The UK Information Commissioner’s Office has published guidance regarding its expectations for controllers and health professionals during the COVID-19 outbreak.
Continue Reading
Data Controller
Belgian Data Protection Authority Releases Direct Marketing Recommendation
Posted on
On February 10, 2020, the Belgian Data Protection Authority published its Recommendation on data processing activities for direct marketing purposes. The Recommendation aims to clarify the complex rules relating to processing personal data for direct marketing purposes. …
Continue Reading
CNIL Publishes Draft Recommendations on How to Get Users’ Consent for Cookies
Posted on
Posted in European Union, Online Privacy
On January 14, 2020, the French Data Protection Authority published its draft recommendations on the practical modalities to get users’ consent to store or read non-essential cookies and similar technologies on their devices. …
Continue Reading
EDPB Publishes Final Version of Guidelines on the GDPR’s Territorial Scope
Posted on
Posted in European Union, International
The European Data Protection Board has adopted its final guidelines on the territorial scope of the GDPR, taking into account the feedback it received during the public consultation of its draft guidelines published on November 23, 2018.…
Continue Reading
EDPB Publishes Guidelines on Data Protection by Design and by Default
Posted on
Posted in European Union, International
On November 13, 2019, the European Data Protection Board published its draft guidelines 4/2019 on the obligation of Data Protection by Design and by Default set out under Article 25 of the EU General Data Protection Regulation. …
Continue Reading
China Issues Updated Draft Amendments to Information Security Technology Specification
Posted on
Posted in Information Security, International
On October 22, 2019, the drafting group of China’s National Information Security Standardization Technology Committee released a third draft amendment to the Information Security Technology – Personal Information Security Specification.…
Continue Reading
CNIL Updates FAQs to Prepare for a No-deal Brexit
Posted on
On September 10, 2019, the French data protection authority updated its existing set of questions and answers (“FAQs”) on the impact of a no-deal Brexit on data transfers from the EU to the UK and discussed how controllers should prepare.…
Continue Reading
CIPL Submits Comments to the EDPB’s Draft Guidelines on Data Processing Through Video Devices
Posted on
On September 6, 2019, the Centre for Information Policy Leadership (“CIPL”) at Hunton Andrews Kurth LLP submitted formal comments to the European Data Protection Board (the “EDPB”) on its draft guidelines on processing of personal data through video devices (the “Guidelines”). The Guidelines were adopted on July 10, 2019, for public consultation.
…
Continue Reading
Cayman Islands Data Protection Law Goes into Force This Month
Posted on
Posted in International
The Cayman Islands Data Protection Law, 2017, which was published in June 2017, will go into force on September 30, 2019. The DPL includes requirements for the protection of personal data and is centered upon eight data protection principles.…
Continue Reading
Belgian DPA to Further Investigate Data Breach Affecting Temporary Employment Agency’s Employee Fingerprints
Posted on
On August 21, 2019, the Belgian Data Protection Authority published a press release informing of its intention to further investigate a data breach that was notified by Adecco Belgium, a temporary employment agency.…
Continue Reading