Loading

Etiqueta: EU

Tag: EU
Page 3

Data transfers to the UK: European Commission launches process for two adequacy decisions

Last month, the European Commission launched the process for two adequacy decisions for data transfers to the UK – one under the GDPR and one under the Law Enforcement Directive.    The European Commission recently published two draft adequacy decisions for data transfers to the UK. One of those is under the GDPR and the

Fine imposed by AEPD for GDPR violations

A 6 million euro fine was recently imposed on CAIXABANK by AEPD, the Spanish DPA for various breaches of the GDPR.   Late last month, the EDPB reported on a fine imposed by AEPD on Spanish multinational financial services company CAIXABANK, for GDPR violations. It was found that the company unlawfully processed clients’ personal data

UK treaty with EU: This agreement will allow an extended period for personal data flows.

The UK government has recently announced a treaty with the EU, which essentially allows for an extension in the transitionary period, allowing free personal data flows.    Last month, we reported on the impending termination of the transitionary period and the need for UK businesses to ensure compliance to data protection law by December 31st

ICO urges UK businesses: ensure compliance to data protection law before the end of the UK’s transition.

ICO urges UK businesses to ensure compliance to data protection law before the end of the UK’s transition on December 31st 2020.    December 31st 2020 will officially end the transitionary period for the UK, out of the EU, and the ICO is calling on UK businesses to ensure that if they are impacted by

EU to tackle online gatekeepers through Digital Services Act and the Digital Markets Act

According to the European Commission, the Digital Services Act package is a modern legal framework which will ensure the safety of users online, and maintain a fair and open online platform environment. The European Commission has recently announced the intended implementation of two new pieces of legislation . The Digital Services Act (DSA), and the

Second European AI Alliance Assembly overview

The second European AI Alliance Assembly was hosted online due to the COVID-19 pandemic, on Friday 9th October. The second edition of the European AI Alliance Assembly took place last Friday 9th in a full day event which was hosted online due to the COVID-19 pandemic. The Assembly gathered together more than 1,400 viewers who

EU-US Privacy Shield invalidation business implications follow-up

Since the Court of Justice of the European Union (CJEU) invalidated the EU-US Privacy Shield in their Schrems II judgement delivered two weeks ago, many questions have arisen around international data transfers to the US. After the invalidation of the EU-US Privacy Shield by the CJEU two weeks ago, as reported by Aphaia, data transfers

BCR Changes for Brexit: EDPB releases statement guiding enterprises.

The European Data Protection Board (EDPB) released a statement of guidance on Binding Corporate Rules (BCRs), for groups of undertakings, or enterprises which have the UK ICO as their lead supervisory authority (BCR Lead SA).   The EDPB released a statement of guidance on Binding Corporate Rules (BCRs), for groups of undertakings, or enterprises which

European Commission Released Communication on transition between EU and UK.

The European Commission released a statement detailing the implications of the transition between the EU and UK.    As the UK comes to the end of its transitory period from the EU to the end of this year, the European Commission has released communication assessing the country’s readiness for separation from the region. The withdrawal

EU-US Privacy Shield invalidation business implications

On 16th July, the Court of Justice of the EU delivered a ruling in the case known as Schrems II by which it invalidated EU-US Privacy Shield and confirmed the validity of Standard Contractual Clauses, with caveats. After the CJEU’s Advocate General Henrik Saugmandsgaardøe published his opinion in the so-called ‘Schrems II’ in January, now the CJEU