The Centre for Information Policy Leadership at Hunton Andrews Kurth published a paper on the Draft ePrivacy Regulation, in the context of the Trilogue Discussions between the EU Commission, EU Council and EU Parliament.
Continue Reading CIPL Publishes Paper on the Draft ePrivacy Regulation to Inform Current Trilogue Discussions

On September 27, 2021, the European Data Protection Board announced that it had adopted an Opinion on the European Commission’s draft adequacy decision for the Republic of Korea. In the Opinion, the EDPB concluded that there are key areas of alignment between the EU and Korean data protection frameworks.
Continue Reading EDPB Adopts Opinion on Draft South Korea Adequacy Decision

On September 10, 2021, the UK Government Department for Digital, Culture, Media & Sport launched a consultation on its proposed reforms to the UK data protection regime to reflect DCMS’s effort to deliver on Mission 2 of the National Data Strategy. The consultation will close on November 19, 2021, and CIPL will consult with members to prepare a formal response to the consultation.
Continue Reading DCMS Consults on National Data Strategy

On August 11, 2021, the UK Information Commissioner’s Office launched a consultation on its draft international data transfer agreement and guidance for organizations on international transfers. Once finalized, the agreement will replace the existing EU Standard Contractual Clauses in the UK.
Continue Reading ICO Consultation on International Data Transfer Agreement to Replace SCCs

On June 28, 2021, the European Commission adopted two adequacy decisions for the United Kingdom, one under the GDPR and another under the Law Enforcement Directive. Their adoption means organizations in the EU can continue to transfer personal data to organizations in the UK without restriction, and will not need to rely upon data transfer mechanisms, such as the SCCs, to ensure an adequate level of protection.
Continue Reading European Commission Adopts UK Adequacy Decision

Earlier this month, the Belgian Data Protection Authority released its 2020 Annual Report, which showed the Belgian DPA’s focus on the supervision of initiatives to fight the COVID-19 pandemic involving data processing, while not losing sight of its other priorities outlined in its Strategic Plan 2020-2025.
Continue Reading Belgian Data Protection Authority Releases 2020 Annual Report

On June 4, 2021, the European Commission published the final version of the implementing decision on standard contractual clauses for transfers of personal data to third countries under the EU General Data Protection Regulation, as well as the final version of the new standard contractual clauses.
Continue Reading European Commission Publishes Final Version of Updated Standard Contractual Clauses

On May 11, 2021, the European Parliament issued a press release requesting that the European Commission amend its draft decisions on UK adequacy to more closely align with EU court rulings and the opinion of the European Data Protection Board. The request came after the Parliament’s Civil Liberties Committee passed a resolution evaluating the Commission’s approach regarding the adequacy of the UK’s data protection regime.
Continue Reading MEPs Urge European Commission to Amend Draft UK Adequacy Decision