Inside Privacy

MARCH 14, 2023

Following a report, the French supervisory authority (“CNIL”) audited two organizations carrying out medical research in early 2022 to check their compliance with these requirements. Despite being found in breach of the French data protection rules, none of the audited organizations were fined.

Data protection 65

Data protection Compliance 65

Debevoise Data Blog

APRIL 28, 2023

UK ICO updates guidance to clarify requirements for fairness in AI What happened : The UK ICO has updated its existing Guidance on AI and data protection following requests from industry to clarify requirements for fairness in AI. Norwegian Data Protection Authority fines medical device company c.$240,000

Data protection 52

Data protection Compliance e-filing Software 52

Debevoise Data Blog

MAY 12, 2023

Key takeaways this April include: UK children’s data protection focus continues: Businesses may wish to review policies and procedures for dealing with children’s data in light of recent UK ICO fines and guidance, especially to ensure that terms of use are adequately enforced.

Data protection 52

Data protection Software design Machine learning Software 52

Debevoise Data Blog

JUNE 8, 2023

As we covered here , last October, the CNIL fined Clearview AI €20 million for various data protection violations, including “intrusive and massive” data processing without consent or a valid legitimate interest. 82 (see our May 2021 , August 2021 , and October 2022 blog posts for previous developments).

Data protection 52

Data protection Compliance e-records Dispute resolution 52

Debevoise Data Blog

DECEMBER 22, 2023

For example, the Garante notes the need to incorporate data protection by design and by default principles within any AI systems used in the healthcare space. In particular, the paper recommends the use of internal data access controls, regular auditing of data security measures, and the use of data protection impact assessments.

Data protection 52

Data protection Time-tracking Compliance Machine learning 52

Debevoise Data Blog

SEPTEMBER 23, 2024

Our top-five European data protection developments from August are: Uber fined for personal data transfer: The Dutch Data Protection Authority fined Uber €290 million for the unlawful transfer of European drivers’ personal data to the U.S., without sufficient safeguards. ICO proposes £6.09

Data protection 52

Data protection Court Software Compliance 52

Legal IT Group

NOVEMBER 10, 2023

First of all, the data can be transferred based on the adequacy decision or subject to appropriate safeguards. Among these safeguards, in particular, are binding corporate rules, standard data protection clauses, code of conduct, and certification mechanism. Then, in 2022, the UK also adopted new SCCs. What about the US?

Data protection 130

Data protection Compliance Law Law 130

Debevoise Data Blog

DECEMBER 13, 2022

Digital Operation Resilience Act is imminent What happened : On 28 November 2022, the European Union finalised the EU Digital Operational Resilience Act (“DORA”). The UK Government followed on 30 November 2022 with an announcement about its own expanded measures, which focus in particular on critical digital infrastructure.

Data protection 52

Data protection Due diligence Compliance Hearing 52

Debevoise Data Blog

JANUARY 30, 2023

Last year, yet again, saw significant GDPR enforcement actions, important regulatory guidance, and an abundance of European legislative activity touching on cyber, data protection and AI-regulatory issues. The UK’s approach reflects a broader concern to ensure that AI regulation does not inadvertently stymie digital innovation.

Data protection 52

Data protection Compliance Analytics Law 52

Legal IT Group

JANUARY 22, 2024

With this regard, it is essential to know about the privacy legislation of this country since, nowadays, most internet businesses process the personal data of their clients, and they should do it in compliance with data protection laws. ” Thus, the Australian Privacy Act also aims to have a GDPR level of data protection.

Data protection 130

Data protection Compliance Litigation Litigator 130

Technology Law Dispatch

FEBRUARY 27, 2023

2022 was another busy year in privacy and data protection. Regulations surrounding privacy and data continue to develop at a rapid pace. Emerging technologies have changed the manner in which personal data is collected and used. As a result, 2023 could be an exciting and a busy year for privacy and data.

Data protection 59

Data protection Analytics Compliance Court 59

Debevoise Data Blog

AUGUST 16, 2023

. : Business may want to revisit their cross-border data transfer arrangements following the new adequacy decision for the EU-U.S. Data Privacy Framework, assess whether they are eligible to self-certify and, if they are, whether it makes sense to. Data Privacy Framework (the “DPF”). These developments, and more, covered below.

Data protection 40

Data protection Analytics Compliance Time-tracking 40

Debevoise Data Blog

JANUARY 25, 2024

They are also reminded of their obligation to maintain appropriate technical and organisational measures in relation to their data processing, and may wish to review their compliance with these measures. It remains to be seen whether data protect authorities will provide guidance on how to interpret the “draw strongly” condition.

