Debevoise Data Blog

JUNE 16, 2021

This is the third investigation carried out under the FCO’s new powers; it announced investigations into Facebook and Amazon earlier this year, and also previously conducted a similar investigation into Facebook in 2019 (see our updates here and here ). It is also a competent authority for GDPR-related breaches.

Data protection 40

Data protection Compliance Court Time-tracking 40

Inside Privacy

MAY 30, 2023

On April 4, 2023, the European Commission announced that the EU and Japan had successfully completed the first periodic review of the Japan-EU mutual adequacy arrangement , adopted in 2019. The amendments include, among other things, strengthened data security obligations (e.g., Developments in the Japanese framework.

Data protection 61

Data protection Mediator Compliance 61

Vogel IT Law

APRIL 4, 2023

HealthCareInfoSecurity.com reported that “A user of the now-shuttered BreachForums in April 2021 posted a data set of 533 million Facebook profiles, including mobile numbers, email addresses and names scraped from the site in 2018 and 2019.” Facebook reported revenue of $23 billion in 2022 and $39 billion in 2021.

Data protection 52

Data protection Court Litigator Litigation 52

Legal IT Group

NOVEMBER 13, 2023

A data protection officer ( DPO ) is a specialist who helps companies ensure compliance with international data protection laws. In a nutshell, the DPO is a key person who helps the company in all business processes to ensure compliance with the data protection law.

Data protection 52

Data protection Compliance International law Law 52

Technology Law Dispatch

FEBRUARY 7, 2024

With cybersecurity becoming a board-level issue, compliance officers, lawyers, board members, and business drivers are looking for official guidance or recommendations on cybersecurity measures to protect business, customers, and the wider economy. Whose guidance to use? mln and Euro 20.45

Data protection 64

Data protection Compliance Court Lawyer 64

LawSites

DECEMBER 27, 2022

Notably, the post that captured the most eyes was about New York becoming the first state to mandate CLE in cybersecurity, privacy and data protection. New York Becomes First State to Mandate CLE in Cybersecurity, Privacy and Data Protection. Jackson Women’s Health Organization. Here’s What Happened.

Data protection 77

Data protection Analytics Legal tech Legal tech 77

Richmond Journal of Law and Technology

MAY 2, 2023

The African Union (AU) member states and Economic Community of West African States (ECOWAS) member states are obligated to respect, protect, and promote the right to privacy and personal data protection, as stated in their declarations and conventions. [12] 12] To ensure compliance and mitigate risks, U.S. 15] Ultimately, U.S.

Data protection 52

Data protection Compliance Due diligence Law 52

MatterSuite

MAY 8, 2023

This represents an increase of approximately 300,000 complaints from 2019, with a corresponding increase in financial loss. Failure to comply with these regulations can result in fines, loss of data, and non-reversible privacy breaches.

Compliance 98

Compliance Failure-to-appear Intellectual Property Data protection 98

Debevoise Data Blog

JANUARY 25, 2024

This judgment arose from a 2019 cyberattack against the Bulgarian National Revenue Agency which resulted in a threat actor publishing more than 6 million people’s personal data on the internet. It remains to be seen whether data protect authorities will provide guidance on how to interpret the “draw strongly” condition.

Data protection 40

Data protection Court e-records Compliance 40

Debevoise Data Blog

DECEMBER 22, 2020

Businesses operating in France should take these new blockbuster fines as another reminder of the importance of data protection frameworks and policies. In 2019 and 2020, the CNIL’s inspectors performed online checks of google.fr Background. and amazon.fr

Data protection 52

Data protection Compliance Court 52

LawSites

SEPTEMBER 8, 2021

20, is similar to Europe’s General Data Protection Regulation (GDPR) and applies to any organization that has employees in China or does business in China. With companies facing a Nov. China’s new law, just passed on Aug. Organizations must comply with the law by Nov.

Compliance 74

Compliance Law Law Data protection 74

Debevoise Data Blog

NOVEMBER 22, 2022

The EU’s General Data Protection Regulation 2016 (the “GDPR”) changed the global privacy landscape, and has been called the “gold standard” for data protection regulation. When Are Data Protection Assessments Required? Recently, a number of U.S. Recently, a number of U.S.

Data protection 52

Data protection Law Law Compliance 52

Inside Privacy

APRIL 24, 2023

For example, in October 2022, the Bank of England and Financial Conduct Authority (“FCA”) jointly released a Discussion Paper on Artificial Intelligence and Machine Learning considering how AI in financial services should be regulated and, in March 2023, the ICO updated its Guidance on AI and Data Protection.

