Tag Archives: E-Privacy Directive

UK and U.S. Regulators Introduce New Breach Guidance, Notification Forms

Posted on February 3, 2012 by Hunton & Williams LLP

In recent weeks, regulators in California and Illinois have issued guidance on responding to data security breaches, while UK and California authorities released online forms for organizations to use when providing notification of a breach to regulators.

In December 2011, the UK Information Commissioner’s Office (“ICO”) released a new breach notification form, reinforcing its expectation that organizations provide notification whether or not such notification is legally required. Sector-specific breach notification requirements were introduced in the UK by The Privacy and Electronic Communications (EC Directive) (Amendment) Regulations 2011, and since May 2011, public electronic communication service providers have been required to notify the ICO, and in some cases affected individuals, in the event of a data security breach. All other organizations are strongly encouraged to notify the ICO of serious security breaches, and the fact that an incident was reported voluntarily is something the ICO takes into consideration when determining the appropriate enforcement action.

Tags: California, Data Protection Act, E-Privacy Directive, Illinois, Information Commissioners Office, State Attorneys General, United Kingdom

Article 29 Working Party Rejects Industry Self-Regulatory Code on Online Behavioral Advertising

Posted on December 16, 2011 by Hunton & Williams LLP

On December 8, 2011, the Article 29 Working Party (the “Working Party”) adopted an Opinion on the European Advertising Standards Alliance (“EASA”) and IAB Europe best practice recommendations for the online behavioral advertising (“OBA”) industry to comply with Article 5.3 of the revised e-Privacy Directive 2002/58/EC (the “cookie clause”). The cookie clause requires a user’s informed consent for the use of cookies and similar technologies that store and access information in the user’s terminal device. Finding practical ways of complying with the cookie clause has proven challenging for the OBA industry, which relies heavily on these kinds of tracking mechanisms.

Tags: Advertisement, Article 29 Working Party, Cookies, E-Privacy Directive, Opt-In Consent

Article 29 Working Party Meets with Europe’s Online Advertising Industry to Discuss Self-Regulatory Framework

Posted on September 16, 2011 by Hunton & Williams LLP

On September 14, 2011, the Article 29 Working Party (the “Working Party”) met with representatives of the European Advertising Standards Alliance (“EASA”) and IAB Europe, to discuss the industry’s new self-regulatory code of conduct for online behavioral advertising (the “Code”), which was released on April 14, 2011. Continue reading…

Tags: Advertisement, Article 29 Working Party, Cookies, E-Privacy Directive, Jacob Kohnstamm, Opt-In Consent

France Introduces Data Security Breach Notification Requirement for Electronic Communication Service Providers

Posted on August 26, 2011 by Hunton & Williams LLP

On August 24, 2011, France’s new law concerning electronic communications (Ordonnance n° 2011-1012 du 24 août 2011 relative aux communications électroniques, or the “Ordinance”) came into force. The Ordinance implements the provisions of the revised EU Directive 2002/58/EC (the “e-Privacy Directive”) with respect to the French Data Protection Act of 1978, the French Postal and Electronic Communications Code and the French Consumer Protection Code. In particular, the Ordinance introduces new provisions under the French Data Protection Act, which impose an obligation on electronic communication service providers to provide notice in the event of a data security breach. Continue reading…

Tags: Data Protection Act, E-Privacy Directive, France

France Introduces Prior Opt-in Consent for Cookies

Posted on August 26, 2011 by Hunton & Williams LLP

On August 24, 2011, France’s new law concerning electronic communications (Ordonnance n° 2011-1012 du 24 août 2011 relative aux communications électroniques, or the “Ordinance”) came into force. The Ordinance implements the provisions of the revised EU Directive 2002/58/EC (the “e-Privacy Directive”) with respect to the French Data Protection Act of 1978, the French Postal and Electronic Communications Code and the French Consumer Protection Code. Specifically, the Ordinance amends the existing legal framework concerning cookies and introduces an opt-in regime for the use of cookies. Continue reading…

Tags: CNIL, Cookies, Data Controller, Data Protection Act, E-Privacy Directive, France, Opt-In Consent

EU Commissioner Reding Signals Intention to Introduce Mandatory Data Breach Notification

Posted on June 21, 2011 by Hunton & Williams LLP

Speaking at the British Bankers’ Association’s Data Protection and Privacy Conference in London on June 20, 2011, Viviane Reding, Vice President of the European Commission and Commissioner for Justice, Fundamental Rights and Citizenship, signaled her intention to streamline data protection to “simplify the regulatory environment” and “substantially reduce the administrative burden” for businesses. In return, Reding expects businesses to ensure “safe and transparent digital products and services.”

