News & Analysis as of

General Data Protection Regulation (GDPR) Privacy Laws Personal Data

Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts... more +
Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts individuals throughout the Union and all businesses operating therein. less -
Katten Muchin Rosenman LLP

EU Initiates Renewal of UK Adequacy Decision Following the UK's Adoption of the Data (Use and Access) Act 2025

Katten Muchin Rosenman LLP on

EU Launches UK Adequacy Decision Renewal Process - On 22 July 2025, the European Commission announced that it had launched the process to renew the adequacy decision for the United Kingdom (UK) and confirmed that the UK’s...more

Hogan Lovells

Cambodia moves to enact comprehensive data privacy law

Hogan Lovells on

On July 23, 2025, Cambodia released a draft of its first ever comprehensive personal data protection law, the Law on Personal Data Protection (“LPDP”). Once passed, Cambodia will join the ranks of seven other countries...more

Latham & Watkins LLP

UK Adequacy Holds Firm Under New Data (Use and Access) Act 2025

Latham & Watkins LLP on

The DUAA introduces several reforms to UK data protection law, but their implications are relatively limited in practice. The Data (Use and Access) Act 2025 (the DUAA) was enacted on 19 June 2025 and amends rather than...more

Womble Bond Dickinson

The ICO’s Penalty Against 23andMe Brings New Emphasis on Cybersecurity Risks - Key Takeaways for U.S. Companies

Womble Bond Dickinson on

The dramatic increase in global reach that the internet provides U.S.-based companies comes as a double edge sword. While it significantly increases a company’s potential customer pool, it also subjects companies to...more

DLA Piper

Spain: AEPD Guidance – Important Update on Royal Decree 933/2021

DLA Piper on

On 17th June 2025, the Spanish Data Protection Authority (“AEPD”) published guidance in relation to Royal Decree 933/2021, which regulates document registration and information obligations relating to accommodation and motor...more

A&O Shearman

CJEU publishes an updated Fact Sheet summarising key case law on protection of personal data

A&O Shearman on

On April 28 2025, the Court of Justice of the European Union (CJEU) published an updated version of the fact sheet (the Fact Sheet) summarising key case law on protection of personal data. The Fact Sheet covers the case law...more

Hogan Lovells

Latombe Case: First hearing for annulment of the EU-U.S. Data Privacy Framework

Hogan Lovells on

On April 1st, 2025, the General Court of the European Union held its first hearing on the request initiated by member of French parliament Philippe Latombe for annulment of the EU-U.S. Data Privacy Framework (“DPF”) further...more

Hogan Lovells

Overview of the CNIL’s enforcement actions in 2024: the simplified procedure generates an increase in sanctions

Hogan Lovells on

In 2024, the CNIL stepped up its enforcement action, issuing 87 sanctions, 180 compliance orders and 64 reprimands. However, only 12 decisions were made public, thus complicating the exercise of making the regulator’s...more

Alston & Bird

Belgian Data Protection Authority Issues Updated Guidance on Direct Marketing Rules

Alston & Bird on

On March 10, 2025, the Belgian Data Protection Authority (BDPA) updated its 2020 guidance on the processing of personal data for direct marketing purposes (see the updated guidance here in French and in Dutch)....more

Jackson Lewis P.C.

EU Data Enforcement Sweep: Are GDPR-Covered Entities Complying Properly with Data Subjects’ Right of Erasure?

Jackson Lewis P.C. on

The European Data Protection Board (EDPB) has launched its 2025 enforcement sweep targeting organizations’ compliance with data subjects’ right of erasure (right to delete or be forgotten), focusing particularly on how...more

Constangy, Brooks, Smith & Prophete, LLP

Chile brings its data privacy laws in line with global data privacy standards

Constangy, Brooks, Smith & Prophete, LLP on

Chile has amended its data privacy law granting significant rights to data subjects, and imposing stricter obligations on data controllers and processors. Published in the Official Gazette (Diario Oficial) on December 13,...more

A&O Shearman

CJEU issues judgment on balancing the right of access and protecting trade secrets in automated decision-making processes

A&O Shearman on

On February 27 2025, the Court of Justice of the European Union (CJEU) delivered a judgment in CK v Dun & Bradstreet (Case C-203/22). This judgment clarifies the GDPR provisions regarding the right of access to personal...more

