Ikigai Law

AUGUST 4, 2023

India’s Digital Personal Data Protection Bill 2023 was introduced in Parliament on 3 August 2023. Once passed, the law will govern how businesses collect and use individuals’ data. What data is covered? Personal data, i.e., data about an individual that can identify them. What else should fiduciaries do? (a)

Data protection 52

Data protection Law Law e-records 52

Debevoise Data Blog

SEPTEMBER 27, 2023

The AEPD held that a DPO cannot hold a position that leads them to determine the purposes and means of data processing. The scale and data protection risks associated with such technologies has been further complicated recently by their increasing integration with artificial intelligence systems.

Data protection 52

Data protection Compliance e-filing Court 52

Legal Tech Blog

SEPTEMBER 7, 2023

New data protection laws, increasing regulation, greater risk of cyber attacks: The challenges for entrepreneurs are becoming ever greater. However, compliance can be largely automated through artificial intelligence. On September 1, a new data protection law (revDSG) has come into force in Switzerland.

Compliance 67

Compliance Data protection Legal tech Legal tech 67

Ikigai Law

AUGUST 9, 2023

No piece of legislation has taken more punches than our elusive data protection law. The data law is nearly here! The Digital Personal Data Protection Bill, 2023 was introduced in Parliament on 3 August 2023. Say you are a payment aggregator or a KYC service provider or an AI-based data analytics service provider.

Data protection 52

Data protection Analytics Compliance Law 52

Debevoise Data Blog

JUNE 1, 2023

Privacy and Data Protection , a leading UK journal on practical data protection compliance issues, has featured in its latest edition an article by Robert Maddox and Stephanie Thomas on the hallmarks of effective data protection by design and default under the EU and UK GDPR.

Data protection 52

Data protection Compliance 52

Technology Law Dispatch

OCTOBER 26, 2023

On 3 October 2023, the UK Information Commissioner’s Office organised its annual Data Protection Practioner’s Conference 2023 (DPPC 2023). Any framework could be used as a baseline as long as the focus is on security as an outcome and not compliance. Here are the takeaways from the DPPC 2023 (the event sessions available here ).

Data protection 59

Data protection Due diligence Compliance Law 59

Debevoise Data Blog

APRIL 28, 2023

UK ICO updates guidance to clarify requirements for fairness in AI What happened : The UK ICO has updated its existing Guidance on AI and data protection following requests from industry to clarify requirements for fairness in AI. Norwegian Data Protection Authority fines medical device company c.$240,000

Data protection 52

Data protection Compliance e-filing Software 52

Debevoise Data Blog

JUNE 8, 2023

Third country data transfers : Businesses that transfer personal data outside of the EEA may want to review their transfer mechanisms in light of new guidance on the EU and South East Asia SCCs, and the DPC’s record-breaking €1.2 billion fine against Meta. These developments, and more, covered below. (1)

Data protection 52

Data protection Compliance Dispute resolution e-records 52

Debevoise Data Blog

MAY 12, 2023

Key takeaways this April include: UK children’s data protection focus continues: Businesses may wish to review policies and procedures for dealing with children’s data in light of recent UK ICO fines and guidance, especially to ensure that terms of use are adequately enforced.

Data protection 52

Data protection Software design Machine learning Software 52

new tech law blog

JANUARY 2, 2023

In this regard, we describe below what they should take under consideration in light of Polish labour law and data protection law. Therefore, implementation and exploitation of such solutions by the employer (as a controller of employee data) must be done in compliance with the rules for processing of personal data under Art.

Data protection 52

Data protection Law Law Time-tracking 52

Debevoise Data Blog

AUGUST 16, 2023

. : Business may want to revisit their cross-border data transfer arrangements following the new adequacy decision for the EU-U.S. Data Privacy Framework, assess whether they are eligible to self-certify and, if they are, whether it makes sense to. Data Privacy Framework (the “DPF”). Data Privacy Framework (the “DPF”).

Data protection 40

Data protection Analytics Compliance Time-tracking 40

Debevoise Data Blog

DECEMBER 13, 2022

Management will also face new overarching and specific obligations to approve, oversee and manage DORA-related compliance frameworks. The ban follows recent public sector scandals involving the use of facial recognition technology. Despite this, there remain public interest exemptions for court proceedings and law enforcement purposes.

