The Centre for Information Policy Leadership at Hunton Andrews Kurth has submitted its response to the European Data Protection Board consultation on draft guidelines on examples regarding data breach notification. CIPL welcomes the Guidelines which come at a time at which cyber attacks are surging as a result of the move to remote working triggered by the COVID-19 crisis, and should help organizations avoid over-reporting.
Continue Reading CIPL Submits Response to the EDPB Guidelines on Examples Regarding Data Breach Notification
Article 29 Working Party
EDPB Publishes Guidelines on Examples regarding Data Breach Notification
On January 18, 2021, the European Data Protection Board released draft Guidelines 01/2021 on Examples regarding Data Breach Notification. The Guidelines aim to assist data controllers in deciding how to handle data breaches, including by identifying the factors that they must take into account when conducting risk assessments to determine whether a breach must be reported to relevant supervisory authorities and/or the affected data subjects. …
Continue Reading EDPB Publishes Guidelines on Examples regarding Data Breach Notification
EDPB Publishes Guidelines on the Concepts of Controller and Processor in the GDPR
On September 7, 2020, the European Data Protection Board released draft Guidelines 07/2020 on the concepts of controller and processor in the EU General Data Protection Regulation. We provide a summary of the key takeaways from the guidelines. …
Continue Reading EDPB Publishes Guidelines on the Concepts of Controller and Processor in the GDPR
EDPB Publishes Guidelines on the Right to Be Forgotten in Search Engine Cases
On December 11, 2019, the European Data Protection Board published its draft guidelines 5/2019 on the criteria of the right to be forgotten in search engine cases under the EU General Data Protection Regulation.
Continue Reading EDPB Publishes Guidelines on the Right to Be Forgotten in Search Engine Cases
EDPB Releases 2018 Annual Report
On July 16, 2019, the European Data Protection Board published its first Annual Report for 2018, and this blog entry provides highlights from the report.
Continue Reading EDPB Releases 2018 Annual Report
EDPB Publishes Guidelines on the Contractual Legal Basis for Data Processing of Online Services
On April 12, 2019, the European Data Protection Board published draft guidelines 2/2019 on the processing of personal data in the context of the provision of online services to data subjects. This blog entry provides an overview of the Guidelines.
Continue Reading EDPB Publishes Guidelines on the Contractual Legal Basis for Data Processing of Online Services
EDPB Issues Statement on U.S. Foreign Account Tax Compliance Act
On February 25, 2019, the European Data Protection Board issued a statement regarding the transfer of personal data from Europe to the U.S. Internal Revenue Service for purposes of the U.S. Foreign Account Tax Compliance Act.
Continue Reading EDPB Issues Statement on U.S. Foreign Account Tax Compliance Act
EDPB Releases Two-Year Work Program
On February 12, 2019, the European Data Protection Board released its work program for 2019 and 2020. This blog entry provides highlights on the work program’s topic areas. …
Continue Reading EDPB Releases Two-Year Work Program
Belgian DPA Publishes Prior Consultation Form in the Context of a DPIA
The Belgian Data Protection Authority recently published on its website a form to be completed for prior consultation in the context of a data protection impact assessment.
Continue Reading Belgian DPA Publishes Prior Consultation Form in the Context of a DPIA
CIPL Co-Hosts Workshop on GDPR and Scientific Health Research
On October 22, 2018, the Centre for Information Policy Leadership at Hunton Andrews Kurth LLP co-hosted a workshop in Brussels on “Can GDPR Work for Health Scientific Research?” with the European Federation of Pharmaceutical Industries and Associations and the Future of Privacy Forum to address the challenges raised by the GDPR in conducting scientific health research.
Continue Reading CIPL Co-Hosts Workshop on GDPR and Scientific Health Research