On December 20, 2021, the UK Information Commissioner’s Office (“ICO”) launched a public consultation on its regulatory approach. The consultation involves three separate documents – the ICO’s Regulatory Action Policy (“RAP”), Statutory Guidance on the ICO’s Regulatory Action, and Statutory Guidance on the ICO’s PECR Powers. The RAP sets forth the ICO’s risk-based approach to regulatory action and explains the factors the ICO considers before taking regulatory action, how the ICO works with other regulators, and enforces the legislation for which it is responsible. Together, the three documents illustrate how the ICO aims to enforce information rights for data subjects in the UK.
Continue Reading UK ICO Consults on Regulatory Action Policy
Risk-Based Approach
CIPL Responds to the EU Commission’s Consultation on the Draft AI Act
Posted on
On July 29, 2021, the Centre for Information Policy Leadership at Hunton Andrews Kurth submitted its response to the European Commission’s Consultation on the Draft Artificial Intelligence Act.…
Continue Reading CIPL Responds to the EU Commission’s Consultation on the Draft AI Act
CIPL Publishes White Paper on How the Legitimate Interest Ground for Processing Enables Responsible Data Use and Innovation
Posted on
CIPL recently published a white paper on How the Legitimate Interest Ground for Processing for Processing Enables Responsible Data Use and Innovation, which explains the growing importance of the legitimate interests legal basis for organizations, whether for routine or more complex and innovative data processing activities.…
Continue Reading CIPL Publishes White Paper on How the Legitimate Interest Ground for Processing Enables Responsible Data Use and Innovation
CIPL Responds to Irish DPC Consultation on Draft Regulatory Strategy
Posted on
The Centre for Information Policy Leadership at Hunton Andrews Kurth recently submitted its comments on the Irish Data Protection Commissioner’s consultation on its Draft Regulatory Strategy for 2021-2026, in which the DPC sets out its vision for the next five years. …
Continue Reading CIPL Responds to Irish DPC Consultation on Draft Regulatory Strategy
CIPL Publishes Recommendations on a Risk-Based Approach to Regulating AI
Posted on
The Centre for Information Policy Leadership at Hunton Andrews Kurth has published its paper on delivering a risk-based approach to regulating artificial intelligence. Developed in partnership with key EU experts and leaders in AI, the paper translates best practices and emerging policy trends into actionable recommendations for effective AI regulation. …
Continue Reading CIPL Publishes Recommendations on a Risk-Based Approach to Regulating AI
CIPL Submits Response to the EDPB Guidelines on Examples Regarding Data Breach Notification
Posted on
The Centre for Information Policy Leadership at Hunton Andrews Kurth has submitted its response to the European Data Protection Board consultation on draft guidelines on examples regarding data breach notification. CIPL welcomes the Guidelines which come at a time at which cyber attacks are surging as a result of the move to remote working triggered by the COVID-19 crisis, and should help organizations avoid over-reporting.…
Continue Reading CIPL Submits Response to the EDPB Guidelines on Examples Regarding Data Breach Notification
CIPL Submits Response to European Commission’s Proposal for a Regulation on European Data Governance
Posted on
On February 5, 2020, the Centre for Information Policy Leadership at Hunton Andrews Kurth submitted a response to the European Commission’s public consultation on the Commission’s Proposal for a Regulation on European Data Governance. This proposal is the first set of initiatives announced under the broader European Data Strategy. …
Continue Reading CIPL Submits Response to European Commission’s Proposal for a Regulation on European Data Governance
Brazilian Data Protection Authority Publishes Regulatory Strategy for 2021 – 2023
Posted on
On January 28, 2021, international Data Privacy Day, the newly formed Brazilian data protection authority published its regulatory strategy for 2021-2023 and work plan for 2021-2022 (in Portuguese). This post includes an overview of both strategies, as well as details about the newly formed authority.…
Continue Reading Brazilian Data Protection Authority Publishes Regulatory Strategy for 2021 – 2023
CIPL Submits Response to UK DCMS’ National Data Strategy Consultation
Posted on
On December 2, 2020, the Centre for Information Policy Leadership at Hunton Andrews Kurth submitted its response to the UK Department for Digital, Culture, Media and Sport’s UK National Data Strategy consultation. In its response, CIPL highlights several considerations for DCMS when further developing and implementing its NDS.…
Continue Reading CIPL Submits Response to UK DCMS’ National Data Strategy Consultation
ICO Launches Consultation on Its Draft Statutory Guidance
Posted on
On October 1, 2020, the UK Information Commissioner’s Office launched a public consultation on its draft Statutory Guidance, which provides an overview of the ICO’s powers and how it intends to regulate and enforce data protection legislation in the UK, including its approach to calculating fines.…
Continue Reading ICO Launches Consultation on Its Draft Statutory Guidance