On June 3, 2022, House Energy and Commerce Chair Rep. Frank Pallone, Ranking Member Rep. Cathy McMorris Rodgers and Senate Commerce, Science and Transportation Committee Ranking Member Sen. Roger Wicker released a new comprehensive federal privacy bill, the American Data Privacy and Protection Act.
Continue Reading House and Senate Release a Bipartisan U.S. Federal Privacy Bill
Data Transfer
EDPB Adopts Statement on the Announcement of an Enhanced EU-U.S. Privacy Shield
Posted on
On March 7, 2022, the European Data Protection Board released a statement on the announcement of a new Trans-Atlantic Data Privacy Framework.
Continue Reading EDPB Adopts Statement on the Announcement of an Enhanced EU-U.S. Privacy Shield
European Commission and United States Announce Agreement in Principle on Trans-Atlantic Data Privacy Framework
Posted on
On March 25, 2022, European Commissioner for Justice Didier Reynders and U.S. Secretary of Commerce Gina Raimondo issued a joint statement announcing that the negotiations on an enhanced EU-U.S. Privacy Shield framework will intensify. In addition, in a speech given in Brussels, the President of the European Commission, Ursula von der Leyden, and U.S. President Biden indicated that they have found an agreement on data flows between the EU and U.S.
Continue Reading European Commission and United States Announce Agreement in Principle on Trans-Atlantic Data Privacy Framework
EDPB Adopts Guidelines on Codes of Conduct as Tools for Transfers
Posted on
Posted in European Union, International
On February 22, 2022, the European Data Protection Board adopted its final Guidelines 04/2021 on Codes of Conduct as tools for transfers, following a public consultation that took place in 2021.
Continue Reading EDPB Adopts Guidelines on Codes of Conduct as Tools for Transfers
Google to Launch Google Analytics 4 in an Attempt to Address EU Privacy Concerns
Posted on
On March 16, 2022, Google announced the launch of its new analytics solution, Google Analytics 4, which will no longer store IP address.
Continue Reading Google to Launch Google Analytics 4 in an Attempt to Address EU Privacy Concerns
European Commission Publishes Draft Data Act
Posted on
Posted in European Union, International
On February 23, 2022, the European Commission adopted a Proposal for a Regulation on harmonized rules on fair access to and use of data, also known as the Data Act. This blog entry provides key highlights on the Data Act.
Continue Reading European Commission Publishes Draft Data Act
French CNIL Rules EU-U.S. Data Transfers Through the Use of Analytics Cookie to be Unlawful
Posted on
On February 10, 2022, the French Data Protection Authority ruled that transfers of personal data from the EU to the U.S. through the use of an analytics cookie to be unlawful.
Continue Reading French CNIL Rules EU-U.S. Data Transfers Through the Use of Analytics Cookie to be Unlawful
Update: International Data Transfer Agreement and Addendum Replace SCCs
Posted on
On August 11, 2021, the UK Information Commissioner’s Office launched a consultation on its draft international data transfer agreement and guidance for organizations on international transfers. Once finalized, the agreement will replace the existing EU Standard Contractual Clauses in the UK.
Continue Reading Update: International Data Transfer Agreement and Addendum Replace SCCs
Austrian DPA Finds Data Transfers Resulting from Analytics Cookie Use to Be in Violation of GDPR Data Transfer Requirements
Posted on
The Austrian data protection authority recently published a decision finding that the use of Google Analytics cookies violates both Chapter V of the GDPR, which establishes the rules on international data transfers, and the Schrems II judgment of the Court of Justice of the European Union.
Continue Reading Austrian DPA Finds Data Transfers Resulting from Analytics Cookie Use to Be in Violation of GDPR Data Transfer Requirements
CNIL Published Guidelines on Re-Use of Personal Data by Data Processors
Posted on
Posted in European Union, International
The CNIL recently published guidelines on the re-use of personal data by data processors for their own purposes (such as product improvement or development of new products and services) under the GDPR. We have outlined key takeaways from the Guidelines in this blog post.
Continue Reading CNIL Published Guidelines on Re-Use of Personal Data by Data Processors