On January 15, 2020, the European Data Protection Board and European Data Protection Supervisor adopted joint opinions on the draft Standard Contractual Clauses released by the European Commission in November 2020, both for international transfers and for controller-processor relationships within the EEA.
Continue Reading EDPB and EDPS Adopt Joint Opinions on Draft SCCs
Data Processor
EDPB Publishes Its 2021-2023 Strategy
On December 21, 2020, the European Data Protection Board released its 2021-2023 Strategy. This post reviews the four main pillars of the EDPB strategic objectives through 2023 and key actions to help achieve those objectives.…
Continue Reading EDPB Publishes Its 2021-2023 Strategy
Irish DPA Issues €450,000 Fine Against Twitter for Data Breach Following EDPB Decision under the GDPR Consistency Mechanism
On December 15, 2020, the Irish Data Protection Commission announced its fine of 450,000 Euros against Twitter International Company, following its investigation into a breach resulting from a bug in Twitter’s design. The fine is the largest issued by the Irish DPC under the GDPR to date and is also its first against a U.S.-based organization. …
Continue Reading Irish DPA Issues €450,000 Fine Against Twitter for Data Breach Following EDPB Decision under the GDPR Consistency Mechanism
CIPL Submits Response to European Commission’s Standard Contractual Clauses for the Transfer of Personal Data to Third Countries Pursuant to the GDPR
On December 10, 2020, the Centre for Information Policy Leadership at Hunton Andrews Kurth submitted its response to the European Commission’s invitation for comments on its draft implementing decision on SCCs to be used for the transfer of personal data from a controller or processor subject to the GDPR to a controller or processor not subject to the GDPR. …
Continue Reading CIPL Submits Response to European Commission’s Standard Contractual Clauses for the Transfer of Personal Data to Third Countries Pursuant to the GDPR
Hunton Attorneys Publish Guidance Note on Changes to China’s Data Protection Laws
On November 6, 2020, Hunton attorneys Dora Luo and Yanchen Wang published a new Guidance Note for OneTrust DataGuidance on China’s data protection laws. The Guidance Note examines recent changes to China’s emerging cybersecurity and personal information protection framework.…
Continue Reading Hunton Attorneys Publish Guidance Note on Changes to China’s Data Protection Laws
CIPL Submits Response to European Commission’s Article 28 Standard Contractual Clauses
On December 10, 2020, the Centre for Information Policy Leadership at Hunton Andrews Kurth submitted its response to the European Commission’s invitation for comments on its draft implementing decision on standard contractual clauses between controllers and processors for purposes of Article 28 of the GDPR. …
Continue Reading CIPL Submits Response to European Commission’s Article 28 Standard Contractual Clauses
Belgian DPA to Take Down Websites Infringing GDPR
On November 26, 2020, the Belgian Data Protection Authority signed a cooperation agreement with DNS Belgium. The purpose of the cooperation agreement is to allow DNS Belgium to suspend “.be” websites that are linked to infringements of the GDPR.…
Continue Reading Belgian DPA to Take Down Websites Infringing GDPR
European Commission Publishes Draft Data Governance Act
On November 25, 2020, the European Commission published its Proposal for a Regulation on European Data Governance. The Data Governance Act is part of a set of measures announced in the 2020 European Strategy for Data, which is aimed at putting the EU at the forefront of the data empowered society.…
Continue Reading European Commission Publishes Draft Data Governance Act
European Commission Releases Draft Standard Contractual Clauses for Article 28 Data Processing Agreements
On November 12, 2020, somewhat in the shadow of the new standard contractual clauses for data transfers to recipients outside the European Economic Area, the European Commission also adopted draft standard contractual clauses to be used between controllers and processors in the EEA. …
Continue Reading European Commission Releases Draft Standard Contractual Clauses for Article 28 Data Processing Agreements
European Commission Publishes Draft of New Standard Contractual Clauses
On November 12, 2020, the European Commission published a draft implementing decision on standard contractual clauses for the transfer of personal data to third countries pursuant to the GDPR, along with its draft set of new standard contractual clauses. This blog entry provides key takeaways on the draft decision.…
Continue Reading European Commission Publishes Draft of New Standard Contractual Clauses