Africa focus – Kenya’s Data Protection Act 

Since the passage of the EU’s General Data Protection Regulation (GDPR) in 2018, many countries are striving to be GDPR-compliant, and Kenya is no exception. As one of the growing fintech hot spots in Africa, the rapid advancement of technology in Kenya has been turning heads in data protection. It was recently reported that fintech innovations in Kenya immensely contributed to the sharp rise in the accessibility to basic [...]

By |2021-10-06T16:34:45+01:006th October, 2021|DPO, Governments, International|

HewardMills develops Transfer Impact Assessment template

Introduction On 4 June 2021, the European Commission adopted new Standard Contractual Clauses (EU SCCs) for the transfer of personal data from the European Economic Area (EEA) to third countries that are not deemed “adequate” by the European Commission. On 11 August 2021, the UK Information Commissioner's Office (ICO) published draft UK SCCs, formerly known as the International Data Transfer Agreement (IDTA), for UK companies to use [...]

By |2021-09-03T16:14:20+01:002nd September, 2021|DPO, International, ThoughtLeadership|

Brazilian consumer protection authority fines several banks for personal data misuse

Even before the Brazilian data protection law enforcement provisions come into force on 1 August 2021, the Brazilian Justice Minister, by way of the consumer protection authority Senacon, has issued significant fines to five large banks (Itaú, Safra, Cetelem, BMG and Pan) with a presence in Brazil for the misuse of consumer personal data. [...]

By |2021-07-28T17:22:05+01:0028th July, 2021|DPO, International, News|

Works councils and data privacy rights

​The Covid-19 pandemic saw the rise of remote working. In light of this, an increasing number of organisations are also seeking to adopt monitoring tools in order to observe the productivity of employees. Under Article 4 of the General Data Protection Regulation (GPDR), behavioural characteristics of an individual constitutes as personal data. Therefore, the GDPR [...]

By |2021-07-13T17:41:18+01:008th July, 2021|DPO, International, News, ThoughtLeadership|

Schrems II decision – sanctions and enforcement

It has been almost a year since the Court of Justice of the European Union (CJEU) issued its well-known Schrems II decision which invalidated the Privacy Shield for data transfers between the EU and US. The Court established that if Standard Contractual Clauses (SCCs) are used instead, the sending party must examine privacy laws [...]

By |2021-07-13T17:40:37+01:002nd July, 2021|DPO, Governments, International, News|

France and Germany crack down on cookie compliance

France Following the publication of the cookie guidelines and recommendations, the French Data Protection Authority (DPA), the CNIL, has issued 20 organisations with formal notices giving them a month to comply with cookie laws. These include international digital players and public bodies. If they fail to comply by the deadline, they face fines of up to 2% of their turnover. [...]

By |2021-06-02T10:38:02+01:0028th May, 2021|DPO, Governments, International, News|

The EU Commission has proposed harmonised rules on AI

The EU Commission has published draft regulations setting out harmonised rules on artificial intelligence (AI) that aim to regulate this rapidly developing area of technology. The regulations take a risk-based approach, identifying AI uses in one of the following categories: (i) an unacceptable risk, (ii) a high risk and (iii) a low or minimal risk. [...]

By |2021-05-05T15:49:22+01:0023rd April, 2021|DPO, Governments, International|

Data protection software tools

Data protection and privacy requirements have grown increasingly complex and while there is no substitute for a comprehensive privacy programme staffed by a knowledgeable and multidisciplinary team, there are increasingly more opportunities to enlist the help of software tools. All three companies reviewed here, offer their own custom API and set of automated tools designed to integrate with a company’s existing technology stack, [...]

By |2021-04-12T16:36:09+01:0012th April, 2021|DPO, International, News|

Tackling Covid-19 variants and its implications on global personal health data sharing

The evolving nature of the ongoing COVID-19 pandemic and its new variants has raised global concerns. In this regard, scientific research efforts across all ages and types of population continue to rise in the fight against the virus. This means more personal health data will be collected, used and further processed for scientific research. [...]

By |2021-04-12T16:16:58+01:0012th April, 2021|DPO, International, News|

The EDPB’s response to European Commission’s questions on health research and the application of the GDPR 

On 2 February 2021, the EDPB published its document in response to the request from the European Commission for clarifications on the consistent application of the GDPR, focusing on health research. The EDPB will explain more on the issue in its guidelines on the processing of personal data for scientific research purposes later in [...]

By |2021-04-12T16:17:08+01:0017th March, 2021|DPO, International, News|
Go to Top