Dr. Detlev Gabel

Dr. Detlev Gabel

White & Case LLP

Contact

Readers' Choice Awards

Data Privacy
View Bio
RSS

Latest Publications

Share:

CJEU: Competitors Can Sue over Data Protection Violations

The German Federal Court of Justice (Bundesgerichtshof), tasked with resolving a conflict between two competing pharmacists, sought guidance from the Court of Justice of the European Union ("CJEU") on interpreting the General...more

10/14/2024  /  Competition , Court of Justice of the European Union (CJEU) , Data Protection , Data-Sharing , General Data Protection Regulation (GDPR) , Germany , Over The Counter Drugs (OTC) , Pharmaceutical Industry , Policy Violations , Privacy Laws

AI implementation & data protection regulation: German authorities publish guidelines for implementing AI in compliance with the...

The German federal and state data protection authorities published guidelines for the implementation and use of AI in compliance with the European Union's regulation of personal data ("Guidelines")....more

5/29/2024  /  Artificial Intelligence , Compliance , Data Protection , General Data Protection Regulation (GDPR) , Germany , Personal Data , Pharmaceutical Industry , Transparency

European Advocate General rejects the need for “strict liability” in GDPR violations – The last word, however, is not yet spoken

It is, by now, well known that not taking data protection seriously can prove costly for organizations. Since the introduction of the European General Data Protection Regulation (the "GDPR") in 2018, non-GDPR-compliant...more

5/9/2023  /  Advocate General , Court of Justice of the European Union (CJEU) , Data Protection , Data Protection Authority , EU , European Court of Justice (ECJ) , General Data Protection Regulation (GDPR) , Penalties , Strict Liability

Rules on Cross-Border Data Transfers become (a little) clearer

In recent weeks, there has been a series of important developments affecting cross-border data transfers. First, on 21 June 2021, the European Data Protection Board ("EDPB") published its final, much-anticipated...more

7/6/2021  /  Court of Justice of the European Union (CJEU) , Cybersecurity , Data Protection , EU , EU-US Privacy Shield , General Data Protection Regulation (GDPR) , International Data Transfers , Personal Data , Standard Contractual Clauses

Just Arrived – the New Standard Contractual Clauses for International Data Transfers

The European Commission recently published an updated version of the standard contractual clauses for the transfer of personal data to third countries ('SCCs'). Companies can use such SCCs to provide the appropriate...more

6/21/2021  /  Cybersecurity , Data Protection , EU , EU-US Privacy Shield , European Commission , European Economic Area (EEA) , General Data Protection Regulation (GDPR) , International Data Transfers , Personal Data , Schrems I & Schrems II , Standard Contractual Clauses

Compensating non-material damages based on Article 82 GDPR – is there a de minimis threshold?

Germany's Federal Constitutional Court holds that the question should be referred to the European Court of Justice - Is a data subject entitled to compensation from a controller or processor if the data subject's GDPR...more

3/3/2021  /  Damages , Data Controller , Data Processors , Data Protection , EU , European Court of Justice (ECJ) , General Data Protection Regulation (GDPR)

UK Supreme Court – Employers not liable for data breaches caused by rogue employees

In a decision that will come as a relief to many businesses, the UK Supreme Court has unanimously held that companies should not be held vicariously liable for the actions of rogue employees who leak personal data....more

4/3/2020  /  Appeals , Data Breach , Employee Misconduct , Personally Identifiable Information , UK , UK Data Protection Act , UK Supreme Court , Vicarious Liability

COVID-19 and Data Protection Compliance in Germany

Following the outbreak of COVID-19 and its development into a global pandemic, organisations have been implementing exceptional measures to safeguard employees, customers and others against the health threat that is being...more

4/3/2020  /  Compliance , Coronavirus/COVID-19 , Data Protection , Data Protection Authority , General Data Protection Regulation (GDPR) , Germany , Patient Privacy Rights , Public Health Emergency , State and Local Government , State Privacy Laws

GDPR Guide to National Implementation: Malta - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed....more

1/23/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Malta , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions

GDPR Guide to National Implementation: Netherlands - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed....more

1/21/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Minor Children , National Identification Numbers , Netherlands , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions

GDPR Guide to National Implementation: Norway - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed....more

1/18/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Minor Children , National Identification Numbers , Nonprofits , Norway , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions

GDPR Guide to National Implementation: Poland - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed replacing the main pre-GDPR legislation...more

1/17/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Poland , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions

GDPR Guide to National Implementation: Portugal - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed....more

1/14/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Portugal , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions

GDPR Guide to National Implementation: Romania - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? Old legislation has been updated in addition to new legislation being...more

1/13/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Romania , Sanctions

GDPR Guide to National Implementation: Slovakia - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed....more

1/11/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions , Slovakia

GDPR Guide to National Implementation: Slovenia - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? Slovenia is in the process of adopting new legislation (the “Draft Law”)....more

1/10/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions , Slovenia

GDPR Guide to National Implementation: Spain - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed....more

1/9/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions , Spain

GDPR Guide to National Implementation: Sweden - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? The main national pre-GDPR act on data privacy has been revoked, whereas...more

1/8/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions , Sweden

GDPR Guide to National Implementation: United Kingdom - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed. Brexit Note: The GDPR will apply in...more

1/6/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions , UK , UK Brexit

GDPR Guide to National Implementation: Glossary - A practical guide to national GDPR compliance requirements across the EEA

Glossary - - Adequacy Decision means a decision by the Commission to designate a third country as an Adequate Jurisdiction. - Adequate Jurisdiction means one of the following jurisdictions that have been designated by the...more

1/3/2020  /  Compliance , Corporate Counsel , Data Protection Authority , Data Protection Officers (DPOs) , EU , EU Data Protection Laws , General Data Protection Regulation (GDPR) , International Data Transfers , Personally Identifiable Information , Popular

GDPR Guide to National Implementation: Luxembourg - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed.....more

1/2/2020  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Luxembourg , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions

GDPR Guide to National Implementation: Lithuania - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? Old legislation has been updated....more

12/31/2019  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Lithuania , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions

GDPR Guide to National Implementation: Liechtenstein - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed....more

12/30/2019  /  Compliance , Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Liechtenstein , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions

GDPR Guide to National Implementation: Latvia - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? New legislation has been passed. ——— (b) Relevant legislation...more

12/28/2019  /  Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Joint Control , Latvia , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions

GDPR Guide to National Implementation: Italy - A practical guide to national GDPR compliance requirements across the EEA

Q1/ Applicable legislation - (a) Have the requirements of the GDPR been addressed by introducing a new law, or by updating existing legislation? Old legislation has been updated....more

12/23/2019  /  Data Processors , Data Protection , Data Protection Authority , Data Protection Impact Assessments (DPIAs) , Data Protection Officers (DPOs) , Data Subjects Rights , Decedent Protection , Employee Privacy Rights , Enforcement Actions , EU , EU Data Protection Laws , European Economic Area (EEA) , Exemptions , Fines , Freedom of Expression , Freedom of Information , General Data Protection Regulation (GDPR) , International Data Transfers , International Harmonization , Italy , Joint Control , Minor Children , National Identification Numbers , Nonprofits , Penalties , Personally Identifiable Information , Prior Authorization , Prior Express Consent , Public Interest , Regulatory Standards , Sanctions
62 Results
 / 
View per page
Page: of 3
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide