LinkedInTwitter

Does ‘consent or pay’ comply with the GDPR’s concept of freely given consent? European regulators weigh in on digital advertising’s most contentious topic.

Late last year, following half a decade of legal debate and enforcement, Meta started offering EU-based Facebook and Instagram users a paid subscription tier without behavioural advertising.  With stricter data protection requirements hitting ad revenues, companies are seeking new ways to monetise personal data. Under “consent or pay”, users must pay a monthly fee [...]

By |2024-04-29T16:28:48+01:0027th April, 2024|DPO, Governments, News|
Read More

There’s a new US federal privacy bill: What happens if it passes — or doesn’t?

The American Privacy Rights Act (APRA) is an ambitious second shot at a US federal privacy law, announced on April 7 2024.  Unlike the vast majority of other countries, the US does not have a generally applicable privacy law. A patchwork of state and sector-specific laws provides an inconsistent set of individual privacy rights [...]

By |2024-04-29T16:28:23+01:0026th April, 2024|DPO, Governments, News, US Privacy Law|
Read More

March global DPP regulatory roundup

European Commission's use of Microsoft 365 found in violation of EU data protection law  The European Data Protection Supervisor (EDPS) has found that the European Commission's use of Microsoft 365 breaches numerous sections of EU Regulation 2018/1725, which serves as the data protection law for EU institutions and agencies. Namely, the Commission's failure to [...]

By |2024-03-28T13:55:59+00:0027th March, 2024|DPO, Governments, News|
Read More

Helen Dixon leaves office: What’s in store for Ireland’s new Data Protection Commissioners?

Helen Dixon has left her post as Irish Data Protection Commissioner after a decade of issuing some of Europe’s most high-profile enforcement decisions. She is replaced by two new Commissioners: Ex-human rights lawyer Des Hogan and former Deputy Commissioner Dale Sunderland. Throughout her ten-year term, Dixon led on the regulation of the many US [...]

By |2024-03-27T16:46:14+00:0026th March, 2024|DPO, Governments, News|
Read More

ESG will become mandatory for thousands of companies by 2027 Here’s how improved data protection can help you prepare

Under the EU’s new Corporate Sustainability Reporting Directive (CSRD), thousands of companies will soon have to consider Environmental, Social, and Governance (ESG) issues for the first time. The EU always requires some companies to report their impact on the environment and society across many different fields -from carbon emissions to gender representation. The CSRD will [...]

By |2024-03-28T11:11:17+00:0025th March, 2024|Artificial Intelligence, DPO, Governments, News|
Read More

As new AI law pass, remember: AI is already regulated

This month, the European Parliament approved the AI Act, which it called the “first regulation on artificial intelligence.” In the US, Utah passed the AI Policy Act, with some declaring it America’s first private-sector AI law. As organisations increase their use of AI, we need new laws to help manage new risks. But this [...]

By |2024-03-27T15:42:15+00:0024th March, 2024|Artificial Intelligence, DPO, Governments, News|
Read More

Latest regulatory roundup in global data protection and privacy

Nigeria DPC publishes guidance for data controller and processor registration requirements The Nigeria Data Protection Commission (NDPC) has released guidelines on the registration obligations for what it deems "data controllers and data processors of major importance," as stipulated by Nigeria’s Data Protection Act (NDPA).  Passed in June 2023, the Act introduced a crucial requirement [...]

By |2024-02-29T18:31:20+00:0027th February, 2024|DPO, Governments, News|
Read More

The ‘right of access’: Renewed focus on a long-established cornerstone of data protection

The right to access personal data is fundamental to data protection, and it was present in data protection laws as early as the Council of Europe’s Convention 108 (1981) and the UK’s Data Protection Act 1984.  But providing access to personal data continues to challenge many organisations—particularly those handling high volumes of information or [...]

By |2024-02-29T18:25:28+00:0022nd February, 2024|DPO, Governments, News|
Read More

Three key takeaways from DoorDash’s California privacy settlement

California Attorney General (AG) Rob Bonta reached a settlement with food delivery company DoorDash on 21 February — the second-ever enforcement action taken under the California Consumer Privacy Act (CCPA) since the law took effect in 2020.  Under a proposed order, DoorDash must pay a $375,000 civil penalty, enter into a three-year compliance programme, [...]

By |2024-02-29T18:26:57+00:0019th February, 2024|DPO, Governments, News|
Read More

Latest regulatory roundup in global data protection and privacy

The new EU Data Act enters into force The EU regulation on harmonized rules on fair access to and use of data, (the Data Act) was published in the EU’s official journal on 22 December 2023, and entered into force on 11 January 2024.  The Data Act sets rules for accessing and using data [...]

By |2024-01-31T15:01:23+00:0029th January, 2024|DPO, Governments, News|
Read More

We partner with the world’s most forward-thinking organisations to set global standards on Data Protection & Privacy.

+44 20 4540 5853
dpo@hewardmills.com

HewardMills Ltd is a company registered in England and Wales | Registered office: 77 Farringdon Road, London EC1M 3JU | Registration number: 11211970 | All rights reserved | © Copyright 2020 – 2024 | Privacy notice

Go to Top