Tags: Consumer Protection, E-Privacy Directive, EU Member States, European Commission, Telecommunications, United Kingdom, Viviane Reding

German DPAs Publish Comprehensive FAQs on Statutory Data Breach Notification Requirement

Posted on May 31, 2011 by Hunton & Williams LLP

The German Data Protection Authorities of Berlin and North Rhine-Westphalia have issued a paper containing Frequently Asked Questions about the German statutory data breach notification requirement that went into effect on September 1, 2009. The paper provides detailed information on key questions concerning the procedure for notification as required by Section 42a of the German Federal Data Protection Act.

Tags: Compliance, Data Controller, Data Protection Authority, E-Privacy Directive, Encryption, Federal Data Protection Act, Germany, Penalty, Service Provider, Telecommunications

Article 29 Working Party Opines on Geolocation Services

Posted on May 19, 2011 by Hunton & Williams LLP

On May 16, 2011, the Article 29 Working Party (the “Working Party”) adopted an Opinion on geolocation services on smart mobile devices (the “Opinion”). The Opinion clarifies the legal framework and obligations applicable to geolocation services such as maps and navigation tools, geo-personalized services, geotagging of content on the Internet, child control and location-based advertising.

Tags: Article 29 Working Party, Data Controller, E-Privacy Directive, EU Data Protection Directive, EU Member States, Geolocation, Legislation, Opt-In Consent, Telecommunications, Wireless Network

Europe’s Online Advertising Industry Agrees on Self-Regulatory Framework

Posted on April 22, 2011 by Hunton & Williams LLP

On April 14, 2011, the European Advertising Standards Alliance (“EASA”) and IAB Europe released complementary new self-regulatory standards for online behavioral advertising. This cross-industry initiative is aimed at enhancing European consumers’ control over their data and ensuring transparency, particularly with respect to advertisements that are delivered using third party online behavioral advertising.

Tags: E-Privacy Directive, Legislation

European Commission Presents Evaluation Report on Telecommunications Data Retention

Posted on April 19, 2011 by Hunton & Williams LLP

On April 18, 2011, the European Commission (the “Commission”) adopted an Evaluation Report on the EU Data Retention Directive 2006/24/EC (the “Data Retention Directive”).

The Data Retention Directive requires that, for law enforcement purposes, telecommunications service and network providers (“Operators”) must retain certain categories of telecommunications data (excluding the content of the communication) for not less than six months and not more than two years. To date, most of the EU Member States have implemented the Data Retention Directive, but Czech Republic, Germany and Romania no longer have implementing laws in place because their constitutional courts have annulled the implementing laws as unconstitutional.

Tags: Article 29 Working Party, Consumer Protection, E-Privacy Directive, EU Member States, European Commission, Legislation, Right to Privacy, Telecommunications

Privacy and Information Security Law Blog - Global privacy and information security law updates and analysis

Tag Archives: E-Privacy Directive

UK and U.S. Regulators Introduce New Breach Guidance, Notification Forms

France Introduces Data Security Breach Notification Requirement for Electronic Communication Service Providers

EU Commissioner Reding Signals Intention to Introduce Mandatory Data Breach Notification

German DPAs Publish Comprehensive FAQs on Statutory Data Breach Notification Requirement

Europe’s Online Advertising Industry Agrees on Self-Regulatory Framework

European Commission Presents Evaluation Report on Telecommunications Data Retention

Published By Hunton & Williams

Search

Subscribe

Topics

Recent Updates

Blogroll

Privacy News