Data protection 40

Data protection Court e-records Compliance 40

Legal IT Group

JANUARY 10, 2023

Since the entry into force of the General Data Protection Regulation (GDPR), many companies processing the data of Europeans have faced the task of achieving the much desired GDPR-compliance. Book a call 2023-01-10 Сообщение The first GDPR certification in Luxembourg появились сначала на Legal IT group.

Compliance 130

Compliance Data protection Law Law 130

Debevoise Data Blog

SEPTEMBER 12, 2022

Russia has enacted amendments to its Personal Data Law (the “ Amendments ”) that may have a significant impact on companies operating in Russia. The Amendments became effective on September 1, 2022, save for certain provisions that will become effective on March 1, 2023.

Data protection 52

Data protection Compliance Time-tracking Litigation 52

Legal IT Group

FEBRUARY 22, 2023

And it was only in 2022 that Meta Platforms’ earnings report recognized the first year-over-year decline in advertising revenue in the company’s history, a trend that is expected to continue due to global economic issues affecting the digital advertising market as well. Why is this important, and what does GDPR have to do with it?

Data protection 130

Data protection Time-tracking e-records e-filing 130

Debevoise Data Blog

DECEMBER 18, 2023

As we approach the end of the year, here are the Top 10 Privacy posts on the Debevoise Data Blog in 2023 by page views. At the December 8, 2023 board meeting , the CPPA voted to advance the recently updated proposed cybersecurity audit regulations to formal rulemaking. Similar trends exist in the EU.

Data protection 52

Data protection Compliance Hearing Attorney 52

Legal IT Group

APRIL 28, 2023

Recently, we have already talked about the difficulties faced by the tech giant Meta Platforms with European supervisory authorities (Irish DPC, European EDPB) and the prospects for further litigation regarding the illegal processing of users’ personal data, in particular, class actions.

Data protection 130

Data protection Time-tracking Court Lawsuit 130

CaseFox

FEBRUARY 27, 2023

In 2022, a Gartner report quoted, “By 2024, legal departments will replace 20% of generalist lawyers with nonlawyer staff”. In 2023, it’s crucial for big & small law firms to adapt to law tech. For example, tools for managing data privacy and security can help firms to comply with data protection laws.

Legal tech 97

Legal tech Legal tech Law firm Document automation 97

Legal IT Group

JANUARY 30, 2023

The pilot project of the first regulatory sandbox on artificial intelligence was presented in June 2022 in Brussels jointly by the Spanish government and the European Commission. Thus, on December 6, 2022, the EU Council adopted a common position (“general approach”) on the AI Act. What will the AI Act regulate?

Data protection 130

Data protection Law Law Software 130

Clio

JANUARY 1, 2025

Bureau of Labor Statistics forecasts a 5% growth in lawyer employment from 2023 to 2033. Between 2021 and 2023, average lawyer wages increased by 19.2%. In 2023, the U.S. Lawyers ranked 28th out of more than 800 occupations for average wages in 2023. Thats in line with the average growth rate across all occupations.

Lawyer 98

Lawyer Law firm Bankruptcy Data protection 98

Inside Privacy

APRIL 24, 2023

On 29 March 2023, the UK Government published a White Paper entitled “A pro-innovation approach to AI regulation” (“White Paper”). The White Paper elaborates on the approach to AI set out by the Government in its 2022 AI Governance and Regulation Policy Statement (“Policy Statement” – covered in our blog post here ).

Intellectual Property 69

Intellectual Property Data protection Machine learning Compliance 69

Inside Privacy

MAY 2, 2023

On April 17, 2023, the UK applied to join the Global Cross-Border Privacy Rules (“CBPR”) Forum as an Associate member. In addition to its application, the UK co-hosted the Global CBPR Forum workshop “At One Year: Challenges and Opportunities”, which took place between April 17 to April 20, 2023.

Data protection 65

Data protection Compliance Law Law 65

Inside Privacy

MARCH 23, 2023

The recently adopted Digital Services Act (“DSA”) also contains rules on protecting children online – including by not serving them targeted advertising based on profiling. The eID proposal would also enable minors to use their digital identity wallet to prove their age without disclosing other personal data.

Data protection 79

Data protection Law Law 79

Inside Privacy

APRIL 12, 2023

Last week, the European Commission launched a public consultation (open until May 3, 2023) to “develop a vision for emerging virtual worlds (e.g. Last week, the European Commission launched a public consultation (open until May 3, 2023) to “develop a vision for emerging virtual worlds (e.g.

