Legal IT Group

APRIL 2, 2025

GDPR Compliance: From theory to practice GDPR has become a real challenge for businesses. GDPR compliance is not about formalities, but about real processes. That is why GDPR compliance is not just a set of rules or documents. So what does real GDPR compliance look like? So what does real GDPR compliance look like?

Compliance 130

Compliance Data protection Time-tracking Software 130

Legal IT Group

JANUARY 17, 2023

Until recently, lawyers have tended to focus their attention on the legislation of California , but from 2023, new rules on personal data protection will come into force not only in this state but also in Virginia, Colorado, Utah and Connecticut. Similarly to the VCDPA, no income threshold is applied.

Data protection 130

Data protection Law Law Attorney 130

Debevoise Data Blog

JUNE 1, 2023

Privacy and Data Protection , a leading UK journal on practical data protection compliance issues, has featured in its latest edition an article by Robert Maddox and Stephanie Thomas on the hallmarks of effective data protection by design and default under the EU and UK GDPR.

Data protection 52

Data protection Compliance 52

Inside Privacy

APRIL 28, 2023

On 29 March 2023, the UK Information Commissioner’s Office (“ICO”) published updated Guidance on AI and data protection (the “Guidance”) following “requests from UK industry to clarify requirements for fairness in AI”. AI has been a strategic priority for the ICO for several years.

Data protection 74

Data protection Compliance Law Law 74

Lineal Services

APRIL 22, 2025

The New Compliance Reality: Rising Expectations, Expanding Risks European legal and compliance teams are under increasing pressure. Regulatory investigations are growing in complexity, data sources are multiplying, and enforcement is becoming more aggressive.

Compliance 40

Compliance Data protection Legal technology Legal technology 40

Technology Law Dispatch

JUNE 23, 2023

On 19 June 2023, the Information Commissioner’s Office (ICO) has released new Guidance on Privacy-Enhancing Technologies (PETs) for Data Protection Compliance. Understanding PETs PETs are software and hardware systems that can help minimize use of personal data use while maximizing information security.

Data protection 52

Data protection Compliance Software Law 52

Legal IT Group

NOVEMBER 13, 2023

A data protection officer ( DPO ) is a specialist who helps companies ensure compliance with international data protection laws. In a nutshell, the DPO is a key person who helps the company in all business processes to ensure compliance with the data protection law.

Data protection 130

Data protection Compliance International law Law 130

Legal IT Group

JANUARY 10, 2023

Since the entry into force of the General Data Protection Regulation (GDPR), many companies processing the data of Europeans have faced the task of achieving the much desired GDPR-compliance. Why do we need this?

Compliance 130

Compliance Data protection Law Law 130

Legal IT Group

JUNE 5, 2023

A data protection impact assessment (DPIA) sounds like something big, complicated and problematic. DPIA stands for Data Protection Impact Assessment. A DPIA is typically conducted when a new project involving the specific processing of personal data is being implemented. Well, it is true. Let’s check.

Data protection 130

Data protection Compliance Time-tracking Law 130

Legal IT Group

SEPTEMBER 29, 2023

Brazil’s Lei Geral de Proteção de Dados Pessoais (or LGPD), similar to GDPR, CCPA and PIPEDA, regulates personal data protection. If the company does not process personal data in Brazil but still processes data to offer or supply goods or services to Brazil, the LGPD also applies in this case.

Data protection 130

Data protection Compliance Court Law 130

Kevin O'Keefe

FEBRUARY 25, 2024

On blogs, on websites, via contributed articles and more. Searching some law firm sites I found thirty or forty articles on AI in these various formats over the last four or five months. Regulatory Compliance: Assisting with compliance regarding AI-specific regulations and standards across different sectors.

Law firm 130

Law firm Intellectual Property Data protection Compliance 130

Legal IT Group

FEBRUARY 23, 2023

Introduction In our previous articles , we have already drawn your attention to the Brazilian data protection legislation which is quite similar to the General Data Protection Regulation (GDPR). Also, the ANPD has shared a new form which should be used for sending security incident reports by a data controller.

Data protection 130

Data protection Compliance e-filing Law 130

Legal IT Group

APRIL 2, 2025

Even though the lack of privacy measures will have the same data leakage, IoT developers still shall take all appropriate actions to protect the personal data of its users. Internet of Things and General Data Protection Regulation. Then what to consider when creating IoT devices for compliance with the GDPR?

