The US tech giant, Google is fined EUR 50 million by France's data protection regulator, CNIL, for failing to comply with its General Data Protection Regulation (GDPR) obligations. This is the biggest GDPR fine yet to be issued by a European regulator and the first time that one of the tech giants has been found in breach with the new regulations that came into force in May 2017 ...
The use of the Internet without the use of search engines, which list links to Internet pages after keywords have been entered, is almost unthinkable. In the context of the search results, however, websites may appear that contain personal data and thus fall within the scope of the GDPR ...
The Chicago City Council recently approved a significant amendment to the transit-oriented development provisions of the Zoning Ordinance. Prior to the change, the Chicago Zoning Ordinance, through increases and reductions of certain development standards, allowed for larger, more dense buildings on properties in close proximity to CTA or Metra train stations ...
On January 21, 2019, Google was fined nearly $57 million (approximately 50 million euros) by France’s Data Protection Authority, CNIL, for an alleged violation of the General Data Protection Regulation (GDPR).[1] CNIL found Google violated the GDPR based on a lack of transparency, inadequate information, and lack of valid consent regarding ad personalization. This fine is the largest imposed under the GDPR since it went into effect in May 2018 and the first to be imposed on a U.S ...
The Brexit Withdrawal Agreement negotiated between the European Union and the United Kingdom envisaged that during the United Kingdom's transitional period data protection legislation would have been treated in the same way as with the countries of the European Economic Area. This would have allowed a transfer of personal data from the European Union to the United Kingdom without additional measures to ensure adequate levels of data protection ...
The dispute between ride sharing companies Uber and 99 is increasingly fierce. Now the main stage is Rio de Janeiro. In May 2018, Uber filed a lawsuit against 99 in the city, claiming misleading advertising. Less than two months ago, 99 began an aggressive discount campaign in the city to promote the 99Pop service in Rio, competing directly with Uber ...
In a landmark decision, the European Union Intellectual Property Office (‘EUIPO’) has ruled that McDonald’s, one of the world’s largest fast food chains, will lose its EU trade mark for “Big Mac” ...
The Court of Justice of the European Union (ECJ) must currently clarify whether and how website operators can legally integrate the so-called "Like" button of Facebook on their website (Case C-40/17). A German online retailer had integrated the "Facebook Like" button into their online shop. Due to the functionality of the "Facebook Like" button, personal information was transmitted to Facebook Ireland each time the website was visited, including the IP address ...
A new rule promulgated by the U.S. Environmental Protection Agency (“EPA”) governing the disposal of coal combustion residuals, also known as CCR or coal ash, raises the risk for civil claims and the need for insurance to cover them.1 The rule, which takes effect Aug. 29, 2018, revises regulations issued in 2015 and has the stated intent of providing utilities and states “more flexibility in how CCR is managed ...
Under its Article 88(1), the GDPR allows Member States to draw up their own rules for the area of employee data protection. Germany has taken advantage of this option with Section 26 of the Federal Data Protection Act (BDSG). The first sentence of Section 26(1) already applies while the decision to establish an employment relationship is made and hence it needs to be taken into account early in the application process ...
On December 19th, 2018, the Ministry of Labor published Ordinance No. 1,085/2018, for the purpose of amending Regulation No. 22 ("NR-22"), which regulates aspects related to the mining sector occupational safety and health. The reformed NR-22 therefore brings changes to the sections regarding the Disposal of Tailings, Wastes and Products and the Emergency Response Plan, within the framework of the National Policy on Dams Safety ("PNSB") ...
To protect and stimulate creators to increase innovation and encourage entrepreneurship, Norwegian authorities are changing the law. In 2018 we received several proposals towards strengthening the rights of those who create new ideas or build their business on intellectual property. Looking back at 2018, we see a year in which the Norwegian intellectual property (IP) legislation has been in movement. Technology is developing fast, and so must the law protecting technology ...
