Ministry of Communications clarifies the scope of the amended Russian Personal Data Localization Law

September 2, 2015   Dear Sirs, We would like to update you on the latest news regarding the Federal Law № 242-FZ introducing amendments to the Federal Law “On personal data” and to the Federal Law “On information, information technologies and protection of information” (hereinafter – “Personal Data Localization Law”) which has come into force from […]

Tags: ,

Bank of England issue questionnaire designed to increase cyber security

The Bank of England recently wrote to insurance companies with a questionnaire designed to help the Prudential Regulation Authority (PRA) get a sense of the sector’s approach to cyber security. The questionnaire also includes questions from the Financial Conduct Authority (FCA). The questionnaire is just the latest in a line of initiatives from regulators designed […]

Tags: ,

Jonathan Armstrong, André Bywater, Schrems case falls at first hurdle

The result of one of Europe’s most anxiously awaited data protection cases came out last week. We have previously reported on the action brought by Max Schrems in Austria against Facebook. Our previous alert with background on the case is here. What happened? On July 1, 2015, the Vienna Regional Court (Landesgericht) rejected the Schrems […]

Tags: ,

NYSE, a 2015 Survey, Cybersecurity in the Boardroom

In May 2015, New York Stock Exchange NYSE Governance Services surveyed nearly 200 directors of public companies representing a variety of industries—including financial services, technology, and health care—to discover how they view cybersecurity in the boardroom. The goal of the survey goal was to gain insight into how cybersecurity is being understood, prioritized, and addressed at the […]

Tags:

Conseil d’Etat “sanctioned” French Data Protection Authority For Not Anonymizing A Decision

The Conseil d’Etat (the French supreme administrative court) sanctioned the CNIL (Commission Nationale de l’Information et des Libertés) which is the Data Protection Agency for not anonymizing the personal data contained in a decision issued that the DPA issued, as recommended by the same CNIL in Délibération n° 01-057 du 29 novembre 2001 portant recommandation sur la diffusion de données […]

Tags: ,

Data breach notification obligation and increased fines for privacy violations in The Netherlands

On May 26, 2015, the Eerste Kamer (First Chamber), aka the Dutch Senate, passed into law a draft bill that had been approved by the Tweete Kamer (Second Chamber), aka House of Representatives, in March (text available in Dutch here). The Law introduces an obligation to notify the Dutch DPA ‘without delay’ in case of a data breach. After broadening the DPA’s […]

Tags: ,

1 18 19 20 21 22 27