Intellectual Property 69

Intellectual Property Data protection Machine learning Compliance 69

Debevoise Data Blog

AUGUST 18, 2021

According to the SEC’s Order , on March 21, 2019, Pearson learned that millions of rows of data had been accessed and downloaded by a threat actor exploiting an unpatched security vulnerability. For What Did the SEC Fault Pearson ? What Were the Legal and Financial Terms of the Resolution ?

Data protection 40

Data protection Software Law Law 40

Legal IT Group

APRIL 28, 2023

The concept of necessity has an independent meaning in European Union law, which must reflect the objectives of data protection law. It is also worth highlighting the following conclusions of the court in this case, which will affect further law enforcement practice on personal data protection.

Data protection 52

Data protection Time-tracking Court Lawsuit 52

Debevoise Data Blog

SEPTEMBER 9, 2021

The court also struck out the claimant’s negligence claim on the grounds that: (i) case law has established that negligence cannot be pleaded alongside Data Protection Act claims; and (ii) “distress” does not constitute damage, as required for a successful negligence claim.

Data protection 52

Data protection Court Litigator Litigation 52

Legal Talk Network

MARCH 8, 2019

Sara Agate, MPH (@sara_agate) March 2, 2019. The following comprises our audio coverage of ABA TECHSHOW 2019 and a list of those who participated. Laurence Colletti (@LaurenceEsq) February 27, 2019. ABA TECHSHOW 2019: Keynote Address. ABA TECHSHOW 2019: Tech Books For Lawyers. But so what?

Hearing 97

Hearing Judge Attorney Legal tech 97

Debevoise Data Blog

DECEMBER 10, 2020

The big news this November was the European Data Protection Board (the “EDPB”) issuing its highly anticipated post- Schrems II data transfer guidance, followed just a day later by the European Commission’s draft updated Standard Contractual Clauses (“SCCs”) (see our blog post here ).

Data protection 52

Data protection Dispute resolution Court Compliance 52

Debevoise Data Blog

FEBRUARY 28, 2022

Under this requirement, businesses need to establish time limits for data deletion and to institute a periodic review of the necessity for continued data retention. The UK Data Protection Act of 2018 has a similar provision. 2019 WL 118412 (D. 7, 2019) (denying Quick Fitting, Inc.’s 2019 WL 3290346 (D.

e-filing 52

e-filing Compliance Litigator Litigation 52

Debevoise Data Blog

NOVEMBER 11, 2021

This isn’t the first time the CAC has issued similar proposed guidance—previous iterations published in 2017 and 2019 were never finalized. This time, the Draft Measures will likely be finalized in the coming months, given that China’s three-pillar framework for China’s cybersecurity, data security, and data protection has crystalized.

Data protection 52

Data protection Compliance Law Law 52

Legal IT Group

JUNE 12, 2023

Every day, more and more companies face the problem of personal data protection. As companies are increasingly scrutinised for proper data protection, it’s worth paying close attention to the latest best practices to avoid dealing with the potential negative consequences of a data breach.

Data protection 52

Data protection e-filing Court e-records 52

Inside Privacy

FEBRUARY 1, 2024

This regulation is directly applicable in all EU Member States since May 28, 2019. X (Recent Council versions remove this obligation.)

Intellectual Property 72

Intellectual Property State law Court Compliance 72

Debevoise Data Blog

MARCH 11, 2021

The recent publication of the SEC’s 2021 Division of Examination Priorities (the “2021 Priorities”) presents an opportunity to look back at the cybersecurity work of the SEC in 2020 and speculate about the SEC’s examination and enforcement priorities for data protection in the coming year for RIAs.

Compliance 52

Compliance Data protection Attorney 52

Percipient

APRIL 22, 2023

7, 2019) , noted Cardinal and agreed that third-party subpoenas must not burden responding parties. Companies Generally May Not Charge for GDPR and CCPA Data Requests Nowadays, third party requests for information are not always related to lawsuits and legal disputes. Another case, SPS Techs., 19 C 3365 (N.D.

e-discovery 97

e-discovery Court e-records Litigator 97

Legodesk

NOVEMBER 21, 2021

If your documents are not organized, counsel will have to sort through all of the firm’s data to find the important information, wasting time and crucial resources.

