On December 10, 2020, the Centre for Information Policy Leadership at Hunton Andrews Kurth submitted its response to the European Commission’s invitation for comments on its draft implementing decision on SCCs to be used for the transfer of personal data from a controller or processor subject to the GDPR to a controller or processor not subject to the GDPR.
Continue Reading CIPL Submits Response to European Commission’s Standard Contractual Clauses for the Transfer of Personal Data to Third Countries Pursuant to the GDPR

On December 10, 2020, the Centre for Information Policy Leadership at Hunton Andrews Kurth submitted its response to the European Commission’s invitation for comments on its draft implementing decision on standard contractual clauses between controllers and processors for purposes of Article 28 of the GDPR.
Continue Reading CIPL Submits Response to European Commission’s Article 28 Standard Contractual Clauses

On November 25, 2020, the European Commission published its Proposal for a Regulation on European Data Governance. The Data Governance Act is part of a set of measures announced in the 2020 European Strategy for Data, which is aimed at putting the EU at the forefront of the data empowered society.
Continue Reading European Commission Publishes Draft Data Governance Act

On November 12, 2020, somewhat in the shadow of the new standard contractual clauses for data transfers to recipients outside the European Economic Area, the European Commission also adopted draft standard contractual clauses to be used between controllers and processors in the EEA.
Continue Reading European Commission Releases Draft Standard Contractual Clauses for Article 28 Data Processing Agreements

On November 12, 2020, the European Commission published a draft implementing decision on standard contractual clauses for the transfer of personal data to third countries pursuant to the GDPR, along with its draft set of new standard contractual clauses. This blog entry provides key takeaways on the draft decision.
Continue Reading European Commission Publishes Draft of New Standard Contractual Clauses

On October 29, 2020, the non-governmental organization co-founded by privacy activist Max Schrems, None of Your Business, announced it can now file representative actions and claim damages on behalf of consumers for violations of various laws regarding consumer protection (including data protection law) in Belgium.
Continue Reading NOYB Approved to File Class Actions and Claim Damages in Front of Belgian Courts

On October 6, 2020, the Court of Justice of the European Union handed down Grand Chamber judgments determining that the ePrivacy Directive does not allow for EU Member States to adopt legislation intended to restrict the scope of its confidentiality obligations unless they comply with the general principles of EU law.
Continue Reading CJEU Restricts Indiscriminate Access to Electronic Communications for National Security Purposes