The European Commission recently issued its study on GDPR data protection certification mechanisms. The study’s objectives and key findings are outlined in this blog entry.
Continue Reading
Cross-Border Data Flow
CNIL Publishes Binding Rules on Processing Biometric Data as Workplace Access Control
Posted on
On March 28, 2019, the French data protection authority published a “Model Regulation” addressing the use of biometric systems to control access to premises, devices and apps at work.…
Continue Reading
CIPL Supports APEC’s Privacy Work at Recent APEC Meetings in Chile with International Privacy Workshop
Posted on
During the week of February 25, 2019, the Centre for Information Policy Leadership at Hunton Andrews Kurth LLP participated in the meetings of the APEC Data Privacy Subgroup and Electronic Commerce Steering Group in Santiago, Chile. CIPL enjoys formal guest status and a seat at the table at these bi-annual APEC privacy meetings.…
Continue Reading
Belgian DPA Publishes Prior Consultation Form in the Context of a DPIA
Posted on
Posted in European Union, International
The Belgian Data Protection Authority recently published on its website a form to be completed for prior consultation in the context of a data protection impact assessment.…
Continue Reading
UK House of Commons Rejects Draft Brexit Withdrawal Agreement
Posted on
On January 15, 2019, the UK House of Commons rejected the draft Brexit Withdrawal Agreement negotiated between the UK Prime Minister and the EU, and the UK ICO recently published guidance for businesses regarding the consequences of a UK exit without a deal remains relevant. This blog entry provides highlights on the guidance. …
Continue Reading
Irish DPC Issues Preliminary Guidance on Data Transfers in the Event of a “No Deal” Brexit
Posted on
On December 21, 2018, the Irish Data Protection Commission published preliminary guidance on data transfers to and from the UK in the event of a “no deal” Brexit.…
Continue Reading
Department of Commerce Updates Privacy Shield FAQs to Clarify Applicability to UK Personal Data
Posted on
Posted in European Union, International
On December 20, 2018, the Department of Commerce updated its frequently asked questions on the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks to clarify the effect of the UK’s planned withdrawal from the EU on March 29, 2019. The FAQs provide information on the steps Privacy Shield participants must take to receive personal data from the UK in reliance on the Privacy Shield after such time. …
Continue Reading
Australia and Chinese Taipei Join the APEC CBPR System
Posted on
Posted in Information Security, International
On November 23, 2018, both Australia and Chinese Taipei joined the APEC Cross-Border Privacy Rules system.…
Continue Reading
Argentina DPA Issues Guidelines on Binding Corporate Rules
Posted on
Posted in Information Security, International
The Agency of Access to Public Information (Agencia de Acceso a la Información Pública) has approved a set of guidelines for Binding Corporate Rules as a mechanism that multinational companies may use to enable the international transfer of personal data to their affiliates located in countries whose protection of personal data has not been deemed adequate by the AAIP.…
Continue Reading
EDPB Publishes Guidelines on Extraterritorial Application of the GDPR
Posted on
Posted in European Union, International
On November 23, 2018, the European Data Protection Board published its long-awaited draft guidelines on the extraterritorial application of the GDPR. This blog entry provides highlights on the Guidelines.…
Continue Reading