On October 28, 2021, the European Parliament’s Committee on Industry, Research and Energy adopted a draft directive on cybersecurity, which will broaden the scope of the existing NIS Directive to apply to “important sectors.”
Continue Reading European Parliament Adopts Draft Cybersecurity Directive
EU Member States
UK DCMS Identifies Priority Jurisdictions for UK Adequacy Recognition and Proposes New UK Information Commissioner
Posted on
On August 26, 2021, the UK Department of Culture, Media and Sport made news by publishing a document indicating its intent to begin making adequacy decisions for UK data transfers to foreign jurisdictions and by announcing its preferred candidate for the position of new UK Information Commissioner.…
Continue Reading UK DCMS Identifies Priority Jurisdictions for UK Adequacy Recognition and Proposes New UK Information Commissioner
CJEU Issues Ruling on Jurisdictional Aspects of the GDPR’s One-Stop-Shop
Posted on
Posted in European Union, International
On June 15, 2021, the Court of Justice of the European Union released its judgment in case C-645/19 of Facebook Ireland Limited, Facebook Inc., Facebook Belgium BVBA v. the Belgian Data Protection Authority. We provide highlights of the case in this blog entry.…
Continue Reading CJEU Issues Ruling on Jurisdictional Aspects of the GDPR’s One-Stop-Shop
European Commission Publishes Final Version of Updated Standard Contractual Clauses
Posted on
Posted in European Union, International
On June 4, 2021, the European Commission published the final version of the implementing decision on standard contractual clauses for transfers of personal data to third countries under the EU General Data Protection Regulation, as well as the final version of the new standard contractual clauses.…
Continue Reading European Commission Publishes Final Version of Updated Standard Contractual Clauses
EDPS Opens Investigations Following Schrems II Judgment
Posted on
Posted in European Union, Information Security
On May 27, 2021, the European Data Protection Supervisor announced that it has opened two investigations regarding (1) the use of cloud services by European Union institutions, bodies and agencies; and (2) the use of Microsoft Office 365 by the European Commission.…
Continue Reading EDPS Opens Investigations Following Schrems II Judgment
MEPs Urge European Commission to Amend Draft UK Adequacy Decision
Posted on
Posted in European Union, Information Security
On May 11, 2021, the European Parliament issued a press release requesting that the European Commission amend its draft decisions on UK adequacy to more closely align with EU court rulings and the opinion of the European Data Protection Board. The request came after the Parliament’s Civil Liberties Committee passed a resolution evaluating the Commission’s approach regarding the adequacy of the UK’s data protection regime.…
Continue Reading MEPs Urge European Commission to Amend Draft UK Adequacy Decision
Belgian Constitutional Court Annuls Data Retention Framework for Electronic Communications Data
Posted on
On April 22, 2021, the Belgian Constitutional Court annulled the framework set forth by the Law of 29 May 2016 requiring telecommunications providers to retain electronic communications data in bulk. …
Continue Reading Belgian Constitutional Court Annuls Data Retention Framework for Electronic Communications Data
European Commission Publishes Proposal for Artificial Intelligence Act
Posted on
Posted in European Union, Information Security
The European Commission has published its Proposal for a Regulation on a European approach for Artificial Intelligence. The Proposal follows a public consultation on the Commission’s White Paper on AI published in February 2020. The Commission simultaneously proposed a new Machinery Regulation, designed to ensure the safe integration of AI systems into machinery.…
Continue Reading European Commission Publishes Proposal for Artificial Intelligence Act
EDPB Adopts Opinion on Draft UK Adequacy Decision
Posted on
Posted in European Union, Information Security
The European Data Protection Board has adopted its Opinion on the draft UK adequacy decision issued by the European Commission on February 19, 2021. The EDPB’s Opinion is non-binding but will be persuasive. The adequacy decision will be formally adopted if it is approved by the EU Member States acting through the European Council. If the adequacy decision is adopted, transfers of personal data from the EU to the UK may continue without the implementation of a data transfer mechanism under the EU General Data Protection Regulation, such as Standard Contractual Clauses. …
Continue Reading EDPB Adopts Opinion on Draft UK Adequacy Decision
European Union and South Korea Complete Adequacy Talks
Posted on
On March 30, 2021, the European Commission announced the successful conclusion of the adequacy talks with the Republic of Korea.…
Continue Reading European Union and South Korea Complete Adequacy Talks