2001 and Personal data - Information Management Today

International data transfers: an opinion the EDPB (probably) won’t publish

Data Protector

AUGUST 19, 2020

One of the consequences of the Scherms II decision is that EU organisations need to take greater care in determining how best to protect the flows of personal data outside the EU. Data exports must cease when there are no additional safeguards that would ensure an “adequate level of protection.”

Personal data

Personal data GDPR Privacy Risk

The Unattributable "db8151dd" Data Breach

Troy Hunt

MAY 15, 2020

Met at the 6th National Pro Bono Conference in Ottawa in September 2016 Met on 15-17 October 2001 in Vancouver for the Luscar/Obed/Coal Valley arbitration. I communicated with multiple infosec journalists (one of whose own personal data was also in the breach) and still, we got no closer. It feels like a CRM.

Data breaches

Data breaches Personal data Cloud Mining

French Data Protection Authority Creates Working Group on Access of Personal Data by Foreign Public Authorities

Hunton Privacy

JUNE 14, 2013

On June 14, 2013, the French Data Protection Authority (“CNIL”) announced that last March it had created an internal working group to study the privacy issues arising from the access of the personal data of French citizens by foreign public authorities. In the CNIL’s view, the recent revelation of the U.S.

Personal data

Personal data Access Cloud Privacy

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Standard contractual clauses and data transfers after Schrems II: EDPB-EDPS Joint Opinion on Draft SCCs

DLA Piper Privacy Matters

APRIL 20, 2021

The CJEU’s long-awaited Schrems II decision of 16 July 2020, raised important questions on the validity of data processing activities involving the transfer of personal data outside the EEA. Schrems II. More information on these recommendations can be found here. The EC’s Draft SCCs . The fact that several ( e.

Personal data

Personal data GDPR Compliance Privacy

Part II – Digital Health Passports in Europe: Amended Proposal for a Digital Green Certificate and Eligible Testing Methods

Data Matters

MAY 3, 2021

The Council has proposed a number of changes to the Proposal issued by the Commission, including, inter alia , to strengthen the data protection provisions and incorporate certain of the recommendations in the Joint Opinion. What changes has the Council proposed? Which COVID-19 tests will be accepted for a test certificate?

Personal data

Personal data Data Privacy Privacy Data collection

European Data Protection Supervisor Publishes Priorities for 2017

Hunton Privacy

FEBRUARY 17, 2017

The EDPS will contribute to initiatives that are likely to have implications on the protection of privacy and personal data, such as the implementation of the Security Union agenda and the Action Plan of terrorist financing. Contribute to a Security Union and Stronger Borders Based on Respect for Fundamental Rights.

Privacy

Privacy Personal data Communications Marketing

Article 29 Working Party Releases Opinion on Data Processing at Work

Hunton Privacy

JULY 3, 2017

The Article 29 Working Party (“Working Party”) recently issued its Opinion on data processing at work (the “Opinion”). The Opinion considers data protection by design, data protection impact assessments and Article 88 with respect to processing employee data.

Personal data

Personal data Communications Privacy Risk

EU : New SCCs published

DLA Piper Privacy Matters

JUNE 4, 2021

Today, the European Commission published the final Implementing Decision on standard contractual clauses (“ New SCCs ”) for the transfer of personal data to third countries. The new SCCs will not apply for transfers of personal data from the UK to a third country.

GDPR

GDPR Personal data Privacy Government

German DPA Issues Position Paper on Data Transfer Mechanisms in Light of CJEU Safe Harbor Decision

Hunton Privacy

OCTOBER 14, 2015

With respect to alternative data transfer mechanisms, the Position Paper concludes the following: Consent : The Position Paper notes that individuals must provide effective informed consent. According to the Position Paper, this entails providing individuals with comprehensive information on the lack of personal data protection in the U.S.,

Paper

Paper Personal data Government IT

Bitdefender vs. McAfee: Consumer & Enterprise Endpoint Security Software Compared

eSecurity Planet

NOVEMBER 18, 2021

Enterprises are constantly scaling to meet growing customer needs—with an explosion of endpoints and data, it is becoming increasingly difficult to secure endpoints, and remote work has only added to the challenge. If our personal data or confidential enterprise data falls into the wrong hands, bad actors could create havoc.

Security

Security Analytics Passwords Risk

European Parliament Announces New European Data Protection Supervisor

Hunton Privacy

DECEMBER 1, 2014

The EDPS is an independent regulatory body whose main goal is to ensure that the EU institutions and bodies abide by the principles of EU data protection law when they process personal data and develop new policies.

