On October 6, 2021, the Centre for Information Policy Leadership at Hunton Andrews Kurth published a white paper on “Organizational Accountability in Data Protection Enforcement – How Regulators Consider Accountability in their Enforcement Decisions.”
Continue Reading CIPL Publishes White Paper on Organizational Accountability in Privacy Enforcement

The Centre for Information Policy Leadership at Hunton Andrews Kurth is celebrating 20 years of working with industry leaders, regulatory authorities and policymakers to develop global solutions and best practices for privacy and responsible data use. To mark this occasion, CIPL will publish a volume of short thought pieces later this year.
Continue Reading CIPL Celebrates Two Decades of Data Policy Innovation

On August 2, 2021, the Italian Data Protection Authority announced that it had levied a €2,500,000 fine on Deliveroo Italy s.r.l. for the unlawful processing of personal data of approximately 8,000 Deliveroo riders and various infringements of the GDPR.
Continue Reading Italian Garante Fines Deliveroo 2.5M Euros for Unlawful Processing of Personal Data

CIPL recently published a white paper on How the Legitimate Interest Ground for Processing for Processing Enables Responsible Data Use and Innovation, which explains the growing importance of the legitimate interests legal basis for organizations, whether for routine or more complex and innovative data processing activities.
Continue Reading CIPL Publishes White Paper on How the Legitimate Interest Ground for Processing Enables Responsible Data Use and Innovation

On May 2, 2021, the Norwegian data protection authority, Datatilsynet, notified a U.S. company of its intention to issue a fine of 25 million Norwegian Krone (approximately 2.5 million Euros). The preliminary fine was issued for failure to comply with the General Data Protection Regulation’s accountability, lawfulness and transparency requirements, primarily due to the company’s tracking of website visitors.
Continue Reading Norwegian DPA Issues 2.5M EUR Preliminary Fine for U.S. Company Utilizing Web-Tracking IDs

On March 25, 2021, the Centre for Information Policy Leadership at Hunton Andrews Kurth organized an expert roundtable on the EU Approach to Regulating AI–How Can Experimentation Help Bridge Innovation and Regulation? Roundtable panelists explored how methodologies, such as policy prototyping and regulatory sandboxes, can help create the right rules and frameworks and interpret them constructively for regulating AI in a way that enables responsible innovation and risk mitigation.
Continue Reading CIPL Organizes Webinar on EU Approach to Regulating AI and Regulatory Experimentation

The Centre for Information Policy Leadership at Hunton Andrews Kurth has published its paper on delivering a risk-based approach to regulating artificial intelligence. Developed in partnership with key EU experts and leaders in AI, the paper translates best practices and emerging policy trends into actionable recommendations for effective AI regulation.
Continue Reading CIPL Publishes Recommendations on a Risk-Based Approach to Regulating AI

On March 1, 2021, the Centre for Information Policy Leadership at Hunton Andrews Kurth submitted a response to the new Brazilian data protection authority’s call for preliminary inputs on the impact of the Brazilian data protection law on small and medium-sized enterprises.
Continue Reading CIPL Submits Response to New Brazilian Data Protection Authority’s First Public Consultation on SMEs

The concept of regulatory sandboxes has gained traction in the data protection community. Since the UK Information Commissioner’s Office completed its pilot program of regulatory sandboxes in September 2020, two European Data Protection Authorities have created their own sandbox initiatives following the ICO’s framework.
Continue Reading Regulatory Sandboxes are Gaining Traction with European Data Protection Authorities

On February 5, 2020, the Centre for Information Policy Leadership at Hunton Andrews Kurth submitted a response to the European Commission’s public consultation on the Commission’s Proposal for a Regulation on European Data Governance. This proposal is the first set of initiatives announced under the broader European Data Strategy.
Continue Reading CIPL Submits Response to European Commission’s Proposal for a Regulation on European Data Governance