Data protection 52

Data protection Compliance Due diligence Hearing 52

Debevoise Data Blog

OCTOBER 20, 2023

The CMA further highlighted that transparency around the data used to train FMs is critical to reducing bias and improving accuracy of outputs, and to ensuring accountability. Two areas that have been stressed previously in the data protection compliance context.

Data protection 52

Data protection Intellectual Property Compliance Law 52

MatterSuite

MAY 8, 2023

Therefore, it is crucial for legal businesses to implement robust cyber security for law firm compliance measures to protect themselves and their clients. What is Cyber Security Compliance? Compliance requirements are usually set by government and regulatory bodies, as well as industry associations.

Compliance 98

Compliance Failure-to-appear Intellectual Property Data protection 98

Ikigai Law

AUGUST 3, 2023

Our summary of the Digital Personal Data Protection Bill, 2023 The Digital Personal Data Protection Bill, 2023 ( 2023 Bill ) was tabled in Parliament on 3 August 2023. It is the fifth – and likely final – iteration of India’s efforts to formulate a personal data protection law.

Data protection 52

Data protection Compliance e-filing Hearing 52

Technology Law Dispatch

MARCH 24, 2023

On 8 March 2023, the UK government presented a new version of the UK Data Protection and Digital Information Bill No.2. As with the previous bill, the new bill aims to alleviate the burden of compliance with the UK GDPR and its implementing UK Data Protection Act (2018) for organisations in the UK.

Data protection 52

Data protection Failure-to-appear Compliance Software 52

Legally Speaking

JUNE 11, 2023

From Data Protection (including GDPR) to Privacy & Security, Cybersecurity, Social Media Law, E-Commerce, website compliance, and even matters concerning the Freedom of Information Act, our guest, Peter Wright, is an absolute authority in the field. The scary part of starting a law firm.

Data protection 40

Data protection Law Law Paralegal 40

Debevoise Data Blog

OCTOBER 12, 2021

million fine against Austrian Post for channelling electronic data protection-related inquiries to a web form and not offering an additional email address, irrespective of the data subject option to also use non-electronic postal mail or customer service. See , our post on what to do in light of the new EU SCCs.

Data protection 52

Data protection Failure-to-appear Compliance e-records 52

Debevoise Data Blog

JULY 20, 2021

Here are our highlights: European Commission adopts new Standard Contractual Clauses What happened : As reported in our blog post , the European Commission adopted its new Standard Contractual Clauses (“SCCs”) for the cross-border transfer of personal data from the EEA to “third countries”.

Data protection 52

Data protection e-filing Compliance e-records 52

Global LegalTech Hub

MAY 7, 2024

Countries like Italy initially blocked ChatGPT's use, later reinstating it with promises of increased transparency and data protection. The Ibero-American Data Protection Network (RIPDP) warns of the risks associated with using AI services like those developed by OpenAI, L.L.C.,

Data protection 130

Data protection Compliance Law Law 130

Debevoise Data Blog

MARCH 11, 2021

There were a few European data protection developments in February that companies may want to have on their radar. On the regulatory front, German DPAs have set up a taskforce to conduct random checks on companies’ cross-border data transfer compliance following Schrems II. We cover those developments (and more) below.

Data protection 52

Data protection Compliance Analytics Court 52

Debevoise Data Blog

FEBRUARY 20, 2023

When calculating the fine, the CNIL cited the large scale of the data processing and the high proportion of minors (38% were between 13 and 17) as aggravating factors. The fines follow non-compliance notices CNIL served to 60 organisations that did not allow users to refuse cookies as easily as to accept them.

Data protection 52

Data protection Compliance e-records Court 52

Legal IT Group

JANUARY 4, 2023

Those who process personal data of EU residents should comply with the requirements of the General Data Protection Regulation or GDPR. Non-compliance with GDPR may result in hefty fines and reputational losses. However, it is not enough to just formally have such policies in place.

Compliance 52

Compliance Data protection Law Law 52

Debevoise Data Blog

APRIL 8, 2021

million for vendor oversight failings, unlawful cross-border transfers What happened : The AEPD, the Spanish data protection authority (“DPA”), fined Vodafone Spain €8.15 4 million was for allegedly deficient oversight of Vodafone’s data processors. Here are our highlights of what you need to know.

Data protection 52

Data protection Compliance Court Law 52

Debevoise Data Blog

MAY 7, 2021

The key development from April must be the European Data Protection Board (“EDPB”) approving the draft UK adequacy decisions from the European Commission (the “Commission”). Companies will be relieved that they are one step closer towards maintaining the seamless flow of data between the EU and the UK.

