CIPL recently published a white paper on How the Legitimate Interest Ground for Processing for Processing Enables Responsible Data Use and Innovation, which explains the growing importance of the legitimate interests legal basis for organizations, whether for routine or more complex and innovative data processing activities.
Continue Reading CIPL Publishes White Paper on How the Legitimate Interest Ground for Processing Enables Responsible Data Use and Innovation

In an article originally published on Practical Law, Hunton Andrews Kurth partner Bridget Treacy discusses the European Commission’s long-awaited SCCs, including considerations for personal data transfers from the UK. This blog entry provides a link to download the article.
Continue Reading European Commission’s New Standard Contractual Clauses: What They Mean for UK Businesses

The Centre for Information Policy Leadership at Hunton Andrews Kurth recently submitted its comments on the Irish Data Protection Commissioner’s consultation on its Draft Regulatory Strategy for 2021-2026, in which the DPC sets out its vision for the next five years.
Continue Reading CIPL Responds to Irish DPC Consultation on Draft Regulatory Strategy

On June 28, 2021, the European Commission adopted two adequacy decisions for the United Kingdom, one under the GDPR and another under the Law Enforcement Directive. Their adoption means organizations in the EU can continue to transfer personal data to organizations in the UK without restriction, and will not need to rely upon data transfer mechanisms, such as the SCCs, to ensure an adequate level of protection.
Continue Reading European Commission Adopts UK Adequacy Decision

On June 21, 2021, the European Data Protection Board published the final version of its recommendations on supplementary measures in the context of international transfer safeguards, such as Standard Contractual Clauses.
Continue Reading EDPB Releases Final Recommendations on Supplementary Measures for International Transfers

On June 16, 2021, the UK Government’s Taskforce on Innovation, Growth and Regulatory Reform published an independent report containing recommendations to the Prime Minister on how the UK can reshape its approach to regulation in the wake of Brexit (the “Report”). Among wide-ranging proposals across a range of areas, the Report recommends replacing the UK General Data Protection Regulation (“UK GDPR”) with a new UK Framework of Citizen Data Rights. The proposed approach would aim to give individuals greater control over their personal data while also allowing increased data flows and driving growth in the digital economy. The Report will be considered by the Government’s Better Regulation Committee.

Continue Reading Government Taskforce Recommends UK GDPR Reform