Cross-Border Data Flow

On September 23, 2019, the Office of the Privacy Commissioner of Canada announced that it completed its consultation on transfers for processing and that the OPC’s current guidelines for processing personal data across borders—under which consent for transfers to data processors is not required—remain unchanged.
Continue Reading Canada’s Privacy Commissioner Ends Effort to Require Consent for Transborder Data Transfer

On August 5, 2019, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth LLP responded to the Office of the Privacy Commissioner of Canada’s (“OPC”) reframed consultation on transfers for processing. The reframed consultation replaced a previously suspended OPC consultation dealing with the same topic to which CIPL had also responded.

Continue Reading CIPL Responds to Canada’s Reframed Consultation on Transfers for Processing

On July 9, 2019, the European Data Protection Board adopted Opinion 8/2019 on the Competence of a Supervisory Authority in Case of a Change in Circumstances Relating to the Main or Single Establishment at the request of the French and the Swedish data protection authorities.
Continue Reading EDPB Publishes Opinion on the Competence of a Supervisory Authority in Change in Circumstances Relating to the Main or Single Establishment

On July 9, 2019, the hearing in the so-called Schrems II case (case C-311/18) took place at the Court of Justice of the European Union in Luxembourg. This blog entry provides highlights from the hearing, and also discusses the potential impact of the CJEU’s judgment in the case in the EU data protection landscape.
Continue Reading The Schrems Saga Continues: Schrems II Case Heard Before the CJEU

On June 2019, the Senate confirmed Keith Krach as Under Secretary of State for Economic Growth, Energy, and Environment, a role in which he will serve as the permanent ombudsperson for the EU-U.S. Privacy Shield agreement. This blog entry provides an overview.
Continue Reading Senate Confirms Keith Krach; Will Serve as Ombudsperson for EU-U.S. Privacy Shield

On June 14, 2019, the Federal Trade Commission announced that it has taken action against a number of companies that allegedly misrepresented their compliance with the EU-U.S. and Swiss-U.S. Privacy Shield frameworks and other international privacy agreements. This blog entry provides an overview of these developments.
Continue Reading FTC Takes Action Against Companies Misrepresenting Compliance with the EU-U.S. Privacy Shield and Other International Privacy Agreements