After 25 May 2018, data protection will be a high-risk issue for all retailers who fall within the scope of the GDPR. Organizations can be fined up to 4% of annual worldwide turnover or 20 million euros (whichever is … Continue Reading
On May 25, 2018, the General Data Protection Regulation (GDPR) goes into effect. Are you ready?
Organizations, anywhere in the world, that process the personal data of European Union (EU) residents should pay attention to GDPR and its … Continue Reading
From April 1, 2018, all new cars in the European Union (EU) must be equipped with eCall technology.
What is eCall?
eCall is a service designed to provide quick emergency response. In the event of a serious accident, the in-vehicle … Continue Reading
On October 18, 2017, the European Commission issued its report on the first annual review of the EU- U.S. Privacy Shield, aimed at allowing personal data transfer from the EU to the U.S. through the implementation of a data … Continue Reading
In June the ICO updated its Subject Access Code of Practice, which gives guidance to data controllers on how to respond to subject access requests from data subjects. The Code itself is not legally binding, but provides advice on … Continue Reading
The EU’s Market Abuse Regulation (“MAR”) came into effect on July 3, 2016 replacing the EU’s Market Abuse Directive. Unlike the Directive, the MAR has direct effect in each EU member state, including the UK.
The MAR, a civil market … Continue Reading
In letters sent on November 20, 2015 (see here the letter sent to the chairman of the Article 29 Working Party), the U.S. Chamber of Commerce and its EU equivalent, BusinessEurope, urged the U.S. and EU negotiators to “expeditiously reach … Continue Reading
A recent leaked draft proposal reveals the position of the E.U. Council as regards to the fines system that will come into force under the proposed new General Data Protection Regulation in the E.U. member states. The huge amount of … Continue Reading
The EU’s data watchdog, the European Data Protection Supervisor (EDPS), recently published his views in a report on “the interplay between data protection, competition law and consumer protection in the digital economy”. His basic thesis is something that has been … Continue Reading
The Court of Justice of the EU Declares Invalid the Data Retention Directive 2006/24
No sooner had it been adopted than the Data Retention Directive was receiving criticism from various Member States and other stakeholders. They can now breathe easier; … Continue Reading
On 13 March 2014, the European Parliament by a large majority passed the draft Network & Information Security (NIS) directive (also known as the draft cybersecurity directive). This draft directive was proposed by the European Commission on 7 February 2013, … Continue Reading
Perhaps signaling increased scrutiny of Safe Harbor Framework certification, the Federal Trade Commission (FTC) announced recently that it settled 12 enforcement actions where companies had allegedly falsely asserted compliance with the U.S.-EU and U.S.-Swiss Safe Harbor Frameworks. … Continue Reading