News & Analysis as of

General Data Protection Regulation (GDPR)

Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts... more +
Follow this channel for updates and analysis on all aspects of the European Union's General Data Protection Regulation, a reform of EU's data protection rules that impacts individuals throughout the Union and all businesses operating therein. less -
Clark Hill PLC

How to Explain Automated Decisions: Recent CJEU Decision and CPPA Rulemaking Offer Insight into ADM Explainability

Clark Hill PLC on

Automated decision-making, or ADM, is used for a wide range of use cases that impact individuals — from processing insurance claims and credit scoring, to ranking job candidates and offering personalized pricing or targeted...more

A&O Shearman

EPRS publishes paper on potential challenges to UK data adequacy decisions

A&O Shearman on

On March 7 2025, the European Parliamentary Research Service (EPRS) published a paper outlining the challenges to UK data adequacy and ongoing national legislative reforms that could affect the renewal of the two existing...more

McDermott Will & Emery

European Health Data Space Regulation enters into force

McDermott Will & Emery on

March 26, 2025, marked a pivotal moment in the EU with the European Health Data Space Regulation, (EU) 2025/327 (“EHDS Regulation”), coming into force. The EHDS represents a transformative initiative by the European Union...more

Jones Day

Green Data Centers: Pioneering Energy Efficiency and Sustainability in the EU

Jones Day on

In recent years, the demand for data centers has increased dramatically, driven by the growth of digital data and the increasing reliance on cloud computing....more

Ropes & Gray LLP

The Data Act: Six Months to Go — But What To Do?

Ropes & Gray LLP on

Our clients are at the forefront of many of the developments covered by the report. That said, I couldn’t help thinking that the report overlooked a law that takes effect in less than six months’ time and which will have...more

Thomas Fox - Compliance Evangelist

Life With GDPR: Cookie Compliance

Tom Fox and Jonathan Armstrong, renowned experts in cyber security, co-host the award-winning Life with GDPR. In this episode, they discuss Cookie Compliance Under GDPR. Their discussion highlights the increasing enforcement...more

Hogan Lovells

Gender and GDPR: does the right to rectification override civil registry records?

Hogan Lovells on

It would seem that for the Court of Justice of the European Union (CJEU), the answer is yes – let’s dig into the CJEU decision on the case No. C-247/23, issued on the 13th of March. VP, an Iranian transgender refugee, had his...more

J.S. Held

2025 J.S. Held Global Risk Report: Managing Cyber Risk

J.S. Held on

Cyber incidents such as the 2024 event involving Change Healthcare, which compromised the personal information of over 100 million people, highlight the evolving nature of cyber threats – increasingly becoming risk management...more

Alston & Bird

European Commission Moves to Extend Free Flows of Personal Data to the UK

Alston & Bird on

On March 18, 2025, the European Commission proposed to extend its adequacy decision in favor of the United Kingdom (‘UK’) for an additional six-month period. This would allow free flows of personal data from the EU to the UK...more

Hogan Lovells

Overview of the CNIL’s enforcement actions in 2024: the simplified procedure generates an increase in sanctions

Hogan Lovells on

In 2024, the CNIL stepped up its enforcement action, issuing 87 sanctions, 180 compliance orders and 64 reprimands. However, only 12 decisions were made public, thus complicating the exercise of making the regulator’s...more

IR Global

Taking a proactive approach to risk

IR Global on

How can proactive risk management strategies help businesses navigate regulatory and economic uncertainties? Proactive risk management strategies can help businesses navigate regulatory and economic uncertainties by...more

Latham & Watkins LLP

Kingdom of Saudi Arabia Issues New Data Transfer Risk Assessment Guidelines

Latham & Watkins LLP on

The guidelines specify the requirements for data controllers to conduct risk assessments related to the transfer or disclosure of personal data outside the Kingdom. ...more

Alston & Bird

Belgian Data Protection Authority Issues Updated Guidance on Direct Marketing Rules

Alston & Bird on

On March 10, 2025, the Belgian Data Protection Authority (BDPA) updated its 2020 guidance on the processing of personal data for direct marketing purposes (see the updated guidance here in French and in Dutch)....more

Jackson Lewis P.C.