Lawyer 52

Lawyer Document management Time-tracking Software 52

Debevoise Data Blog

MARCH 21, 2022

Commissioners have previously voted to allow data protection law violators to retain algorithms and technologies that derive much of their value from ill-gotten data. In 2019, the FTC ordered Cambridge Analytica to destroy algorithms derived from information collected from consumers through allegedly deceptive means.

Machine learning 40

Machine learning Court Time-tracking Compliance 40

Technology Law Dispatch

APRIL 19, 2023

On 4 April 2023, the Personal Information Protection Commission of Japan (PPC) and European Commissioner for Justice issued a joint Press Statement on the conclusion of the first review of the Japan-EU Mutual Adequacy Decision. As agreed back in 2019, the next review will take place in four years.

Data protection 52

Data protection 52

Eric Goldman

FEBRUARY 15, 2024

intermediaries servicing the EU market, an application that suggests that, as has been the case with the EU General Data Protection Regulation (“GDPR”), some spillover from the EU legislation will be felt in the U.S. The DSA promises to change the internet inside the EU, and likely create spillover effects outside the EU.

Due diligence 89

Due diligence Data protection Compliance Court 89

Debevoise Data Blog

NOVEMBER 12, 2021

Mr Lloyd alleged that Google breached its duties as a data controller under the Data Protection Act 1998 (“DPA”) when it implemented the ‘Safari Workaround’. This was reversed by the Court of Appeal in 2019. Google was initially successful before the first instance judge in 2018.

Data protection 52

Data protection Court Judge Litigator 52

new tech law blog

JUNE 22, 2023

The DMA will also impact other regulations applicable to the delivery of services on digital markets, particularly involving data protection (the General Data Protection Regulation and the ePrivacy Directive), competition law, consumer protection, and copyright (e.g. DMA recital 12). 39) under national regulations.

Compliance 52

Compliance Data protection Court Software 52

Legal IT Group

JANUARY 30, 2023

This is the amount of a fine paid by a well-known company for violating the rules of the European General Data Protection Regulation (the GDPR). In this article, you will learn about the top 7 largest fines of 2022 and the personal data practices that should be avoided in your business. Is 1,000 EUR a lot for a business?

Compliance 52

Compliance Data protection Analytics Law 52

Ikigai Law

AUGUST 7, 2023

In 2019, the ED used this power to cease three chimpanzees and four marmosets as ‘proceeds of crime’. Main Course : Deep dive stories on card network portability, and impact of the data protection bill on fintechs. The data law is nearly here! As a processor, you must also seek some protections. Google them.

Data protection 52

Data protection Law Law e-records 52

Debevoise Data Blog

NOVEMBER 2, 2022

up to 45 when including the European Economic Area and the 16 German state data protection authorities). government to conclude agreements with foreign states, whereby a party to a bilateral agreement could directly require service providers based in the respective country to disclose data held by them in the U.S.

Data protection 52

Data protection Compliance Machine learning Court 52

Debevoise Data Blog

JANUARY 19, 2021

FTC Commissioner Rohit Chopra remarked in a statement that Commissioners have previously voted to allow data protection law violators to retain algorithms and technologies that derive much of their value from ill-gotten data and that the Everalbum settlement marked an “an important course correction.”

Machine learning 45

Machine learning Court Data protection Law 45

Debevoise Data Blog

OCTOBER 18, 2021

2019 IL 123186, 129 N.E.3d The Illinois Supreme Court has ruled that a plaintiff does not need to show real-world harm to state a successful claim—that is, a violation of the statute is enough. See Rosenbach v. Six Flags Ent.

Law 52

Law Law Court Time-tracking 52

lawtomated

JUNE 28, 2021

We applied for and were awarded Innovate UK funding in 2019. Unlike a lot of Big Law work it doesn’t require expensive and hard to find experts in things like tax, data protection or multi-jurisdictional advice and so on. This is what funded our research and resulting twin reports. They are obviously related, but distinct.

Law firm 52

Law firm Time-tracking Lawyer Failure-to-appear 52

Debevoise Data Blog

JULY 9, 2021

Data Protection Assessments Also similar to a provision of the VCDPA that has often been criticized for being vague and overly burdensome, SB 21-190 requires businesses to conduct regular data protection assessments for each of their activities that involve personal data and present a heightened risk of harm to consumers.

Data protection 40

Data protection Compliance Attorney State law 40