On February 25, 2019, the European Data Protection Board issued a statement regarding the transfer of personal data from Europe to the U.S. Internal Revenue Service for purposes of the U.S. Foreign Account Tax Compliance Act.
Continue Reading
European Data Protection Board
Belgian DPA Publishes Updated List of Processing Activities Requiring DPIA
Posted on
The Belgian Data Protection Authority recently published the updated and final list of the types of processing activities which require a data protection impact assessment.…
Continue Reading
CNIL Publishes FAQs to Prepare for a No-Deal Brexit
Posted on
Posted in European Union, International
On February 20, 2019, the French data protection authority published a set of questions and answers to specify the CNIL’s recommendations and steps that organizations should take to prepare for a no-deal Brexit.…
Continue Reading
EDPB Releases Two-Year Work Program
Posted on
Posted in European Union, International
On February 12, 2019, the European Data Protection Board released its work program for 2019 and 2020. This blog entry provides highlights on the work program’s topic areas. …
Continue Reading
EDPB Reiterates the Need to Address Post-Brexit Data Transfers, Including BCRs
Posted on
At its plenary meeting today in Brussels, the European Data Protection Board adopted an Information Note on Data Transfers under the GDPR in the Event of a No-Deal Brexit and an Information Note on BCRs for Companies Which Have ICO as BCR Lead Supervisory Authority.…
Continue Reading
EDPB Releases Opinion on Interplay Between the Clinical Trial Regulation and the GDPR
Posted on
On January 23, 2019, the European Data Protection Board released an opinion on the interplay between the European Clinical Trials Regulation and the GDPR.…
Continue Reading
European Data Protection Board Issues Privacy Shield Report
Posted on
On January 22, 2019, the European Data Protection Board issued a report on the Second Annual Review of the EU-U.S. Privacy Shield. This blog entry provides highlights on the Report.…
Continue Reading
European Commission Adopts Japan Adequacy Decision
Posted on
Posted in Information Security, International
On January 23, 2019, the European Commission announced that it has adopted its adequacy decision on Japan. According to the announcement, Japan has adopted an equivalent decision and the adequacy arrangement is applicable with immediate effect.…
Continue Reading
CNIL Fines Google €50 Million for Alleged GDPR Violations
Posted on
On January 21, 2019, the CNIL imposed a fine of €50 million on Google LLC under the GDPR, its first fine under the GDPR and the highest fine imposed by a supervisory authority within the EU under the GDPR to date.…
Continue Reading
CIPL Submits Comments to EDPB’s Draft Guidelines on the Territorial Scope of the GDPR
Posted on
On January 18, 2019, the Centre for Information Policy Leadership at Hunton Andrews Kurth LLP submitted formal comments to the European Data Protection Board on its draft guidelines on the territorial scope of the GDPR.…
Continue Reading