EU Data Enforcement Sweep: Are GDPR-Covered Entities Complying Properly with Data Subjects’ Right of Erasure?

Jackson Lewis P.C. on

The European Data Protection Board (EDPB) has launched its 2025 enforcement sweep targeting organizations’ compliance with data subjects’ right of erasure (right to delete or be forgotten), focusing particularly on how...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

FBI Warns of Hidden Threats in Remote Hiring: Are North Korean Hackers Your Newest Employees?

The Federal Bureau of Investigation (FBI) recently warned employers of increasing security risks from North Korean workers infiltrating U.S. companies by obtaining remote jobs to steal proprietary information and extort money...more

Cozen O'Connor

ETIAS To Launch In 2026: How It Will Impact Over 1 Billion Travelers to Europe

Cozen O'Connor on

UPDATE - •We previously reported on the 2025 ETIAS launch and requirement to obtain approval prior to travelling to Europe. •It was recently announced that due to additional technical issues, the new roll out for the...more

Orrick, Herrington & Sutcliffe LLP

The European Data Protection Board Shares Opinion on How to Use AI in Compliance with GDPR

The European Data Protection Board's (EDPB) Opinion 28/2024 provides valuable insights into the intersection of artificial intelligence and data protection, particularly in the context of compliance with the EU General Data...more

Constangy, Brooks, Smith & Prophete, LLP

Chile brings its data privacy laws in line with global data privacy standards

Chile has amended its data privacy law granting significant rights to data subjects, and imposing stricter obligations on data controllers and processors. Published in the Official Gazette (Diario Oficial) on December 13,...more

Cooley LLP

Unlocking Neural Privacy: The Legal and Ethical Frontiers of Neural Data

Cooley LLP on

Over the last quarter century, the boundaries of privacy have shifted dramatically. Once considered private, vast amounts of personal information about individuals – names, addresses, medical records, spending habits – have...more

A&O Shearman

CJEU issues judgment on balancing the right of access and protecting trade secrets in automated decision-making processes

A&O Shearman on

On February 27 2025, the Court of Justice of the European Union (CJEU) delivered a judgment in CK v Dun & Bradstreet (Case C-203/22). This judgment clarifies the GDPR provisions regarding the right of access to personal...more

Morgan Lewis

The Evolving Framework of Data Governance: A Global Perspective

Morgan Lewis on

Data privacy laws are evolving rapidly worldwide, with jurisdictions such as California, Japan, Canada, and Brazil adopting frameworks inspired by the EU’s General Data Protection Regulation (GDPR). Businesses operating...more

Harris Beach Murtha PLLC

What Can I Help You with Today? Minimizing Legal Risks of AI-Powered Chatbots

At this point, everyone has dealt with a chatbot of some nature. Whether you’re trying to change a flight or get a prescription, they are everywhere. As AI, and generative AI in particular, become more and more prevalent,...more

Sheppard Mullin Richter & Hampton LLP

Forget It!: EDPB Announces Focus on Right to Erasure in 2025

Right of erasure (or “right to be forgotten”) has been selected by the European Data Protection Board as its priority enforcement topic for 2025. This work is being done under the “Coordinated Enforcement Framework” or “CEF.”...more

Jenner & Block

Client Alert: New GDPR Investigations into the Use of Children’s Data

Jenner & Block on

The UK’s data protection regulator, the Information Commissioner’s Office (ICO), has recently announced investigations into three companies in connection with the use of children’s personal information. In a statement on...more

Farella Braun + Martel LLP

Machine Unlearning – A Potential Option for Remedy

Machine unlearning (MU) is a concept that is likely more interesting to lawyers than to data scientists, as the latter typically focus on collecting, maintaining, and mining as much data as possible—whether in the context of...more

4,531 Results
 / 
View per page
Page: of 182

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide