Over two years have passed since the highly debated General Data Protection Regulation (GDPR) came into effect on 25 May 2018. By updating its predecessor – the Data Protection Directive – it forcefully placed data protection on the compliance agenda in the European Union and generated greater awareness of privacy rights. As a result, supervisory [...]
The EU-US Privacy Shield allows companies to adhere to higher privacy standards before transferring data to the US. This system has facilitated transnational digital trade for more than 5,300 companies and served as an important instrument for the transfer of EU residents’ data to the US. However, on July 16, the Court of Justice [...]
July 1, 2020 was the official deadline to meet the standards of the California Consumer Privacy Act of 2018 (CCPA), which came into effect. While arguably the most advanced consumer privacy protection law in the US, the CCPA is notably less extensive than its EU General Data Protection Regulation (GDPR) counterpart. This means a [...]
EU Data Protection Authority’s response, balancing data protection against public health, economic concerns and official global pandemic. By now we are all aware that we are living in unprecedented times across social, economic, and political spheres. Aside from emergency laws, legal obligations remain consistent, with the General Data Protection Regulation (GDPR) being no exception. While there are exceptions for use of data for public interest, the scientific and health research [...]
‘…even in these exceptional times, the data controller must ensure the protection of the personal data of the data subjects’, Andrea Jelinek, Chair of the European Data Protection Board The European Data Protection Board’s advice During epidemics and pandemics, employers and public health authorities can process health data lawfully without the need to obtain [...]
Last month, the European Commission released its Data Strategy with the aim to create a single data market, promoting greater data sharing to benefit businesses across all industries and sectors in the European Union. In light of this direction outlined by the European Commission, we take a closer look at the regulations and implications for [...]
Over the last year data security has become an even more critical business focus. According to Forensics Research, the Global GDPR Services Market is expected to reach $3.3 billion by 2025. After the implementation of the GDPR, other global jurisdictions are following suit and using it to build their own legislation. Our CEO, Dyann Heward-Mills takes [...]
Popular discussions on children’s data protection are often framed as a zero sum game between those who want children to be protected in the digital age and those who fear a chilling effect on content creation. But this is a false choice. It is possible to do both. Proper safeguards – including embedding privacy [...]
In one of the biggest data breaches in the Information Age, a hacker accessed personal details of 106 million Capital One consumers. Through this breach, the hacker was able to gain access to 1 million Canadian Social Insurance numbers, 140,000 Social Security numbers and 80,000 bank account numbers. The US Department of Justice also [...]
The EU GDPR compliance requirements call for certain organisations to appoint a data protection officer (DPO). Even where such an appointment is not mandatory, it is often still advisable for organisations processing personal data to appoint one. The European Data Protection Board, formerly the Article 29 Working Party, has advised that DPOs are the [...]
HewardMills Ltd is a company registered in England and Wales | Registered office: 77 Farringdon Road, London EC1M 3JU | Registration number: 11211970 | All rights reserved | © Copyright 2020 – 2024 | Privacy notice