Data protection 100

Data protection Compliance Lawyer Law 100

Debevoise Data Blog

OCTOBER 12, 2021

million fine against Austrian Post for channelling electronic data protection-related inquiries to a web form and not offering an additional email address, irrespective of the data subject option to also use non-electronic postal mail or customer service.

Data protection 52

Data protection Failure-to-appear Compliance e-records 52

Legal IT Group

APRIL 2, 2025

Definition of personal data 1.2. Rights of data subjects 1.4. Privacy concepts and roles Technologies, most impacting on privacy and data protection 2.1. Social media advertising, based on personal data 2.2. PRIVACY PROTECTION IN THE MODERN WORLD 1.1. Such an identifier is personal data.

Data protection 130

Data protection Compliance Software Machine learning 130

Legal IT Group

JULY 5, 2023

The role of codes of conduct in protecting personal data and what you need to know about compliance (and the consequences of deciding to comply but not doing so). Codes of conduct are referred to in Article 40 of the GDPR as a way of properly applying the GDPR. Why is adopting a code of conduct a good idea?

Data protection 130

Data protection Compliance Court Software 130

Debevoise Data Blog

MARCH 11, 2021

There were a few European data protection developments in February that companies may want to have on their radar. On the regulatory front, German DPAs have set up a taskforce to conduct random checks on companies’ cross-border data transfer compliance following Schrems II. We cover those developments (and more) below.

Data protection 52

Data protection Compliance Analytics Court 52

Debevoise Data Blog

JULY 20, 2021

Here are our highlights: European Commission adopts new Standard Contractual Clauses What happened : As reported in our blog post , the European Commission adopted its new Standard Contractual Clauses (“SCCs”) for the cross-border transfer of personal data from the EEA to “third countries”.

Data protection 52

Data protection e-filing e-records Compliance 52

Debevoise Data Blog

APRIL 8, 2021

million for vendor oversight failings, unlawful cross-border transfers What happened : The AEPD, the Spanish data protection authority (“DPA”), fined Vodafone Spain €8.15 4 million was for allegedly deficient oversight of Vodafone’s data processors. Here are our highlights of what you need to know.

Data protection 52

Data protection Compliance Court Law 52

Ikigai Law

AUGUST 9, 2023

This article discusses the first step for fintechs to get ready for the new data law. No piece of legislation has taken more punches than our elusive data protection law. The data law is nearly here! The Digital Personal Data Protection Bill, 2023 was introduced in Parliament on 3 August 2023.

Data protection 52

Data protection Analytics Compliance Law 52

Debevoise Data Blog

DECEMBER 10, 2020

The big news this November was the European Data Protection Board (the “EDPB”) issuing its highly anticipated post- Schrems II data transfer guidance, followed just a day later by the European Commission’s draft updated Standard Contractual Clauses (“SCCs”) (see our blog post here ).

Data protection 52

Data protection Dispute resolution Court Compliance 52

Debevoise Data Blog

APRIL 28, 2023

UK ICO updates guidance to clarify requirements for fairness in AI What happened : The UK ICO has updated its existing Guidance on AI and data protection following requests from industry to clarify requirements for fairness in AI. Norwegian Data Protection Authority fines medical device company c.$240,000

Data protection 52

Data protection Compliance e-filing Software 52

Debevoise Data Blog

DECEMBER 13, 2022

Management will also face new overarching and specific obligations to approve, oversee and manage DORA-related compliance frameworks. UK ICO provides new risk assessment tool for Article 46 transfers What happened : On 17 November 2022, the UK ICO published updated guidance on international data transfers.

Data protection 52

Data protection Due diligence Compliance Hearing 52

Legal IT Group

JANUARY 30, 2023

This is the amount of a fine paid by a well-known company for violating the rules of the European General Data Protection Regulation (the GDPR). In this article, you will learn about the top 7 largest fines of 2022 and the personal data practices that should be avoided in your business. What about 100,000 EUR?

Compliance 130

Compliance Data protection Analytics Law 130

Legal IT Group

NOVEMBER 10, 2023

Companies often need to transfer personal data to other countries while conducting their business operations. Since personal data is not everywhere reliably protected by law, there are plenty of requirements for its legal transfer. In this article, we share how to transfer data from the UK using recently adopted instruments.

