News & Analysis as of

General Data Protection Regulation (GDPR) Personal Data

Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts... more +
Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts individuals throughout the Union and all businesses operating therein. less -
DLA Piper

ITALY: Personal Data Anonymization and the Risk of the DPO Being an Executor

DLA Piper on

The Italian Data Protection Authority’s recent decision provided guidance on the true meaning of personal data anonymization and the crucial distinction between the DPO as a monitor – not an executor. In a world driven by AI...more

WilmerHale

AI and GDPR: A Road Map to Compliance by Design - Episode 3: The Design Phase

WilmerHale on

The rise of artificial intelligence (AI) and its widespread availability offers significant growth opportunities for businesses. However, it necessitates a robust governance framework to ensure compliance with regulatory...more

Katten Muchin Rosenman LLP

EU Initiates Renewal of UK Adequacy Decision Following the UK's Adoption of the Data (Use and Access) Act 2025

Katten Muchin Rosenman LLP on

EU Launches UK Adequacy Decision Renewal Process - On 22 July 2025, the European Commission announced that it had launched the process to renew the adequacy decision for the United Kingdom (UK) and confirmed that the UK’s...more

Alston & Bird

EU-wide Breach Notification Template on the Horizon

Alston & Bird on

Following their recent meeting in Finland, the EU Data Protection Authorities acting through the European Data Protection Board (EDPB) announced their intention to release new tools and ran EU-wide data breach notification...more

WilmerHale

AI and GDPR: A Road Map to Compliance by Design - Episode 2: The Design Phase

WilmerHale on

The rise of artificial intelligence (AI) and its widespread availability offers significant growth opportunities for businesses. However, it necessitates a robust governance framework to ensure compliance with regulatory...more

Hogan Lovells

Cambodia moves to enact comprehensive data privacy law

Hogan Lovells on

On July 23, 2025, Cambodia released a draft of its first ever comprehensive personal data protection law, the Law on Personal Data Protection (“LPDP”). Once passed, Cambodia will join the ranks of seven other countries...more

WilmerHale

AI and GDPR: A Road Map to Compliance by Design - Episode 1: The Planning Phase

WilmerHale on

The rise of artificial intelligence (AI) and its widespread availability offers significant growth opportunities for businesses. However, it necessitates a robust governance framework to ensure compliance with regulatory...more

Latham & Watkins LLP

UK Adequacy Holds Firm Under New Data (Use and Access) Act 2025

Latham & Watkins LLP on

The DUAA introduces several reforms to UK data protection law, but their implications are relatively limited in practice. The Data (Use and Access) Act 2025 (the DUAA) was enacted on 19 June 2025 and amends rather than...more

Fisher Phillips

Workday Ruling: How Europe’s Top Courts Raised the Bar for Employee Data Protection

Fisher Phillips on

Cloud-based HR systems have become standard for multinational businesses, driving efficiency but also increasing compliance and privacy risks. Indeed, a recent Workday case, which originated in Germany, has clarified the...more

Benesch

Vermont Passes New Privacy Law Providing Safety Measures for Children Online

Benesch on

Vermont’s new “Kids Code” hopes to improve children’s safety online by regulating the privacy, design, and data use of certain entities providing online services and collecting data about minors....more

Skadden, Arps, Slate, Meagher & Flom LLP

Something Is Better Than Nothing: UK and EU GDPR Reform Finally Arrives

Skadden, Arps, Slate, Meagher & Flom LLP on

In recent weeks, the EU and UK have both introduced changes to their respective versions of Europe’s landmark privacy legislation, the General Data Protection Regulation (GDPR). These reforms mark the first substantial...more

Womble Bond Dickinson

The ICO’s Penalty Against 23andMe Brings New Emphasis on Cybersecurity Risks - Key Takeaways for U.S. Companies

Womble Bond Dickinson on

The dramatic increase in global reach that the internet provides U.S.-based companies comes as a double edge sword. While it significantly increases a company’s potential customer pool, it also subjects companies to...more

Hogan Lovells

Development of an AI system: CNIL issues guidelines regarding collection of data via web scraping