Data protection 78

Data protection Time-tracking Law Law 78

Technology Law Dispatch

APRIL 18, 2023

White paper In July 2022 the AI Regulation Policy Paper set out plans for a risk-based, adaptable regulatory framework. The UK government is inviting responses to the questions set out in the consultation, which will close on 21 June 2023.

Data protection 59

Data protection Compliance 59

Inside Privacy

OCTOBER 17, 2023

On 3 October 2023, the UK Information Commissioner’s Office (“ ICO ”) finalized its Employment practices and data protection − Monitoring workers guidance (“ Guidance ”) to account for new types of work, including work from home, and the use of more sophisticated technologies for monitoring.

Data protection 65

Data protection Time-tracking Case management Compliance 65

new tech law blog

MARCH 10, 2023

“Dark patterns” used by online platform providers have been controversial for some time, but recently there has been a growing buzz about them, in particular due to actions undertaken by EU and national data protection and consumer protection authorities.

Data protection 52

Data protection Compliance Law Law 52

Debevoise Data Blog

FEBRUARY 6, 2023

On February 1, 2023, the Colorado Attorney General (“COAG”) held a public hearing as part of its rulemaking process for the Colorado Privacy Act (“ColoPA”). Here in Part 2 of our 2023 U.S. Companies subject to ColoPA should review their practices to ensure compliance before ColoPA’s July 1, 2023 effective date.

Hearing 52

Hearing Data protection Law Law 52

Technology Law Dispatch

NOVEMBER 8, 2023

There is more clarity on the views of the UK data protection authority on whether a “Reject All” option in the first layer of a cookie consent management solution is required. The ICO Position On 9 August 2023, the UK Information Commissioner’s Office (“ICO”) clarified its position on the “Reject All” button in cookie banners.

Data protection 59

Data protection Compliance Court Law 59

Richmond Journal of Law and Technology

MAY 2, 2023

The African Union (AU) member states and Economic Community of West African States (ECOWAS) member states are obligated to respect, protect, and promote the right to privacy and personal data protection, as stated in their declarations and conventions. [12] 12] To ensure compliance and mitigate risks, U.S. 15] Ultimately, U.S.

Data protection 52

Data protection Compliance Due diligence Law 52

Eric Goldman

FEBRUARY 15, 2024

intermediaries servicing the EU market, an application that suggests that, as has been the case with the EU General Data Protection Regulation (“GDPR”), some spillover from the EU legislation will be felt in the U.S. The DSA promises to change the internet inside the EU, and likely create spillover effects outside the EU.

Due diligence 105

Due diligence Data protection Compliance Court 105

Ikigai Law

FEBRUARY 9, 2023

Budget for tech – the Amrit Kaal version In tandem with the previous year’s budget, the 2023-24 version too has a deep focus on technology. From data to fintech to startups to foreign investment to emerging tech – this budget has something for everyone. The budget session of the parliament started from 01 February.

Due diligence 52

Due diligence Data protection Hearing Compliance 52

Ikigai Law

MAY 9, 2023

“ Should we fire up this bad boy ”- Television’s Homi Bhabha to Television’s Vikram Sarabhai at India’s first ever rocket launch ( Rocket Boys, 2022 ) Back in the 60s, Dr. Vikram Sarabhai – the pioneer of India’s space program, argued against Indians staying out of space. The US too is reportedly investigating AI regulation and ChatGPT.

Data protection 52

Data protection Court Hearing Law 52

Debevoise Data Blog

DECEMBER 16, 2021

The Virginia Consumer Data Protection Act (“VCDPA”) and amendments to the California Consumer Privacy Act (“CCPA”)—enshrined in the California Privacy Rights Act (“CPRA”)—take effect on January 1, 2023. In addition, the Colorado Privacy Act (“ColoPA”) takes effect on July 1, 2023.

Data protection 40

Data protection Compliance Law Law 40

Technology Law Dispatch

DECEMBER 1, 2022

On 24 November 2022, the Data Protection (Adequacy) (Republic of Korea) Regulations were laid before the UK parliament for approval. The Regulations are due to come into force on 19 December 2022.

Data protection 52

Data protection Law Law 52

Technology Law Dispatch

NOVEMBER 28, 2023

On 17 October 2023, the First-Tier Tribunal of the General Regulatory Chamber – Information Rights (the Tribunal) handed down its decision in Clearview AI Inc v The Information Commissioner [2023] UKFTT 819 , overturning the £7.5 million fine levied on Clearview AI Inc. Clearview) by the ICO last year.

Data protection 52

Data protection Law Law Court 52