EU Regulations

EUROPE: e-Privacy Regulation – changes regarding electronic communications and digital marketing

Since the European Commission unveiled a proposal for an e-Privacy Regulation in January 2017, this new piece of legislation, aiming to adapt rules on electronic communications and cookies, has undergone many iterations. The European Parliament has left its version untouched since October 2017, and in the meantime the Council of the EU has regularly published …

EUROPE: e-Privacy Regulation – changes regarding electronic communications and digital marketing Read More »

Commerce to Begin Accepting Swiss-US Privacy Shield Applications in a Month

By Michelle Anderson As we noted in our January blog post Swiss-US Privacy Shield Adopted, Aligns with EU-US Privacy Shield, the Department of Commerce will begin accepting self-certifications to the Swiss-US Privacy Shield on April 12, 2017. In response to frequently asked questions, Commerce provides guidance on how to self-certify: Companies already certified under the EU-US Privacy Shield: …

Commerce to Begin Accepting Swiss-US Privacy Shield Applications in a Month Read More »

Data protection laws and AI: What can we learn from the GDPR?

Written by Giangiacomo Olivi Connected devices that exchange substantial volumes of data come with some obvious data protection concerns. Such concerns increase when dealing with artificial intelligence or other devices/robots that autonomously collect large amounts of information and learn though experience. Although there are not (yet) specific regulations on data protection and artificial intelligence (AI), certain …

Data protection laws and AI: What can we learn from the GDPR? Read More »

EUROPE: First GDPR Guidance published by Article 29 WP

The Article 29 Working Party (‘WP29’) has issued its first guidance on GDPR topics. This guidance (including FAQs) relates to: the right to Data Portability; Data Protection Officers (DPO); and the Lead Supervisory Authority. Whilst WP29 announced that more opinions and guidance will follow – for example, guidelines on Data Protection Impact Assessments and Certification …

EUROPE: First GDPR Guidance published by Article 29 WP Read More »

EUROPE: ECJ – Dynamic IP addresses may constitute personal data

By Jan Pohle and Jan Spittka In its landmark decision in the case Breyer v. Federal Republic of Germany (decision dated 19 October 2016, case number C-582/14), the European Court of Justice (ECJ) not only ended the long and tricky debate whether dynamic IP addresses constitute personal data even if the data controller processing the …

EUROPE: ECJ – Dynamic IP addresses may constitute personal data Read More »

Ground-breaking European Court Decision – US Safe Harbor declared invalid

On October 6th, in a ground-breaking Decision, the Court of Justice of the European Union (CJEU) declared the US Safe Harbor scheme to be invalid, as well as confirming that individuals have the right to challenge any similar schemes that may be established by the European Commission through their national data protection authorities. The US Safe Harbor …

Ground-breaking European Court Decision – US Safe Harbor declared invalid Read More »

EU Proposes New Data Protection Law — Potentially Significant Implications for US Companies Doing Business in the EU

by Patrick Van Eecke, Cameron Craig and Jim Halpert Viviane Reding, European Commission Vice-President and Commissioner responsible for justice, fundamental rights and citizenship, has announced the long-awaited Proposal for a new Data Protection Regulation. The Proposal, announced December 6, has now entered into inter-service consultation with other Commission Directorates-General, after which the text will be considered by the Parliament …

EU Proposes New Data Protection Law — Potentially Significant Implications for US Companies Doing Business in the EU Read More »