Tag Archives: GDPR

GDPR Data Breach Report

A report produced by DLA Piper’s cybersecurity team On 25 May 2018 new data breach notification laws came into force across Europe, fundamentally changing the risk profile for organizations suffering a personal data breach. DLA Piper has compiled a report which takes a closer look at the number of data breaches notified to regulators since … Continue Reading

EU: EDPB Adopts “Information Note On GDPR Data Transfers”

The European Data Protection Board (EDPB) last week adopted a paper clarifying the position in relation to data transfers between the EU and UK in the event of a no deal Brexit. The EDPB confirmed that if the UK exits the EU without a deal, then with effect from 30 March 2019 the UK will … Continue Reading

California Consumer Privacy Act: what’s new for retailers?

By Carol A. F. Umhoefer, Jim Halpert, Jennifer M. Kashatus and Andrew A. Kingman The California Consumer Privacy Act (CCPA), adopted last summer, brings to California residents GDPR-like privacy rights, such as rights of access, information and deletion, and institutes statutory damage class actions for most data security breaches. Click here to read the full article.… Continue Reading

The Rise of the Data Protection Officer

Andrew Dyson and Robyn Palmer, from the UK Data Protection, Privacy and Security practice, explain how GDPR has led to “The Rise of the Data Protection Officer” in Israeli companies, for an article in Calcalist. Click here to read the full article.  … Continue Reading

The European Data Protection Board issues long-awaited guidelines on the territorial scope of the GDPR

The European Data Protection Board (EDPB) has issued for public comment its Guidelines on the territorial scope of the European Union General Data Protection Regulation (GDPR). One of the purposes of GDPR was to expand the application of EU data protection law, but the provisions setting out GDPR’s scope are not consistently clear. Approximately one year in … Continue Reading

California Consumer Privacy Act of 2018: Will You Be Ready?

By Jennifer Kashatus Effective January 1, 2020, a new game-changing privacy law will go into effect in California:  the California Consumer Privacy Act of 2018 (CCPA). The law will have profound implications for companies that collect personal information, as that term is broadly defined, about California consumers, even if the Company is not based in California. … Continue Reading

GDPR and its effect on technology innovation

Scott Thiel, a partner in our Hong Kong office, answers questions on what companies should do to comply with the European Union’s General Data Protection Regulation (GDPR) and its impact on the tech sector worldwide, especially in Asia. This interview is published in ejinsight in two parts, part one and part two.    … Continue Reading

Israel and GDPR: Processors take note

Andrew Dyson, head of the UK Data Protection and Privacy practice at DLA Piper, authored the Privacy and Data Protection chapter entitled, “Israel and GDPR: Processors take note,” in the IsraelDesks International Legal Guide 2018, an international legal and business guide for Israeli companies, click here to read more. Andrew acts as lead external counsel on major … Continue Reading

The GDPR’s impact on internal investigations

The European Union’s General Data Protection Regulation (GDPR) took effect on May 25, 2018 and has necessitated major compliance efforts by corporations doing business within the EU or (in most cases) processing the personal data of EU employees or customers. However, the GDPR’s effect on corporate internal investigations – both within the EU and abroad … Continue Reading

California privacy law poised to alter US privacy landscape

For decades, US state legislatures have taken an incremental approach to privacy regulation, passing legislation that addressed specific privacy issues (eg, a host of employee privacy laws, online privacy policy requirements, SSN privacy) but rejecting bills proposing broad-based creation of new privacy rights. This pattern changed abruptly this week in California, where both houses of … Continue Reading

Italian Privacy Code repealed, what to expect with the GDPR?

Italian companies can now rely on guidelines on how to comply with the European General Data Privacy Regulation (GDPR). These guidelines unveil some interesting positions. In recent weeks, the French and Dutch data protection authorities have announced their own approaches to the GDPR. Now, Garante per la protezione dei dati personali, Italy’s DP authority, has issued its six-step methodology … Continue Reading

Italian privacy legitimate interest gets complicated

Our colleague Giulio Coraggio explains how privacy legitimate interest might become difficult to manage in Italy following provisions introduced by means of the Budget Law: The Italian legislator seems not to like legitimate interest as legal basis of data processing. Indeed, under the current Italian Privacy Code, it required a previous approval from the Italian Data Protection … Continue Reading

Win Israel GC Confidential Dinner

On October 22, 2017, we hosted our third Win Israel GC Confidential Dinner entitled, “What Every GC Needs to Know About Using IP to Protect and Manage their Company’s Assets.” This exclusive dinner took place at the Whiskey Bar & Museum in Tel Aviv and included an intimate group of select General Counsel and in-house … Continue Reading

Global Employment Law: August 2017 Roundup

Please see our global roundup of employment developments for August 2017 to learn about the latest advancements in employment law around the world. Highlights include: New Zealand: Pay Equity and Equal Pay Bill introduced, Austria:  New quota for female board members from January 2018, Kuwait: Reform to end of service gratuity increases cost to employers, and Romania: Key changes to labor … Continue Reading

The data protection officer is a complex puzzle under the GDPR

The role of the data protection officer (DPO)  is is one of the most controversial changes introduced by the EU Privacy Regulation.  While this role was already provided by the privacy legislation of some countries, recently it has become compulsory in some circumstances.  In his article, our colleague Giulio Coraggio breaks down the liabilities and obligations of the DPO … Continue Reading

GDPR-ready contract terms: access our standard templates

One of the larger tasks facing organizations as they prepare for the new EU General Data Protection Regulation is how to tackle data governance and compliance controls in the supply chain. This is often the Achilles heel for compliance risk, and the very prescriptive requirements of GDPR will require a thorough review of due diligence, … Continue Reading

DLA Piper GDPR Tools – One Year to Go!

It is one year to the day until the European General Data Protection Regulation comes in to force. The clock is now ticking to fines of up to 4% of total worldwide annual revenue for failing to comply with the requirements of the EU GDPR. To assist your organization with preparing for May 25, 2018 … Continue Reading

Data Protection Officer Training Academy

In connection with the passage and staged rollout of the GDPR, we are pleased to be offering a new Data Protection Officer Training Academy aimed at providing guidance to any IT, compliance, or legal professional who is or may be taking on the role of Data Protection Officer under this new regime.  The DPO Training … Continue Reading

Patrick Van Eecke profiled in Globes: Israeli companies must beware of new EU online privacy laws

Patrick Van Eecke, Global Co-Chair of DLA Piper’s Data Protection, Privacy and Security Practice, received great coverage in Globes (in both Hebrew and English), following his June visit to Israel and the event on data protection that we hosted together with our friends at Yigal Arnon. Patrick’s comments underscore the critical need for Israeli companies … Continue Reading
LexBlog