Data protection 130

Data protection Compliance Law Law 130

new tech law blog

JANUARY 2, 2023

In this regard, we describe below what they should take under consideration in light of Polish labour law and data protection law. Therefore, implementation and exploitation of such solutions by the employer (as a controller of employee data) must be done in compliance with the rules for processing of personal data under Art.

Data protection 52

Data protection Law Law Time-tracking 52

Legal IT Group

OCTOBER 23, 2023

However, the personalized advertising ecosystem relies heavily on the personal data of users, raising questions about data protection and privacy requirements. So, what should businesses take into account to comply with data protection requirements?

Data protection 130

Data protection Time-tracking Machine learning Compliance 130

Debevoise Data Blog

NOVEMBER 10, 2020

ICO targets the data broking industry : On 27 October, the ICO demanded that Experian make sweeping changes to data protection practices within its direct marketing business within three months or face further enforcement action. We will continue to report on developments as Experian’s appeal progresses.

Data protection 52

Data protection Intellectual Property e-records Machine learning 52

Debevoise Data Blog

MAY 7, 2021

The key development from April must be the European Data Protection Board (“EDPB”) approving the draft UK adequacy decisions from the European Commission (the “Commission”). Companies will be relieved that they are one step closer towards maintaining the seamless flow of data between the EU and the UK.

Data protection 52

Data protection Court Compliance Hearing 52

Debevoise Data Blog

OCTOBER 20, 2023

The CMA further highlighted that transparency around the data used to train FMs is critical to reducing bias and improving accuracy of outputs, and to ensuring accountability. Two areas that have been stressed previously in the data protection compliance context.

Data protection 52

Data protection Intellectual Property Compliance Law 52

Legal IT Group

MARCH 21, 2023

Therefore, a logical question arises: what should an employer know about the use of personnel monitoring tools in order not to violate the requirements of personal data protection legislation? Justifying the need for monitoring The General Data Protection Regulation (GDPR) does not prohibit surveillance of employees in the workplace.

Data protection 130

Data protection Time-tracking Software Compliance 130

Legal IT Group

APRIL 28, 2023

In March 2023, Meta Platforms lost a class action lawsuit against the Dutch Data Privacy Stichting in an Amsterdam court, acting in conjunction with the Consumentenbond, the Dutch Consumers’ Association. The concept of necessity has an independent meaning in European Union law, which must reflect the objectives of data protection law.

Data protection 130

Data protection Time-tracking Court Lawsuit 130

Legal IT Group

JUNE 8, 2023

This article will help you understand what to do immediately after the software engineering work is completed so that the use of AI is healthy (and does not harm the trust of concerned users). In fact, the GDPR itself forces you to disclose information about the use of AI, right in the text of several of its articles. What to change?

Compliance 130

Compliance Data protection Software Law 130

Lineal Services

APRIL 22, 2025

Understanding the Brazilian Challenge: Complex Compliance, Global Pressure Brazil poses unique forensic and compliance challenges that demand rigorous preparation: LGPD compliance is non-negotiable. The General Data Protection Law (LGPD) places strict guardrails on the collection and handling of personal data.

Compliance 40

Compliance Data protection Legal technology Legal technology 40

Centerbase

APRIL 28, 2023

Compliance is a priority for law firms. And legal software can be a key tool in helping you meet your firm’s compliance requirements. In this article, we’ll cover major compliance issues that law firms need to monitor and solutions that can reduce your risks. What online compliance risks does my law firm face?

Compliance 52

Compliance Law firm Legal software Legal software 52

Debevoise Data Blog

JUNE 16, 2021

May saw useful reminders for companies, including: (i) the need to appoint an EU – and/or UK – representative if caught by the (UK) GDPR’s extraterritorial effect; (ii) that regulators are increasingly focused on adtech and cookies compliance; and (iii) that the GDPR applies not just in the EU and UK but also Iceland, Liechtenstein and Norway.

Data protection 40

Data protection Compliance Court Time-tracking 40

Centerbase

MARCH 31, 2025

Managing a law firm requires more than overseeing cases and delegating tasksit demands a strategic approach that balances client expectations, regulatory compliance, and operational efficiency. This includes financial management, client communication, human resources, compliance, marketing, and technology integration.

Law firm 52

Law firm Time-tracking Law Law 52