Data protection 52

Data protection Court Compliance Hearing 52

CaseFox

JUNE 3, 2023

While technology and digitalization offer convenience and efficiency, they also come with legal compliance responsibilities. This makes it crucial for law firms to prioritize the protection of sensitive payment information. One critical aspect of achieving this is maintaining compliance with the Payment Card Industry (PCI) standards.

Compliance 52

Compliance Law firm Law Law 52

Debevoise Data Blog

SEPTEMBER 12, 2022

This blog post addresses key aspects of the Amendments that impact multinational companies: (i) expanded extraterritorial effect; (ii) enhanced cross-border data transfer restrictions; and (iii) mandatory data breach notification. Companies will also be required to conduct a cross-border data transfer risk assessment.

Data protection 52

Data protection Compliance Time-tracking Litigator 52

Debevoise Data Blog

NOVEMBER 10, 2020

ICO targets the data broking industry : On 27 October, the ICO demanded that Experian make sweeping changes to data protection practices within its direct marketing business within three months or face further enforcement action. We will continue to report on developments as Experian’s appeal progresses.

Data protection 52

Data protection Intellectual Property e-records Machine learning 52

Centerbase

APRIL 28, 2023

Compliance is a priority for law firms. And legal software can be a key tool in helping you meet your firm’s compliance requirements. In this article, we’ll cover major compliance issues that law firms need to monitor and solutions that can reduce your risks. What online compliance risks does my law firm face?

Compliance 52

Compliance Law firm Legal software Legal software 52

Debevoise Data Blog

JUNE 16, 2021

May saw useful reminders for companies, including: (i) the need to appoint an EU – and/or UK – representative if caught by the (UK) GDPR’s extraterritorial effect; (ii) that regulators are increasingly focused on adtech and cookies compliance; and (iii) that the GDPR applies not just in the EU and UK but also Iceland, Liechtenstein and Norway.

Data protection 40

Data protection Compliance Court Time-tracking 40

LawSites

SEPTEMBER 8, 2021

20, is similar to Europe’s General Data Protection Regulation (GDPR) and applies to any organization that has employees in China or does business in China. China’s new law, just passed on Aug. Organizations must comply with the law by Nov.

Compliance 74

Compliance Law Law Data protection 74

Legal IT Group

NOVEMBER 13, 2023

A data protection officer ( DPO ) is a specialist who helps companies ensure compliance with international data protection laws. In a nutshell, the DPO is a key person who helps the company in all business processes to ensure compliance with the data protection law.

Data protection 52

Data protection Compliance International law Law 52

CaseFox

MAY 30, 2023

In today’s digital age, data security is a critical concern for law firms. As custodians of sensitive client information, law firms must take proactive measures to safeguard data from cyber threats and ensure compliance with data protection regulations.

Law firm 98

Law firm Data protection Law Law 98

Simple Legal

APRIL 18, 2024

Mitigating security risks: SimpleLegal’s end-to-end encryption ensures that all files, during both transmission and storage, are safeguarded against unauthorized access, offering peace of mind and robust data protection. Matter files: Legal teams can manage and share matter-related files across a spectrum of practice areas.

Compliance 81

Compliance Data protection Corporate law Litigator 81

Technology Law Dispatch

JULY 28, 2023

The recent reprimands by ICO shed light on areas of data protection where organizations across the public and private sectors have fallen foul of the UK GDPR and are instructive as to how organisations can improve their practices. Familiarize themselves with the statutory requirements for responding to DSARs and ensure compliance.

Data protection 52

Data protection Compliance Law Law 52

MatterSuite

JUNE 1, 2023

The repercussions of a data breach in the legal sector can be severe, ranging from reputational damage to regulatory non-compliance. In this blog, we will explore the essential elements of data security that every legal department should know of. We will delve into the potential risks and challenges faced by law firms.

Intellectual Property 98

Intellectual Property Data protection Compliance Law firm 98

MatterSuite

JUNE 1, 2023

The repercussions of a data breach in the legal sector can be severe, ranging from reputational damage to regulatory non-compliance. In this blog, we will explore the essential elements of data security that every legal department should know of. We will delve into the potential risks and challenges faced by law firms.

Intellectual Property 98

Intellectual Property Data protection Compliance Law firm 98