Hogan Lovells on

On 19 June 2025, CNIL published two additional “how-to-sheets” on artificial intelligence, one on the legitimate interest and the other on the collection of data via web scraping. These documents aim to clarify the rules...more

DLA Piper

Spain: AEPD Guidance – Important Update on Royal Decree 933/2021

DLA Piper on

On 17th June 2025, the Spanish Data Protection Authority (“AEPD”) published guidance in relation to Royal Decree 933/2021, which regulates document registration and information obligations relating to accommodation and motor...more

Wilson Sonsini Goodrich & Rosati

EU Reaches a Deal on Rules for Swifter Cross-Border GDPR Enforcement

Wilson Sonsini Goodrich & Rosati on

On June 16, 2025, the Council of the EU (Council) and the European Parliament (EP) reached an agreement on a new regulation (the Draft Regulation) to enhance enforcement of the General Data Protection Regulation (GDPR). The...more

Mayer Brown

US SEC Gives Green Light to Swiss-Based Investment Adviser Registration Applications

Mayer Brown on

On June 10, 2025, the US Securities and Exchange Commission (SEC) announced that it will immediately resume processing new and pending registration applications of investment advisers with their principal office and place of...more

DLA Piper

EU: Brussels Court of Appeal Rules on IAB Europe and the TC String – Implications for GDPR Compliance

DLA Piper on

On 14 May 2025, the Brussels Court of Appeal (Market Court) delivered the long-awaited judgement in the case concerning the Transparency & Consent Framework (“TCF”) (case no. 2022/AR/292). The Court largely upheld the...more

Goodwin

Training of Meta’s AI Systems and the Use of the European Users’ Data

Goodwin on

As of May 27, 2025, Meta (Facebook and Instagram) will start using some of the personal data of European users to train its artificial intelligence (AI) systems, including tools such as Meta AI and Llama language models....more

A&O Shearman

CJEU publishes an updated Fact Sheet summarising key case law on protection of personal data

A&O Shearman on

On April 28 2025, the Court of Justice of the European Union (CJEU) published an updated version of the fact sheet (the Fact Sheet) summarising key case law on protection of personal data. The Fact Sheet covers the case law...more

Maynard Nexsen

Irish Data Protection Commission Fines TikTok Over EEA Data Transfers to China

Maynard Nexsen on

On May 2, 2025, the Irish Data Protection Commission (“DPC”) issued a decision, as lead supervisory authority, finding that TikTok infringed the GDPR regarding (a) its cross-border transfers of EEA User Data to China, and (b)...more

Morgan Lewis - Tech & Sourcing

Data Sharing in Sports Sponsorship Contracts

Morgan Lewis - Tech & Sourcing on

Sports sponsorship contracts traditionally focus on category exclusivity and entitlements while overlooking data sharing language. However, with the rapid evolution of data usage in the industry, incorporating data sharing...more

King & Spalding

European Data Protection Board Report on AI Privacy Risks & Mitigations in Large Language Models

King & Spalding on

Large Language Models (“LLMs”) are a subset of artificial intelligence (“AI”) which use a type of machine learning called deep learning in order to understand how characters, words, and sentences function together. The advent...more

Amundsen Davis LLC

Is My U.S.-Based Company Subject to the GDPR? Clearing Up European Data Privacy Law Misinformation

Amundsen Davis LLC on

If you are a compliance professional for a U.S.-based company, you have probably been told at some point that you have to worry about the General Data Protection Regulation (GDPR). Have you encountered one of these...more

Latham & Watkins LLP

Preparing for the European Health Data Space - Opportunities and Challenges for Europe’s Digital Future

Latham & Watkins LLP on

The EU regulation designed to facilitate secondary use of clinical data for research brings benefits for health research, but also poses challenges for companies....more

Hogan Lovells

Latombe Case: First hearing for annulment of the EU-U.S. Data Privacy Framework

Hogan Lovells on

On April 1st, 2025, the General Court of the European Union held its first hearing on the request initiated by member of French parliament Philippe Latombe for annulment of the EU-U.S. Data Privacy Framework (“DPF”) further...more

2,027 Results
 / 
View per page
Page: of 82
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide