The Austrian data protection authority recently published a decision finding that the use of Google Analytics cookies violates both Chapter V of the GDPR, which establishes the rules on international data transfers, and the Schrems II judgment of the Court of Justice of the European Union.
Continue Reading Austrian DPA Finds Data Transfers Resulting from Analytics Cookie Use to Be in Violation of GDPR Data Transfer Requirements
GDPR
CNIL Published Guidelines on Re-Use of Personal Data by Data Processors
Posted on
Posted in European Union, International
The CNIL recently published guidelines on the re-use of personal data by data processors for their own purposes (such as product improvement or development of new products and services) under the GDPR. We have outlined key takeaways from the Guidelines in this blog post.…
Continue Reading CNIL Published Guidelines on Re-Use of Personal Data by Data Processors
CNIL Fines Big Tech Companies 210 Million Euros for Cookie Violations
Posted on
On December 31, 2021, the French Data Protection Authority (the “CNIL”) imposed a €150,000,000 fine on Google and a €60,000,000 fine on Facebook (now Meta) for violations of French rules on the use of cookies.…
Continue Reading CNIL Fines Big Tech Companies 210 Million Euros for Cookie Violations
European Commission Defends Irish Data Protection Commissioner
Posted on
Posted in European Union, International
In a letter addressed to certain members of the European Parliament, European Commissioner for Justice Reynders refuted some of the criticism that has been raised against the Irish Data Protection Commissioner. This blog entry provides highlights on the Commissioner’s response. …
Continue Reading European Commission Defends Irish Data Protection Commissioner
CIPL Submits Comments to UK DCMS Consultation on UK Data Reform
Posted on
Posted in Centre for Information Policy Leadership
The Centre for Information Policy Leadership at Hunton Andrews Kurth submitted a response to the UK Department for Digital, Culture, Media & Sport on its Consultation on Reforms to the Data Protection Regime. This blog entry reflects key takeaways from the response.…
Continue Reading CIPL Submits Comments to UK DCMS Consultation on UK Data Reform
CIPL Publishes White Paper on the Interplay Between the Draft EU Digital Markets Act and the GDPR
Posted on
The Centre for Information Policy Leadership at Hunton Andrews Kurth recently published a white paper on “Bridging the DMA and the GDPR – Comments by the Centre for Information Policy Leadership on the Data Protection Implications of the Draft Digital Markets Act.” This blog entry provides highlights on the paper.…
Continue Reading CIPL Publishes White Paper on the Interplay Between the Draft EU Digital Markets Act and the GDPR
The EDPB Issues Guidelines Clarifying What Constitutes an International Data Transfer Under the GDPR
Posted on
Posted in European Union, International
On November 19, 2021, the European Data Protection Board published its draft Guidelines 05/2021 on the interplay between the application of Article 3 of the GDPR, which sets forth the GDPR’s territorial scope, and the GDPR’s provisions on international data transfers.…
Continue Reading The EDPB Issues Guidelines Clarifying What Constitutes an International Data Transfer Under the GDPR
Belgian DPA Expected to Rule that IAB Europe’s Cookie Consent Framework Violates the GDPR
Posted on
On November 5, 2021, IAB Europe announced that, in the coming weeks, the Belgian Data Protection Authority plans to share with other data protection authorities a draft ruling on the IAB EU Transparency & Consent Framework. …
Continue Reading Belgian DPA Expected to Rule that IAB Europe’s Cookie Consent Framework Violates the GDPR
Lloyd Court Says No to Class Action-Style Lawsuits in the UK
Posted on
Posted in Enforcement, International
On November 10, 2021, the UK Supreme Court issued its long-awaited judgment in the Lloyd v Google case. The decision is expected to make it difficult in practice for a future class action lawsuit that is brought on behalf of a class of individuals who have not actively opted in to being represented by the lead claimant to proceed under UK law.…
Continue Reading Lloyd Court Says No to Class Action-Style Lawsuits in the UK
EDPB Adopts Guidelines on Restrictions on Data Subject Rights Under GDPR
Posted on
Posted in European Union, International
The European Data Protection Board recently adopted Guidelines 10/2020 on restrictions under Article 23 of the EU General Data Protection Regulation following public consultation. This blog entry provides highlights on the Guidelines. …
Continue Reading EDPB Adopts Guidelines on Restrictions on Data Subject Rights Under GDPR