New guidelines on GDPR implementation published by the Spanish DPA

Inside its newly created website section on GDPR, the Agencia Española de Protección de Datos (AEPD) has recently published three guidelines to assist organizations to comply with the new Regulation: The Guidelines for the data controllers (useful check list is included). Available (in Spanish) here. The Guidelines for entering into agreements between controllers and processors. […]

Compliance with GDPR is a priority in data-privacy agenda of 92% of big US organizations, a PWC’s survey finds

In a recent PWC’s survey, 92% of the surveyed organizations declared that compliance with EU General Data Protection Regulation (GDPR) is a “top priority on their data-privacy and security agenda in 2017”, being either a top priority or one of the top priorities. The survey was conducted among companies with more than 500 employees. More information here. […]

Tags:

EU Commission’s ePrivacy Regulation Proposal to align electronic communications privacy to GDPR

On January 10, 2017, the European Commission issued a draft for a new ePrivacy Regulation (“Proposal”) that would replace Directive 2002/58/EC (‘the ePrivacy Directive’), implementing a higher level of privacy for all electronic communications. Scope of application: The Proposal applies to all electronic communication providers – including EU institutions – and aim at aligning the existing rules, which date back […]

Tags: ,

UK confirms that it will opt into GDPR in 2018

Following ICO’s comments on Brexit, on October 24, 2016, the UK Secretary of State Karen Bradley MP used her interview before the Culture, Media and Sports Select Committee to confirm UK’s participation to the General Data Protection Regulation (GDPR) coming into effect in the spring of 2018. The Secretary said that: “We will be members […]

Tags: ,

French DPA’s consultation to help prepare for the GDPR now closed

On July 19, 2016, the consultation on the EU Data Protection Regulation (GDPR) launched by the French data protection agency “CNIL” closed. The consultation concerned four main topics: Data Protection Officers, data portability, Privacy Impact Assessment, and certification. The contributions collected are available here. For more information, Francesca Giannoni-Crystal Follow us on& Like us on […]

Tags: ,

Privacy Shield officially adopted by the EU Commission … but American organizations “targeting Europe” might want to consider whether GDPR compliance would make more sense

On July 12, 2016, the European Commission officially approved the Privacy Shield, issuing the decision of adequacy (“Decision”). The Privacy Shield is supposed to provide a safe mechanism to transfer personal data from the EU to the US for those organizations that comply with the framework.  Compared to the Safe Harbor (which the Privacy Shield […]

Tags: ,

French DPA (CNIL) launches consultation to help prepare for the GDPR

On June 16, 2016, the French data protection agency (CNIL) opened a consultation on the EU Data Protection Regulation (GDPR). The consultation aims at helping the Article 29 Working Party with the guidelines that it is preparing on Data Protection Officers, data portability, Privacy Impact Assessment, and certification. The purpose is to collect concrete questions, […]

Tags: ,

GDPR published in Official Journal of the European Union

On May 4, 2016, Regulation (EU) 2016/679 of 27 April 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), (in short “GDPR” ) was published in the Official Journal of the European Union. The GDPR shall […]

Tags:

UK DPA’s 12-step checklist to help organizations to prepare for GDPR

The Information Commissioner’s Office (ICO), i.e. the United Kingdom’s Data Protection Authority, has prepared a checklist with 12 steps that organization can take now to prepare for the General Data Protection Regulation (GDPR) which is expected to come into force in mid- 2018: Awareness: make sure that decision makers and key people in each organization must be […]

Tags:

EU Parliament approves GDPR

The European Parliament has approved the new General Data Protection Regulations (GDPR). European Commission First Vice-President Frans Timmermans, Vice-President in charge of the Digital Single Market Andrus Ansip, and Commissioner for Justice, Consumers and Gender Equality, Věra Jourová issued a joint statement welcoming the approval. Read more here. For more information, Francesca Giannoni-Crystal.

Tags:

1 4 5 6 7 8 21