Tag Archives: CNIL

CNIL Launches New Public Consultation on the GDPR

On February 23, 2017, the French Data Protection Authority launched an online public consultation on three topics identified by the Article 29 Working Party in its 2017 action plan for the implementation of the EU General Data Protection Regulation. The three topics are consent, profiling and data breach notification. … Continue Reading

Entry into Force of the French Digital Republic Bill

On October 7, 2016, the French Digital Republic Bill (the “Bill”) was enacted after a final vote from the Senate. The Bill aligns the French legal data protection framework with the EU General Data Protection Regulation (“GDPR”) requirements before the GDPR becomes applicable in May 2018.… Continue Reading

CNIL Publishes Internet Sweep Results on Connected Devices

On September 26, 2016, the French Data Protection Authority published the results of the Internet sweep on connected devices. The sweep was conducted in May 2016 to assess the quality of the information provided to users of connected devices, the level of security of the data flows and the degree of user empowerment.… Continue Reading

French Parliament Rejects Data Localization Amendment

On June 30, 2016, a joint committee composed of representatives from both chambers of the French Parliament reached a common position on the French ‘Digital Republic’ Bill that rejects the data localization amendment previously approved by the French Senate, but significantly amends other aspects of the French Data Protection Act. … Continue Reading

New Do-Not-Call List Launched in France

On June 1, 2016, a new do-not-call list was implemented in France. French residents who do not wish to receive marketing phone calls may register their landline or mobile phone number online at www.bloctel.gouv.fr.… Continue Reading

CNIL Issues Decision Regarding Data Processing for Litigation Purposes

On February 19, 2016, the French Data Protection Authority made public its new Single Authorization Decision No. 46. This decision relates to the data processing activities of public and private organizations with respect to the preparation, exercise and follow-up regarding disciplinary or court actions, and the enforcement of those actions.… Continue Reading

French Data Protection Authority Reveals 2015 Inspection Program

On May 25, 2015, the French Data Protection Authority released its long-awaited annual inspection program for 2015, announcing that a target of 550 inspections was set for 2015, including 350 on-site inspections, document reviews or hearings and 200 online inspections. This blog entry provides a summary of the program.… Continue Reading

Article 29 Working Party Issues Joint Statement on European Values and Actions for an Ethical European Data Protection Framework

On December 8, 2014, the Article 29 Working Party and the French Data Protection Authority organized the European Data Governance Forum, an international conference centered around the theme of privacy, innovation and surveillance in Europe. The conference concluded with a presentation of a Joint Statement adopted by the Working Party during its plenary meeting on November 25, 2014.… Continue Reading
LexBlog