On November 22, 2022, the Court of Justice of the European Union determined in a preliminary ruling that the general public’s access to information on beneficial ownership constitutes a serious interference with the fundamental rights to respect for private life and to the protection of personal data, enshrined in Articles 7 and 8 of the Charter of Fundamental Human Rights.
Continue Reading Public Access to Information on Company Beneficial Ownership is a Violation of Privacy According to the CJEU
Court of Justice of the European Union
EDPB Publishes Guidelines on the Calculation of Administrative Fines Under the GDPR
Posted on
Posted in European Union, International
The European Data Protection Board recently adopted Guidelines 04/2022 on the calculation of administrative fines under the GDPR. This blog entry provides a summary of the Guidelines. …
Continue Reading EDPB Publishes Guidelines on the Calculation of Administrative Fines Under the GDPR
CNIL Unveils 2021 Annual Activity Report
Posted on
The French Data Protection Authority recently published its Annual Activity Report for 2021.
Continue Reading CNIL Unveils 2021 Annual Activity Report
European Commission and United States Announce Agreement in Principle on Trans-Atlantic Data Privacy Framework
Posted on
On March 25, 2022, European Commissioner for Justice Didier Reynders and U.S. Secretary of Commerce Gina Raimondo issued a joint statement announcing that the negotiations on an enhanced EU-U.S. Privacy Shield framework will intensify. In addition, in a speech given in Brussels, the President of the European Commission, Ursula von der Leyden, and U.S. President Biden indicated that they have found an agreement on data flows between the EU and U.S.
Continue Reading European Commission and United States Announce Agreement in Principle on Trans-Atlantic Data Privacy Framework
EDPB Adopts Guidelines on Codes of Conduct as Tools for Transfers
Posted on
Posted in European Union, International
On February 22, 2022, the European Data Protection Board adopted its final Guidelines 04/2021 on Codes of Conduct as tools for transfers, following a public consultation that took place in 2021.
Continue Reading EDPB Adopts Guidelines on Codes of Conduct as Tools for Transfers
Update: International Data Transfer Agreement and Addendum Replace SCCs
Posted on
On August 11, 2021, the UK Information Commissioner’s Office launched a consultation on its draft international data transfer agreement and guidance for organizations on international transfers. Once finalized, the agreement will replace the existing EU Standard Contractual Clauses in the UK.
Continue Reading Update: International Data Transfer Agreement and Addendum Replace SCCs
CIPL Publishes White Paper on GDPR Enforcement Cooperation and the One-Stop-Shop
Posted on
On September 27, 2021, the Centre for Information Policy Leadership at Hunton Andrews Kurth published a white paper on the “GDPR Enforcement Cooperation and the One-Stop-Shop – Learning from the First Three Years.” …
Continue Reading CIPL Publishes White Paper on GDPR Enforcement Cooperation and the One-Stop-Shop
Belgian Council of State Considers Encryption a Sufficient Measure for U.S. Data Transfers
Posted on
Posted in European Union, International
The Belgian Council of State recently confirmed a decision of the regional Flemish Authorities to contract with an EU branch of a U.S. company using Amazon Web Services, stating that the use of U.S. cloud services in itself does not infringe on the GDPR.
Continue Reading Belgian Council of State Considers Encryption a Sufficient Measure for U.S. Data Transfers
European Commission’s New Standard Contractual Clauses: What They Mean for UK Businesses
Posted on
Posted in European Union, International
In an article originally published on Practical Law, Hunton Andrews Kurth partner Bridget Treacy discusses the European Commission’s long-awaited SCCs, including considerations for personal data transfers from the UK. This blog entry provides a link to download the article.
Continue Reading European Commission’s New Standard Contractual Clauses: What They Mean for UK Businesses
CJEU Issues Ruling on Jurisdictional Aspects of the GDPR’s One-Stop-Shop
Posted on
Posted in European Union, International
On June 15, 2021, the Court of Justice of the European Union released its judgment in case C-645/19 of Facebook Ireland Limited, Facebook Inc., Facebook Belgium BVBA v. the Belgian Data Protection Authority. We provide highlights of the case in this blog entry.
Continue Reading CJEU Issues Ruling on Jurisdictional Aspects of the GDPR’s One-Stop-Shop