On November 23, 2022, the UK government’s Department for Digital, Culture, Media & Sport announced that it had completed its assessment of South Korea’s personal data legislation, and concluded that sufficiently strong privacy laws are in place to protect UK personal data transferred to South Korea while upholding the rights and protections of UK citizens.
Continue Reading UK Finalizes South Korea Adequacy Decision

On October 4, 2022, the White House Office of Science and Technology Policy unveiled its Blueprint for an AI Bill of Rights, a non-binding set of guidelines for the design, development, and deployment of artificial intelligence systems.
Continue Reading White House Office of Science and Technology Policy Releases “Blueprint for an AI Bill of Rights”

On October 7, 2022, President Biden signed Executive Order on Enhancing Safeguards for United States Signals Intelligence Activities, which provides a new framework for legal data transfers between the European Union and the United States.
Continue Reading President Biden Issues Executive Order on New EU-U.S. Data Transfer Pact

On April 23, 2022, the European Commission announced that the European Parliament and EU Member States had reached consensus on the Digital Services Act, which establishes accountability standards for online platforms regarding illegal and harmful content.
Continue Reading European Union Reaches Political Agreement on Digital Services Act

On March 24, 2022, the European Union unveiled the final text of the Digital Markets Act that was reached following trilogue negotiations between the European Commission, European Parliament and EU Member States.
Continue Reading European Union Reached a Political Agreement on the Digital Markets Act

On August 11, 2021, the UK Information Commissioner’s Office launched a consultation on its draft international data transfer agreement and guidance for organizations on international transfers. Once finalized, the agreement will replace the existing EU Standard Contractual Clauses in the UK.
Continue Reading Update: International Data Transfer Agreement and Addendum Replace SCCs

The European Data Protection Supervisor recently issued a decision against the European Parliament in a case that resulted from a complaint submitted by certain Members of the European Parliament who alleged that the Parliament’s use of cookies violated data protection law, including requirements regarding the transfer of personal data outside of the EU.
Continue Reading EDPS Issues Decision on EU Parliament’s Cookie Violations