On June 22, 2016, the Bavarian Data Protection Authority issued a short paper on certifications under Article 42 of the General Data Protection Regulation. The GDPR will become effective on May 25, 2018.
Continue Reading The Bavarian DPA Issues Paper on Certifications Under the GDPR
Cloud Computing
EU Council Adopts the Network and Information Security Directive
On May 17, 2016, the European Council adopted its position at first reading on the Network and Information Security Directive. The NIS Directive was proposed by the European Commission on February 7, 2013, as part of its cybersecurity strategy for the European Union, and is designed to increase cooperation between EU Member States on cybersecurity issues.
Continue Reading EU Council Adopts the Network and Information Security Directive
Defense Department Issues Interim Rule Extending Time for Federal Contractors to Comply with Cybersecurity Regulations
On December 30, 2015, the Department of Defense issued a second interim rule that extends the deadline by which federal contractors must implement the new cybersecurity requirements previously issued by the agency. …
Continue Reading Defense Department Issues Interim Rule Extending Time for Federal Contractors to Comply with Cybersecurity Regulations
German DPAs Issue Joint Position Paper on Alternatives to Safe Harbor
On October 26, 2015, the German federal and state data protection authorities published a joint position paper on Safe Harbor and potential alternatives for transfers of data to the U.S. …
Continue Reading German DPAs Issue Joint Position Paper on Alternatives to Safe Harbor
CIPL Supports Theme of “Privacy Bridges” at 37th International Privacy Conference in Amsterdam
On October 27, 2015, Hunton & Williams LLP’s Centre for Information Policy Leadership will conduct a joint workshop with Nymity on Bridging Disparate Privacy Regimes through Organizational Accountability during the 37th International Privacy Conference. The Centre for Information Policy Leadership also has released two draft white papers in a series of three on protecting privacy in a world of big data.
Continue Reading CIPL Supports Theme of “Privacy Bridges” at 37th International Privacy Conference in Amsterdam
Article 29 Working Party Issues Opinion on C-SIG Code of Conduct on Cloud Computing
On September 22, 2015, the Article 29 Working Party (the “Working Party”) adopted an Opinion on the Cloud Select Industry Group (“C-SIG”) Code of Conduct on data protection for Cloud Service Providers (the “Code”). In the Opinion, the Working Party analyzes the Code that was drafted by the Cloud Select Industry Group (the “C-SIG”).
Continue Reading Article 29 Working Party Issues Opinion on C-SIG Code of Conduct on Cloud Computing
Department of Defense Issues New Cyber Incident Reporting and Cloud Computing Requirements for Contractors
The Department of Defense recently issued an interim rule that streamlines the obligations for contractors to report cyber incidents and establishes DoD requirements for contracting with cloud computing service providers.
Continue Reading Department of Defense Issues New Cyber Incident Reporting and Cloud Computing Requirements for Contractors
Online Trust Alliance Releases Privacy and Data Security Framework for Internet of Things
On August 11, 2015, the Online Trust Alliance, a nonprofit group whose goal is to increase online trust and promote the vitality of the Internet, released a framework for best practices in privacy and data security for the Internet of Things. …
Continue Reading Online Trust Alliance Releases Privacy and Data Security Framework for Internet of Things
Sotto Featured on Penn Law’s “Great Minds on Law and Life” Podcast on New Threats to Digital Privacy and Cybersecurity
On March 3, 2015, Lisa Sotto, partner and chair of the Global Privacy and Cybersecurity practice at Hunton & Williams LLP was featured in the new Penn Law podcast series, Case in Point: Great Minds on Law and Life, discussing what we mean when we talk about our right to privacy. This blog entry provides a link to the podcast.
Continue Reading Sotto Featured on Penn Law’s “Great Minds on Law and Life” Podcast on New Threats to Digital Privacy and Cybersecurity
Irish Government Files Amicus Brief in Microsoft Case
The Irish government filed an amicus brief in the ongoing dispute between Microsoft and the U.S. government concerning the U.S. government’s demands for data held by Microsoft on email servers located in Ireland.
Continue Reading Irish Government Files Amicus Brief in Microsoft Case