Sheppard Mullin Richter & Hampton LLP

Forget It!: EDPB Announces Focus on Right to Erasure in 2025

Sheppard Mullin Richter & Hampton LLP on

Right of erasure (or “right to be forgotten”) has been selected by the European Data Protection Board as its priority enforcement topic for 2025. This work is being done under the “Coordinated Enforcement Framework” or “CEF.”...more

Jenner & Block

Client Alert: New GDPR Investigations into the Use of Children’s Data

Jenner & Block on

The UK’s data protection regulator, the Information Commissioner’s Office (ICO), has recently announced investigations into three companies in connection with the use of children’s personal information. In a statement on...more

Farella Braun + Martel LLP

Machine Unlearning – A Potential Option for Remedy

Farella Braun + Martel LLP on

Machine unlearning (MU) is a concept that is likely more interesting to lawyers than to data scientists, as the latter typically focus on collecting, maintaining, and mining as much data as possible—whether in the context of...more

Barnea Jaffa Lande & Co.

Significant Shift in the Israeli Privacy Protection Authority’s Definition of Consent

Barnea Jaffa Lande & Co. on

The Israeli Privacy Protection Authority (PPA) has issued a new statement introducing a significant change in the interpretation of the law and in the required methods for obtaining consent to the collection and processing of...more

A&O Shearman

Polish supervisory authority publishes updated guide on personal data protection breaches

A&O Shearman on

On February 20, 2025, the Polish Personal Data Protection Office (UODO) published an updated version of the guide on personal data protection breaches. The first edition was released in 2018. The latest version...more

Orrick, Herrington & Sutcliffe LLP

Italy Founder Series: Privacy for Startups – First Moves

Orrick, Herrington & Sutcliffe LLP on

italiano: Privacy per Startup – I primi passi When launching a startup in Italy, it is critical to comply with the applicable data protection requirements. Failing to do so can lead to significant risks in terms of liability...more

Katten Muchin Rosenman LLP

Tax Transparency and Data Privacy — Which Wins?

Katten Muchin Rosenman LLP on

As tax authorities embrace new digital technologies, the issue of safeguarding citizens' data privacy rights steps to the fore. Since the implementation of the EU General Data Protection Regulation (GDPR) in 2018, there has...more

Schwabe, Williamson & Wyatt PC

Low-Budget, High-Impact Ways to Reduce Privacy and Cybersecurity Risks in 2025‎

Schwabe, Williamson & Wyatt PC on

Know What Laws Apply - Privacy and security laws, particularly in the U.S., have changed dramatically in the last few years. It’s not surprising many leaders are unsure which new laws or updated regulations apply to their...more

A&O Shearman

High Court rules on standard of consent required for profiling and direct marketing

A&O Shearman on

On January 23, 2025, Mrs Justice Collins Rice of the UK High Court issued a ruling in the case of RTM v Bonne Terre Limited and Hestview Limited (trading as Sky Betting and Gaming, (SBG)). The claim - The judgment...more

Latham & Watkins LLP

Personal Data: A Relative Concept?

Latham & Watkins LLP on

Advocate General Spielmann opines that personal data can be pseudonymous in the hands of one party and anonymous in the hands of another....more

Latham & Watkins LLP

GDPR Fines to Be Determined by Reference to Global Turnover of Corporate Group

Latham & Watkins LLP on

The CJEU has decided that the maximum thresholds for GDPR fines should be calculated using the global turnover of the broader corporate group, not solely the infringing entity....more

DLA Piper

UK: Gambling Operator Held Liable for Breaching Data Protection Law

DLA Piper on

In RTM v Bonne Terre Limited Hestview Limited, the English High Court found the Defendants, operating as Sky Bet (SBG), liable for breaches of data protection law. The claim raises important points of law for all...more

BCLP

Mobile Apps: What Does the CNIL Recommend From a Privacy Perspective?

BCLP on

While mobile apps have become one of the major means of access to digital services, their ubiquity is accompanied by significant risks to users' privacy, due to the massive amount of personal data they collect and process....more

175 Results
 / 
View per page
Page: of 7
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide