Giovanni Buttarelli, the European Data Protection Supervisor (EDPS), recently announced the formation of a new external Ethics Board that will do a deep dive into the complex ethical issues that surround the use of personal data in the “big data” economy. (See press release and full opinion links here.) The EDPS is particularly concerned… Continue Reading
EU Data Protection Regulation
Subscribe to EU Data Protection Regulation RSS FeedPrivacy Monday - August 17, 2015: Three Bytes for End of Summer
Posted in Cybersecurity, Data Breach, EU Data Protection Regulation, Events and Webinars, Federal Trade Commission, HIPAA/HITECHIt’s Privacy Monday again - and summer is winding down. Here are three bytes of privacy/security information to start your week: 1. House Committee Releases HHS Breach Investigation If you are subject to HIPAA and the oversight of the Department of Health and Human Services (HHS), schadenfreude will probably best describe your reaction. A report… Continue Reading
EU Data Protection Regulation – Did you know there’s an app for that?
Posted in EU Data Protection Regulation, European Union, LegislationAs EU data protection watchers know, the draft General Data Protection Regulation (which has been around long enough to be universally referred to by its acronym, GDPR) exists in three major versions, with a fourth version recently released by the office of the European Data Protection Supervisor (EDPS). The EDPS is the EU’s own internal… Continue Reading
Privacy Monday - May 4, 2015: Shaping Up — Update on the EU’s Draft General Data Protection Regulation
Posted in Data Breach, Data Breach Notification, EU Data Protection Regulation, European Union, Events and Webinars, UncategorizedOn this Privacy Monday, we can definitely say that the long winter of our discontent (at least for some of our readers) is over. Happy spring! In case you missed it, last Wednesday we presented the fourth in our Wednesday Webinar series on the progress of the EU draft Data Protection Regulation and what we… Continue Reading
WEBINAR: Compliance with EU Data Protection Laws for US Companies
Posted in EU Data Protection Regulation, Events and Webinars, Privacy RegulationRegister now for the fourth installment in our monthly 2015 Privacy Wednesday webinar series, coming up next Wednesday, April 29th at 1:00 pm ET. Susan Foster, a CIPP/E in Mintz’s London office, will consider issues faced by US companies who do business in Europe or simply interact with European customers. We will look at how to… Continue Reading
One Less Carrot for Business: Council of European Union Limits the “One-Stop Shop” Mechanism in the Draft Data Protection Regulation
Posted in EU Data Protection Regulation, European Union, Legislation, Privacy RegulationThe draft Data Protection Regulation doesn’t offer many carrots to business – and a recent announcement by the Council of the European Union takes away one of the biggest carrots, the “One-Stop Shop” mechanism. The One-Stop Shop refers to the principle that businesses would have to deal with just a single national data protection authority instead of… Continue Reading
On the First Day of Privacy, the EU Gave to Santa……
Posted in 12 Days of Privacy, EU Data Protection Regulation, European UnionWelcome to our series, “The 12 Days of Privacy” as we look to “gifts” that may be received this season and some of the big issues ahead …. Written by Susan Foster (LONDON) Does Santa Claus have to comply with EU Data Protection laws? If your company doesn’t have an… Continue Reading
Privacy Monday: December 8, 2104 - The Twelve Days of Privacy 2014
Posted in 12 Days of Privacy, Cybersecurity, Data Compliance & Security, EU Data Protection Regulation, Insurance, Legislation, Mobile Privacy, Privacy Litigation, Privacy Monday, Privacy Regulation, UncategorizedOur series last year was a reader favorite, so we decided to put our prognosticator hats on again and present: Rather than look back at 2014, starting tomorrow, the Privacy & Security blog will count down The 12 Days of Privacy, looking ahead to what we might expect in 2015 and what we might… Continue Reading
EU sets sights on Google.com search results
Posted in EU Data Protection Regulation, European Union, Privacy Regulation, Social MediaWritten by Susan Foster, Solicitor England & Wales/Admitted in California (LONDON) The highly influential Article 29 Working Party, composed in part of representatives of the EU’s national data protection offices, has announced that the right to be forgotten applies to .com as well as country-specific search results. The Google Spain decision (discussed here) held that… Continue Reading
Google, the House of Lords and the timing of the EU Data Protection Regulation
Posted in EU Data Protection Regulation, European Court of Justice, European Union, Privacy Regulation, Social MediaWritten by Susan Foster, Solicitor England & Wales/Admitted in California (LONDON) Could the European Court of Justice’s May 13, 2014 Google Spain decision delay the adoption of the EU Data Protection Regulation? In the Google Spain “Right to be Forgotten” case, the ECJ held that Google must remove links to a newspaper article containing properly… Continue Reading
Microsoft Loses Round in Fight Over Email Held in Irish Data Center
Posted in Cloud Computing, Cybersecurity, EU Data Protection Regulation, European UnionWritten by Narges Kakalia Rarely do Microsoft, AT&T, Verizon, Apple, Cisco and the ACLU all agree on a particular subject; rarer still that such an unlikely coalition fails. Last week, in a case of first impression, a District Court in New York denied Microsoft’s request to quash a portion of a government warrant seeking data… Continue Reading
No news doesn’t mean it’s gone away: Timing Update for the EU Data Protection Regulation
Posted in EU Data Protection Regulation, European Union, Privacy Regulation, UncategorizedWritten by Susan Foster, Solicitor England & Wales/Admitted in California (LONDON) With no major legislative milestones since the March 2014 EU Parliamentary vote endorsing the LIBE draft of the new Data Protection Legislation, observers from outside the EU might understandably wonder whether the legislative process has derailed somehow. But it hasn’t – the train has… Continue Reading
My company isn’t a search engine. Why should I care about Google Spain?
Posted in Data Breach, Data Compliance & Security, EU Data Protection Regulation, European Court of Justice, European Union, Legislation, Privacy Litigation, Privacy RegulationWritten by Susan Foster, Solicitor England & Wales/Admitted in California (LONDON) Google – along with the rest of us – is still considering the implications of the European Court of Justice’s May 13, 2014 decision that Google must remove links to a newspaper article containing properly published information about a Spanish individual on the basis… Continue Reading