Personal data

Personal data Privacy Government IT

Key Conclusions from Hunton Brussels Seminar on the Update of EU Standard Contractual Clauses for International Data Transfers

Hunton Privacy

JUNE 13, 2019

Key takeaways from this survey include: 77% of the participating companies rely on SCCs to legitimize data transfers outside of the European Economic Area, 14% of the participants transfer personal data based on the European Commission’s adequacy decisions (including the decision recognizing the EU-U.S.

Privacy

Privacy Personal data IT Information Security

European Data Protection Supervisor Publishes Priorities for 2016

Hunton Privacy

JANUARY 12, 2016

While an agreement has been reached on the data protection reform “package,” entailing the EU General Data Protection Regulation (the “GDPR”) and the Directive for data protection in the police and justice sectors, the EDPS will continue to support European institutions in their process to create a coherent data protection framework in Europe.

Personal data

Personal data GDPR Privacy Communications

UK Court of Appeal Overturns Damages Award for Inaccurate Credit Reference Records

Hunton Privacy

MARCH 11, 2013

In 2001, a bankruptcy order was made against the claimant, but this order was later rescinded. The claimant alleged that he failed to obtain credit for his business venture as a result of the inaccurate data on his Equifax record. Requirements of the UK Data Protection Act. Obligation to Ensure Accuracy of Personal Data.

Personal data

Personal data Access IT Security

Article 29 Working Party’s Opinion on Adequacy of Quebec’s Data Protection Regime

Hunton Privacy

JUNE 25, 2014

On June 23, 2014, the Article 29 Working Party (the “Working Party”) published its Opinion 7/2014 on the protection of personal data in Québec (the “Opinion”).

Privacy

Privacy Personal data Government Security

Bojana Bellamy to Assume Presidency of the Centre for Information Policy Leadership at Hunton and Williams LLP

Hunton Privacy

JUNE 25, 2013

Since its establishment in 2001, the Centre has helped businesses, data protection authorities and consumer organizations rethink how to manage and protect personal data in today’s information age. ”

Data Privacy

Data Privacy Privacy Compliance Big data

GDPR Ain’t Helping Anyone In The Innovation Economy

John Battelle's Searchblog

MAY 25, 2018

While we’ve collectively wrung our hands about this for years (I started thinking about “ the Database of Intentions ” back in 2001, and I offered a “ Data Bill of Rights ” back in 2007), it was Europe, with its particular history and sensitivities, which finally took significant and definitive action.

GDPR

GDPR Government Personal data Mining

EU Approves New Standard Contractual Clauses for Transfers to Data Processors

Hunton Privacy

FEBRUARY 5, 2010

On February 5, 2010, the European Commission adopted a new set of standard contractual clauses (“SCCs”) for transfers of personal data from data controllers in the EU to data processors outside the EU. View the European Commission press release.

Personal data

Personal data Security Information Security

Council of Europe Prepares to Review Convention 108

Hunton Privacy

SEPTEMBER 20, 2010

The Council of Europe Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data (generally referred to as “Convention 108”), enacted in 1981, is the only legally-binding international treaty dealing with privacy and data protection.

Personal data

Personal data Privacy Government IT

Data Privacy Compliance Isn’t Just for Europe or California Anymore: Data Privacy Trends

eDiscovery Daily

APRIL 10, 2019

“When Spain incorporated the directive into their law, one noticeable change [from other EU countries] was the lack of legitimate interest for a basis for processing personal data,” Tobón said. Unlike GDPR, POPIA asserts companies also have “personal data” that requires protection.

Data Privacy

Data Privacy Privacy Compliance GDPR

Weekly podcast: 2018 end-of-year roundup

IT Governance

DECEMBER 13, 2018

Also in January, the ICO (Information Commissioner’s Office) fined Carphone Warehouse £400,000 – one of the largest fines it issued under the DPA (Data Protection Act) 1998 – for multiple security inadequacies that led to a 2015 data breach in which three million customers’ personal data was compromised. I’m sorry, Dave.

Data breaches

Data breaches Personal data Access GDPR

European Data Privacy Day Expert Panel Provides 30-Year Retrospective on UK Data Protection

Hunton Privacy

FEBRUARY 1, 2013

She also oversaw the introduction of the Freedom of Information Act 2000 in January 2001, for which the Commissioner’s office became responsible. The name of the office was changed to its current name (the ICO) in 2001. France oversaw significant changes in the law as the 1998 Act was significantly more stringent than the 1984 Act.

Data Privacy

Data Privacy Privacy Computer and Electronics Education

Council of the European Union Releases Draft Compromise Text on the Proposed EU Data Protection Regulation

Hunton Privacy

JUNE 4, 2013

Although the possibility of recasting the Proposed Regulation as a directive remains, the Presidency’s amendments emphasize that differing levels of data protection within the European Union must not impede the free flow of personal data within the Union (Recital 11). Scope of the Proposed Regulation.

Personal data

Personal data Risk Data breaches Marketing

EDPB’s Position on Clinical Trials Creates Friction with Other EU Legislation

HL Chronicle of Data Protection

APRIL 25, 2019

One of the most disconcerting areas of divergence between EU Member States is the different national positions on whether patient consent is a valid legal ground for processing personal data in clinical trials. This means that requirements in the GDPR relating to consent do NOT apply to health and care research.”

GDPR

GDPR Personal data Risk Healthcare

GDPR Ain’t Helping Anyone In The Innovation Economy

John Battelle's Searchblog

MAY 25, 2018

While we’ve collectively wrung our hands about this for years (I started thinking about “ the Database of Intentions ” back in 2001, and I offered a “ Data Bill of Rights ” back in 2007), it was Europe, with its particular history and sensitivities, which finally took significant and definitive action.

GDPR

GDPR Government Personal data Mining

UK Supreme Court Rules Morrisons Not Vicariously Liable for Malicious Data Breach by Employee

Data Matters

APRIL 20, 2020

These measures should include a combination of data security controls, audits, data breach response planning, developing appropriate data protection policies and procedures and training of employees, particularly those who come into contact with personal data in their day-to-day roles. 1 [2016] UKSC 11.

Data breaches

Data breaches GDPR Privacy IT

GDPR Ain’t Helping Anyone In The Innovation Economy

John Battelle's Searchblog

MAY 25, 2018

While we’ve collectively wrung our hands about this for years (I started thinking about “ the Database of Intentions ” back in 2001, and I offered a “ Data Bill of Rights ” back in 2007), it was Europe, with its particular history and sensitivities, which finally took significant and definitive action.

GDPR

GDPR Government Personal data Mining

Information Management Today

International data transfers: an opinion the EDPB (probably) won’t publish

The Unattributable "db8151dd" Data Breach

Webinars

Trending Sources

French Data Protection Authority Creates Working Group on Access of Personal Data by Foreign Public Authorities

Webinars

Standard contractual clauses and data transfers after Schrems II: EDPB-EDPS Joint Opinion on Draft SCCs

Part II – Digital Health Passports in Europe: Amended Proposal for a Digital Green Certificate and Eligible Testing Methods

European Data Protection Supervisor Publishes Priorities for 2017

Article 29 Working Party Releases Opinion on Data Processing at Work

EU : New SCCs published

German DPA Issues Position Paper on Data Transfer Mechanisms in Light of CJEU Safe Harbor Decision

Bitdefender vs. McAfee: Consumer & Enterprise Endpoint Security Software Compared

European Parliament Announces New European Data Protection Supervisor

Key Conclusions from Hunton Brussels Seminar on the Update of EU Standard Contractual Clauses for International Data Transfers

European Data Protection Supervisor Publishes Priorities for 2016

UK Court of Appeal Overturns Damages Award for Inaccurate Credit Reference Records

Article 29 Working Party’s Opinion on Adequacy of Quebec’s Data Protection Regime

Bojana Bellamy to Assume Presidency of the Centre for Information Policy Leadership at Hunton and Williams LLP

GDPR Ain’t Helping Anyone In The Innovation Economy

EU Approves New Standard Contractual Clauses for Transfers to Data Processors

Council of Europe Prepares to Review Convention 108

Data Privacy Compliance Isn’t Just for Europe or California Anymore: Data Privacy Trends

Weekly podcast: 2018 end-of-year roundup

European Data Privacy Day Expert Panel Provides 30-Year Retrospective on UK Data Protection

Council of the European Union Releases Draft Compromise Text on the Proposed EU Data Protection Regulation

EDPB’s Position on Clinical Trials Creates Friction with Other EU Legislation

GDPR Ain’t Helping Anyone In The Innovation Economy

UK Supreme Court Rules Morrisons Not Vicariously Liable for Malicious Data Breach by Employee

GDPR Ain’t Helping Anyone In The Innovation Economy

Stay Connected