The Presidency of the European Council recently published its revised text of the Proposal for a Regulation Concerning the Respect for Private Life and the Protection of Personal Data in Electronic Communications.
Continue Reading
European Union
German Data Protection Authorities Examine Proposal for GDPR Fining Model
Posted on
Posted in European Union, International
On September 17, 2019, the German Conference of Data Protection Authorities examined a proposal for calculating administrative fines under the GDPR.…
Continue Reading
UK Court of Appeal Permits Activist to Proceed with Claim for Damages Against Google
Posted on
On October 2, 2019, the UK Court of Appeal handed down its judgment on the appeal in Richard Lloyd v. Google LLC, in which Richard Lloyd, a consumer protection advocate, seeks to bring a representative action on behalf of four million Apple iPhone users against Google LLC in the United States. Previously, the High Court had refused to grant permission for the proceedings to be served outside the UK. The Court of Appeal reversed the High Court’s judgment, granting permission for service outside the UK and allowing the representative action to proceed. The judgment is significant as it paves the way for representative actions (equivalent to class actions) for data protection infringements in the UK.
…
Continue Reading
CJEU Reaches Decision in Case Involving Cookie Consent under EU Data Protection Law
Posted on
On October 1, 2019, the Court of Justice of the European Union issued its decision in an important case involving consent for the use of cookies by a German business called Planet49.…
Continue Reading
Addressing GDPR Challenges: An Interactive Session on Handling Data Breaches
Posted on
On October 15, 2019, Hunton Andrews Kurth will host a luncheon seminar in our Brussels office on Handling Data Breaches. This blog entry provides details on the event and a link to register.…
Continue Reading
Belgian DPA Announces Fine for Disproportionate Use of Customers’ eID Card
Posted on
On September 17, 2019, the Belgian Data Protection Authority (the “Belgian DPA”) imposed a fine of EUR 10,000 on a shop for the disproportionate use of customers’ electronic identity cards (the “eIDs ”) – a national identification card.
…
Continue Reading
CJEU Rules “Right to be Forgotten” on Google Limited to the EU in Landmark Case
Posted on
On September 24, 2019, the Court of Justice of the European Union released its judgments in cases C-507/17, Google v. CNIL and C-136/17, G.C. and Others v. CNIL regarding (1) the territorial scope of the right to be forgotten, and (2) the conditions in which individuals may exercise the right to be forgotten in relation to links to web pages containing sensitive data.…
Continue Reading
EU Council Presidency Published Amended Proposal for Draft ePrivacy Regulation
Posted on
Posted in European Union, International
On September 18, 2019, the Presidency of the European Council published its proposed amendments to the Proposal for a Regulation Concerning the Respect for Private Life and the Protection of Personal Data in Electronic Communications.…
Continue Reading
Dutch DPA Releases Complaints Report for First Half of 2019
Posted on
Posted in European Union, International
On September 9, 2019, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens, the “Dutch DPA”) published a report on the privacy complaints it received between January 2019 and June 2019 (the “Report”).
…
Continue Reading
CNIL Updates FAQs to Prepare for a No-deal Brexit
Posted on
On September 10, 2019, the French data protection authority updated its existing set of questions and answers (“FAQs”) on the impact of a no-deal Brexit on data transfers from the EU to the UK and discussed how controllers should prepare.…
Continue Reading