The concept of regulatory sandboxes has gained traction in the data protection community. Since the UK Information Commissioner’s Office completed its pilot program of regulatory sandboxes in September 2020, two European Data Protection Authorities have created their own sandbox initiatives following the ICO’s framework.
Continue Reading Regulatory Sandboxes are Gaining Traction with European Data Protection Authorities
Information Security
Hunton Partner Dora Luo Publishes “China: The Draft PIPL and the GDPR – A Comparative Perspective”
In the February 2021 issue of the “Data Protection Leader,” Hunton partner Dora Luo discusses China’s draft Personal Information Protection Law in the context of other comprehensive data protection frameworks, such as the EU General Data Protection Regulation. This post includes a link to download the full article.…
Continue Reading Hunton Partner Dora Luo Publishes “China: The Draft PIPL and the GDPR – A Comparative Perspective”
Virginia Moves Closer to Be the Second State to Enact Major Privacy Legislation
As we previously reported, significant data privacy bills, titled the Consumer Data Protection Act, are working their way through the Virginia legislature. If enacted, Virginia would be the second state to enact major data privacy legislation of general applicability. …
Continue Reading Virginia Moves Closer to Be the Second State to Enact Major Privacy Legislation
European Commission Publishes Draft UK Data Transfer Adequacy Determination
On February 19, 2021, the European Commission published a draft data protection adequacy decision relating to the UK. If the draft decision is adopted, organizations in the EU will be able to continue to transfer personal data to organizations in the UK without restriction, and will not need to rely upon data transfer mechanisms, such as the EU Standard Contractual Clauses, to ensure an adequate level of protection.…
Continue Reading European Commission Publishes Draft UK Data Transfer Adequacy Determination
Will Virginia Be the Second State to Enact Major Privacy Legislation?
On February 5, 2021, the state Senate of Virginia voted unanimously to approve Senate Bill 1392, titled the Consumer Data Protection Act, after the House of Delegates approved an identical House bill by an 89-9 vote.…
Continue Reading Will Virginia Be the Second State to Enact Major Privacy Legislation?
EU Member States Agree on Council’s Text for the ePrivacy Regulation
On February 10, 2021, representatives of the EU Member States reached an agreement on the Council of the European Union’s negotiating mandate for the draft ePrivacy Regulation, which will replace the current ePrivacy Directive. The text approved by the EU Member States was prepared under Portugal’s Presidency and will form the basis of the Council’s negotiations with the European Parliament on the final terms of the ePrivacy Regulation.…
Continue Reading EU Member States Agree on Council’s Text for the ePrivacy Regulation
CNIL Calls Organizations to Audit their Sites and Apps for Cookie Compliance
On February 4, 2021, the French Data Protection Authority announced that it sent letters and emails to approximately 300 organizations, both private and public, to remind them of the new cookie law rules and the need to audit their sites and apps to comply with those rules by March 31, 2021. …
Continue Reading CNIL Calls Organizations to Audit their Sites and Apps for Cookie Compliance
Hunton Publishes 2020 Retail Industry Year in Review
Hunton releases its 2020 Retail Industry Year in Review, which features several articles authored by our privacy lawyers, including on topics such as the cashier-less technology revolution, the California Privacy Rights Act of 2020 and “buy now, pay later” plans.…
Continue Reading Hunton Publishes 2020 Retail Industry Year in Review
ICO Confirms UK Firms May Rely on Public Interest Derogation for SEC Transfers
On January 19, 2021, the UK Information Commissioner’s Office published its analysis of the application of the UK General Data Protection Regulation to transfers from UK-based firms or branches that are registered, required to be registered or otherwise regulated by the U.S. Securities and Exchange Commission. …
Continue Reading ICO Confirms UK Firms May Rely on Public Interest Derogation for SEC Transfers
APEC Endorses the First U.S. Non-Profit Accountability Agent
On January 26, 2021, BBB National Programs announced that it has been endorsed as an Accountability Agent for the APEC Cross-Border Privacy Rules and Privacy Recognition for Processors systems. This makes BBB National Programs the seventh CBPR and PRP Accountability Agent worldwide and the first ever U.S. non-profit to be approved by APEC.…
Continue Reading APEC Endorses the First U.S. Non-Profit Accountability Agent