On March 21, 2019, Advocate General Maciej Szpunar of the Court of Justice of the European Union issued an Opinion in the Case C-673/17 of Planet49 GmbH v Bundesverband der Verbraucherzentralen und Verbraucherverbände – Verbraucherzentrale Bundesverband e.V.
Continue Reading Advocate General Finds Cookie Consent Must Be Active and Separate
EU Data Protection Directive
Advocate General Finds Search Engine Operators May Limit the Scope of Right to Be Forgotten to the EU
Posted on
Posted in European Union, International
On January 10, 2019, Advocate General Szpunar of the Court of Justice of the European Union issued an Opinion in the case of Google v. CNIL, which is currently pending before the CJEU. In its Opinion, the Advocate General provided his views concerning the territorial scope of the right to be forgotten under the EU Data Protection Directive.
Continue Reading Advocate General Finds Search Engine Operators May Limit the Scope of Right to Be Forgotten to the EU
CNIL Fines Uber for Data Security Failure Related to 2016 Data Breach
Posted on
On December 20, 2018, the CNIL announced that it imposed a fine of €400,000 on Uber France SAS for failure to implement some basic security measures which resulted in the 2016 Uber data breach.
Continue Reading CNIL Fines Uber for Data Security Failure Related to 2016 Data Breach
Luxembourg DPA Publishes Data Breach Reporting Form
Posted on
On February 12, 2018, the Luxembourg data protection authority published on its website a form to be used for the purpose of compliance with data breach notification requirements applicable under the EU General Data Protection Regulation.
Continue Reading Luxembourg DPA Publishes Data Breach Reporting Form
CIPL Submits Comments to Article 29 WP’s Proposed Guidelines on Consent
Posted on
On January 29, 2018, the Centre for Information Policy Leadership at Hunton & Williams LLP submitted formal comments to the Article 29 Working Party on its Guidelines on Consent. The Guidelines were adopted by the Working Party on November 28, 2017, for public consultation. …
Continue Reading CIPL Submits Comments to Article 29 WP’s Proposed Guidelines on Consent
Advocate General Rejects Facebook’s Claim of Sole Irish Jurisdiction in EU
Posted on
On October 24, 2017, an opinion issued by the EU’s Advocate General Bot rejected Facebook’s assertion that its EU data processing activities fall solely under the jurisdiction of the Irish Data Protection Commissioner. The opinion relates to the CJEU case C-210/16, under which the German courts sought to clarify whether the DPA in the German state of Schleswig-Holstein could take action against Facebook regarding its use of web tracking technologies on a German education provider’s fan page without first providing notice. …
Continue Reading Advocate General Rejects Facebook’s Claim of Sole Irish Jurisdiction in EU
UK Government Introduces Draft Data Protection Bill to Parliament
Posted on
Posted in European Union, International
On September 14, 2017, the UK Government introduced a new Data Protection Bill to Parliament, which is intended to replace the UK’s existing Data Protection Act 1998 and enshrine the GDPR into UK law once the UK has left the European Union.
Continue Reading UK Government Introduces Draft Data Protection Bill to Parliament
Article 29 Working Party Releases Opinion on Data Processing at Work
Posted on
The Article 29 Working Party issued an Opinion on data processing at work, which complements the Working Party’s previous guidance on the processing of personal data in the employment context and on the surveillance of electronic communications in the workplace. This blog entry provides highlights on the Opinion.
Continue Reading Article 29 Working Party Releases Opinion on Data Processing at Work
Rosemary Jay Presents at UK House of Lords Sub-Committee Meeting
Posted on
On March 1, 2017, Hunton & Williams senior consultant attorney Rosemary Jay presented evidence on the data protection reform package and the impact of Brexit to the UK Parliament’s House of Lords EU Home Affairs Sub-Committee meeting. …
Continue Reading Rosemary Jay Presents at UK House of Lords Sub-Committee Meeting
Final Rules for the Data Privacy Act Published in the Philippines
Posted on
Recently, the National Privacy Commission of the Philippines published the final text of its Implementing Rules and Regulations of Republic Act No. 10173, known as the Data Privacy Act of 2012. The IRR has a promulgation date of August 24, 2016, and went into effect 15 days after the publication in the official Gazette. …
Continue Reading Final Rules for the Data Privacy Act Published in the Philippines