On March 25, 2022, European Commissioner for Justice Didier Reynders and U.S. Secretary of Commerce Gina Raimondo issued a joint statement announcing that the negotiations on an enhanced EU-U.S. Privacy Shield framework will intensify. In addition, in a speech given in Brussels, the President of the European Commission, Ursula von der Leyden, and U.S. President Biden indicated that they have found an agreement on data flows between the EU and U.S.
Continue Reading European Commission and United States Announce Agreement in Principle on Trans-Atlantic Data Privacy Framework
Data Transfer
EDPB Adopts Guidelines on Codes of Conduct as Tools for Transfers
Posted on
Posted in European Union, International
On February 22, 2022, the European Data Protection Board adopted its final Guidelines 04/2021 on Codes of Conduct as tools for transfers, following a public consultation that took place in 2021.
Continue Reading EDPB Adopts Guidelines on Codes of Conduct as Tools for Transfers
Google to Launch Google Analytics 4 in an Attempt to Address EU Privacy Concerns
Posted on
On March 16, 2022, Google announced the launch of its new analytics solution, Google Analytics 4, which will no longer store IP address.
Continue Reading Google to Launch Google Analytics 4 in an Attempt to Address EU Privacy Concerns
European Commission Publishes Draft Data Act
Posted on
Posted in European Union, International
On February 23, 2022, the European Commission adopted a Proposal for a Regulation on harmonized rules on fair access to and use of data, also known as the Data Act. This blog entry provides key highlights on the Data Act.
Continue Reading European Commission Publishes Draft Data Act
French CNIL Rules EU-U.S. Data Transfers Through the Use of Analytics Cookie to be Unlawful
Posted on
On February 10, 2022, the French Data Protection Authority ruled that transfers of personal data from the EU to the U.S. through the use of an analytics cookie to be unlawful.
Continue Reading French CNIL Rules EU-U.S. Data Transfers Through the Use of Analytics Cookie to be Unlawful
Update: International Data Transfer Agreement and Addendum Replace SCCs
Posted on
On August 11, 2021, the UK Information Commissioner’s Office launched a consultation on its draft international data transfer agreement and guidance for organizations on international transfers. Once finalized, the agreement will replace the existing EU Standard Contractual Clauses in the UK.
Continue Reading Update: International Data Transfer Agreement and Addendum Replace SCCs
Austrian DPA Finds Data Transfers Resulting from Analytics Cookie Use to Be in Violation of GDPR Data Transfer Requirements
Posted on
The Austrian data protection authority recently published a decision finding that the use of Google Analytics cookies violates both Chapter V of the GDPR, which establishes the rules on international data transfers, and the Schrems II judgment of the Court of Justice of the European Union.
Continue Reading Austrian DPA Finds Data Transfers Resulting from Analytics Cookie Use to Be in Violation of GDPR Data Transfer Requirements
CNIL Published Guidelines on Re-Use of Personal Data by Data Processors
Posted on
Posted in European Union, International
The CNIL recently published guidelines on the re-use of personal data by data processors for their own purposes (such as product improvement or development of new products and services) under the GDPR. We have outlined key takeaways from the Guidelines in this blog post.
Continue Reading CNIL Published Guidelines on Re-Use of Personal Data by Data Processors
EDPS Issues Decision on EU Parliament’s Cookie Violations
Posted on
Posted in European Union, International
The European Data Protection Supervisor recently issued a decision against the European Parliament in a case that resulted from a complaint submitted by certain Members of the European Parliament who alleged that the Parliament’s use of cookies violated data protection law, including requirements regarding the transfer of personal data outside of the EU. …
Continue Reading EDPS Issues Decision on EU Parliament’s Cookie Violations
European Commission Adopts South Korea Adequacy Decision
Posted on
On December 21, 2021, the European Commission announced that it had adopted its adequacy decision on the Republic of Korea. The adequacy decision allows for the free flow of personal data between the EU and Korea, without any further need for authorization or additional transfer tool. The adequacy decision also covers transfers of personal data between public authorities. …
Continue Reading European Commission Adopts South Korea Adequacy Decision