Colombia Issues Secondary Regulations to Implement Data Protection Act
On July 12, 2013, during the Centre for Information Policy Leadership’s First Friday call, José Alejandro Bermúdez Durana, Deputy Superintendent for Data Protection for Colombia’s Superintendency of...
View ArticleGerman DPAs Halt Data Transfer Approvals and Consider Suspending Transfers...
On July 24, 2013, the Conference of the German Data Protection Commissioners at both the Federal and State levels issued a press release stating that surveillance activities by foreign intelligence and...
View ArticleCouncil of the EU Considers “One-Stop-Shop” Mechanism for Data Protection...
At its meeting on October 7, 2013, the Council of the European Union voiced support for the “one-stop-shop” mechanism in the draft General Data Protection Regulation (the “Regulation”). The...
View ArticleEuropean Parliament Approves Compromise Text on Regulation
On October 21, 2013, the European Parliament approved its Compromise Text of the proposed EU General Data Protection Regulation (the “Proposed Regulation”). The approval follows months of negotiations...
View ArticleKazakhstan Enacts Data Privacy Law
On November 26, 2013, Kazakhstan’s new data privacy law, On Personal Data and Their Protection, will come into effect. The law was passed on May 21, 2013. Kazakhstan is the second country in Central...
View ArticleCommissioner Reding Calls for New European Data Protection Compact
On January 28, 2014, Data Protection Day, Vice-President of the European Commission and Commissioner for Justice Fundamental Rights and Citizenship Viviane Reding gave a speech in Brussels proposing a...
View ArticleEuropean Parliament Adopts Draft General Data Protection Regulation; Calls...
On March 12, 2014, the European Parliament formally adopted the compromise text of the proposed EU General Data Protection Regulation (the “Regulation”). The text now adopted by the Parliament is...
View ArticleArticle 29 Working Party Issues Draft Contractual Clauses for Transfers from...
On March 21, 2014, the Article 29 Working Party (the “Working Party”) issued a Working Document containing draft ad-hoc contractual clauses for transfers of personal data from data processors in the EU...
View ArticleArticle 29 Working Party Issues Statement on One-Stop-Shop Within Proposed EU...
On April 16, 2014, the Article 29 Working Party (the “Working Party”) sent a letter (the “Letter”) to Lilian Mitrou, Chair of the Working Group on Information Exchange and Data Protection (the “DAPIX”)...
View ArticleArticle 29 Working Party’s Opinion on Adequacy of Quebec’s Data Protection...
On June 23, 2014, the Article 29 Working Party (the “Working Party”) published its Opinion 7/2014 on the protection of personal data in Québec (the “Opinion”). In this Opinion, the Working Party...
View ArticleEuropean Commission Issues Cloud Service Level Agreement Standardization...
On June 26, 2014, the European Commission issued guidelines on the standardization of service level agreements for cloud services providers (the “Guidelines”). In the context of the European Cloud...
View ArticleCouncil of the European Union Proposes Risk-Based Approach to Compliance...
The Council of the European Union has published proposed revisions to the compliance obligations of data controllers and data processors included in Chapter IV of the forthcoming EU General Data...
View ArticleHunton Global Privacy Update – November 2014
On November 18, 2014, Hunton & Williams’ Global Privacy and Cybersecurity practice group hosted the latest webcast in its Hunton Global Privacy Update series. The program covered a number of...
View ArticleArticle 29 Working Party Issues Working Document Proposing Cooperation...
On November 26, 2014, the Article 29 Working Party (the “Working Party”) released a Working Document providing a cooperation procedure for issuing common opinions on whether “contractual clauses”...
View ArticleFrench Data Protection Authority Issues New Decision on Monitoring and...
In a decision published on January 6, 2015, the French data protection authority (the “CNIL”) adopted a new Simplified Norm NS 47 (the “Simplified Norm”) that addresses the processing of personal data...
View ArticleFrench Data Protection Authority Issues New Referential Regarding Seals on...
On January 13, 2015, the French Data Protection Authority (the “CNIL”) published a Referential (the “Referential”) that specifies the requirements for organizations with a data protection officer...
View ArticleIrish DPC Publishes New Cookie Guidance
On April 6, 2020, the Irish Data Protection Commission (the “DPC”) published a report summarizing the DPC’s findings following a cookie sweep of select websites across a range of sectors, as well as a...
View ArticleBelgian DPA Releases Guidance Materials and FAQs on Cookies and Other...
On April 9, 2020, the Belgian Data Protection Authority (the “Belgian DPA”) released guidance and a set of frequently asked questions (“FAQs”) regarding the use of cookies and other tracking...
View ArticlePakistan Introduces New Draft of Personal Data Protection Bill
Pakistan’s Ministry of Information Technology and Telecommunication recently introduced a new draft of Pakistan’s Personal Data Protection Bill, 2020 (the “Bill”) and launched a public consultation...
View ArticleBelgian DPA Publishes Opinions on Draft Laws for the Creation of a Database...
On May 25 and May 26, 2020 respectively, the Belgian Data Protection Authority (the “Belgian DPA”) published two opinions on draft laws introducing COVID-19-related tracking initiatives: (1) the...
View Article