer pool, it also subjects companies to...more

TransPerfect Legal

DSARs in 2025: Stay Ahead of Regulations

TransPerfect Legal on

As data protection regulations evolve and employee rights awareness grows, organisations are seeing a significant uptick in Data Subject Access Requests (DSARs). Pursuant to Article 15 of the UK and EU General Data Protection...more

Dacheng

Cross-Border Data Processing under the "Offshore Model": China's Regulatory Approach in Comparative Context

Dacheng on

As the digital economy continues to thrive and remote work becomes increasingly mainstream, an “offshore model” of business operation has emerged. Under this model, companies may provide services to users in a given...more

Osano

Customer Data Privacy: Why It’s Important and How to Protect It

Osano on

Data privacy regulations aren’t known for being light reading. That doesn’t make it easy for businesses to become compliant. When one law refers to data subjects, another to residents, another to consumers, and another...more

Alston & Bird

UK Data Protection Regulator Fines 23andMe ~$3.1 Million Following Credential Stuffing Attack

Alston & Bird on

On June 5, 2025, the UK’s Information Commissioner’s Office (ICO) fined 23andMe £2.31 million (~$3.1 million). The fine was for failing to implement adequate security measures to protect the personal data of over 155,000 UK...more

McDermott Will & Schulte

What ICO guidance on anonymisation means for health and life sciences companies

McDermott Will & Schulte on

What new guidance on anonymisation from the UK Information Commissioner’s Office (ICO) means for healthcare and life sciences companies....more

DLA Piper

Spain: Spanish Data Protection Authority Publishes Annual Report

DLA Piper on

The Spanish Data Protection Authority (“AEPD“) has published its 2024 annual report, which includes the AEPD’s awareness-raising activities; the collaboration and inspection activities of the Spanish authorities; relevant...more

Hogan Lovells

Development of an AI system: CNIL issues guidelines regarding collection of data via web scraping

Hogan Lovells on

On 19 June 2025, CNIL published two additional “how-to-sheets” on artificial intelligence, one on the legitimate interest and the other on the collection of data via web scraping. These documents aim to clarify the rules...more

1,254 Results
 / 
View per page
Page: of 51
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide