GDPR

To Benefit from Insurance Coverage in France Businesses Must File a Complaint Within 72 Hours of a Cyberattack

By Stéphanie Faber & Charles Helleputte on March 1, 2023

Posted in Compliance, Consumer Protection, Cybersecurity, EU, France, GDPR

The French government has decided to act in the fight against the resurgence of cyberattacks, together with ransom demands, which have a significant impact on the economy. By anticipating the development of the cyber risk insurance market in France, the French government has decided to make the payment of insurance compensation conditional on the filing…

Privacy World Week in Review

By Kristin Bryan on February 20, 2023

Posted in American Data Privacy and Protection Act (ADPPA), Biometric data, Biometric Information Privacy Act (BIPA), Biometric Privacy Act, BIPA, BIPA, Breaking News, Compliance, Cybersecurity, Data Privacy, Data Privacy, Federal Trade Commission (FTC), FTC, GDPR, GDPR, General, General Data Protection Regulation (GDPR), Illinois, Litigation, Privacy, Privacy Litigation, Privacy Litigation, US, US, Webinar

In case you missed it, below are recent posts from Privacy World covering the latest developments on data privacy, security and innovation. Please reach out to the authors if you are interested in additional information.

BREAKING: Illinois Supreme Court Determines BIPA Claims Accrue Individually With Each Violation | Privacy World

New 2023 Legislative Proposals Could…

ISO 31700: The Latest Tool to Operationalize (GDPR) Privacy by Design Compliance?

By Diletta De Cicco, Lucija Vranesevic & Charles Helleputte on February 2, 2023

Posted in Compliance, Consumer Protection, Data Privacy, EU, European Data Protection Board, GDPR, International Standard of Operation Compliance (ISO)

The start of a new year always brings New Year’s resolutions. If privacy by design is one of yours (just months after the Irish watchdog announced a €265 million fine for a breach of this concept, it seems reasonable to have it on your radar), 2023 is off to a good start with a new…

EU Court of Justice: Consent and Right to Deletion of the Subscriber’s Details from the Publication of a Telecom Operator’s Directory

By Stéphanie Faber on December 8, 2022

Posted in Compliance, Consumer Protection, Data Privacy, Data Retention, ePrivacy Directive, EU, GDPR, Telecommunications

In a decision on October 27, 2022, the European Court of Justice has clarified the operators’ obligations regarding consent and the right to object in relation to public directories and information services.

Legal Context

The ePrivacy Directive contains several provisions relating to public directories and information services of telecommunications operators.

In particular, EU Member States…

Our Team Joined the Discussion on the Stage of the Global Data Protection Congress 2022

By Charles Helleputte & Diletta De Cicco on November 23, 2022

Posted in Compliance, Cybersecurity, Data Breach, Data Privacy, EU, Events, GDPR, General

More than 10 Squire Patton Boggs European Data Privacy, Cybersecurity and Digital lawyers attended last week’s Brussels Data Protection Congress.

At the congress, Counsel Diletta De Cicco participated in a panel with journalists Luca Bertuzzi from Euractiv and Vincent Manancourt from POLITICO. They explored the topic: Is the Press the (Best) GDPR Enforcer? The discussion…

Online Webinar Now Available: Navigating Cross-border Challenges Relating to HR Data Protection and Employee Right-to-Work Compliance

By Kristin Bryan on October 21, 2022

Posted in CCPA, Data Privacy, EU, GDPR, UK, US, Webinar

Last week, CPW’s Alan Friel and David Naylor were joined by Squire Patton Boggs employment and immigration lawyers Gregory Wald, Michael Kelly and Annabel Mace for timely webinar in connection with the British American Business Counsel. A recording of the webinar is now available at this link.
Continue Reading Online Webinar Now Available: Navigating Cross-border Challenges Relating to HR Data Protection and Employee Right-to-Work Compliance

Profiling and Automated Decision-Making: How to Prepare in the Absence of Draft CPRA Regulations

By Kyle Fath, Shea Leitch & Gicel Tomimbang on October 14, 2022

Posted in Artificial Intelligence, California Privacy Rights Act (CPRA), CCPA, Colorado Privacy Act, Connecticut Data Privacy Act (CTDPA), GDPR, Virginia Consumer Data Protection Act (VCDPA)

This blog post is a bonus supplement to our quarterly Artificial Intelligence and Biometric Privacy Quarterly Review Newsletter. Be on the lookout for our Q3 Newsletter!

We are quickly approaching the Jan. 1, 2023 operative date of most of the provisions of the California Privacy Rights Act (“CPRA), which, as most of us know by now, substantially amends the CCPA. Under the CPRA, the California Privacy Protection Agency (“CPPA” or “Agency”) has a mandate to issue regulations on a number of specific topics. With just fewer than three months to go until January 1, regulations are not even close to being finalized. The Agency released the first draft of proposed regulations on May 24, and the first public comment period ended on August 23. In a meeting held by the CPPA on Friday, September 23, the Agency gave no concrete sense of timing or any comments on topics, such as those discussed in this post, for which regulations have not even been issued. This has left many businesses feeling left in the lurch, uncertain of what to do.
Continue Reading Profiling and Automated Decision-Making: How to Prepare in the Absence of Draft CPRA Regulations

CPW Week in Review

By Kristin Bryan on September 26, 2022

Posted in AI, Articles, Biometric data, BIPA, California, California Age-Appropriate Design Code Act (AADC), California Privacy Rights Act, California Privacy Rights Act (CPRA), CCPA, CCPA, CEF, Colorado, Colorado Privacy Act, Compliance, Connecticut, Connecticut Privacy Act (CTPA), Consumer Protection, COPPA, Cybersecurity, Cybersecurity, Data Breach, Data Breach, Data Privacy, Data Privacy, Data Retention, Digital Technology, EU, European Court of Justice, GDPR, GDPR, General, Litigation, Privacy Litigation, Standard Contractual Clauses (SCCs), Team News, UK, UK Data Transfer Agreement, US, US, Utah, Utah Consumer Privacy Act (UCPA), Virginia Consumer Data Protection Act (VCDPA), Women in Data

In case you missed it, below are recent posts from Consumer Privacy World covering the latest developments on data privacy, security and innovation. Please reach out to the authors if you are interested in additional information.

2023 State Privacy Laws: How to Assess and Ensure Readiness by Year-end

Malcolm Dowden and Niloufar Massachi Discuss Vendor…