Software is becoming the main part of an increasingly amount of products set on the market; a trend which will become more and more evident in the years to come. This fact challenges the legal landscape and interpretation of product liability laws, and contract makers must pay attention to potential new risks imposed on the parties. If a product causes damages to a third party, complex questions may arise with respect to liability and the chain of causation ...
PSD2 came into effect in the European Union on January 13, 2018. PSD2 is important as it aims to further harmonise the EU payments market and break the banks' de facto monopoly on the provision of payment services and the use of their customer data. Below is a review of developments to date as they relate to transposing PSD2 into Norwegian law, including an update on the most recent developments ...
Most companies go to great lengths to protect and maintain their intellectual property (IP). These companies recognize the value of their IP and work towards its development, sustainability and commercialization. IP strategy customary includes where and when to file patent applications, how to choose a brand name and register it, how to protect and enforce copyrights, protect trade secrets, etc ...
The ePrivacy Regulation was actually supposed to enter into force on May 25, 2018 jointly with the EU General Data Protection Regulation. Now it is expected to go into effect in 2019 at the earliest. It has new provisions in store, particularly for online marketing. The ePrivacy Regulation is intended to replace the current European ePrivacy Directive (2002/58/EC) and the Cookie Directive (2009/136/EC) ...
The online retail sector has seen a considerable increase in intervention by the competition authorities both on a national level and in Brussels. Most recently, in December 2018, the European Commission fined the clothing company Guess € 39.8 million for applying online sales and advertising restrictions ...
The Brazilian Federal Government recently published Medida Provisória No. 863/2018 ("MP 863/18"), a new rule that amends Federal Law No. 7,565, of December 19, 1986 (Brazilian Aviation Code) and lifts the existing restrictions to foreign capital shareholding in Brazilian air transportation companies. As a result, foreign investors are from now on able to hold up to one hundred percent (100%) of the voting capital of Brazilian airlines ...
I. Introduction According to a Bitkom study from September 2018, German industry has incurred a total loss of 43 billion euros as a result of cyberattacks over the past two years. Seven out of ten industrial companies have been victims of such attacks during this period. At EU level, there has recently been a growing discussion on how to face this mounting danger ...
"What are the 'waters of the United States'? As it turns out, defining that statutory phrase—a central component of the Clean Water Act—is a contentious and difficult task." This observation, recently made by Justice Sonia Sotomayor, understates the difficulty in answering what should otherwise be an anodyne question: Does my project require a Clean Water Act permit? At this moment, answers to this question may be far from certain ...
As an eventful 2018 comes to a close, we look ahead to 2019 and our “Top 10 List” of key issues U.S. financial institutions, non-banks providing financial services, and financial technology (fintech) entities should plan for and watch throughout the upcoming year. The first five items on the list are discussed below, and the remainder of our list will follow shortly in another post ...
Over the last several years, the emphasis on privacy and data protection has grown significantly. With the amount of data collected by companies and technology skyrocketing, the need to protect personal information has been at the forefront of states’ legislative agendas. While all 50 states now have breach notification statutes, states are now taking a closer look at issues such as tracking online behavior and the use of biometric data ...
Executives and in-house counsel should be aware that traveling with sensitive data can lead to its seizure—with potentially severe consequences worldwide. Recently, Parliament in the United Kingdom seized from a traveling executive a USB drive containing data that had been produced in a United States lawsuit between Six4Three, a software company, and Facebook. Put simply, that data was in the wrong place at the wrong time ...
In February of this year, the Securities Exchange Commission issued its updated Statement and Guidance on Public Company Cybersecurity Disclosures. In April, the SEC issued an Order that, among other things, levied a $35 million fine against Yahoo! Inc. for failing to properly report a 2014 data breach. These actions support the view that the SEC is consciously committing attention and resources to cybersecurity issues affecting public companies ...
Regulation (EU) 2018/302 of February 28, 2018, on addressing geo-blocking and other forms of discrimination based on customers' nationality, place of residence or place of establishment within the internal market (the "Regulation") came into force, December 3, 2018. The Regulation seeks to increase access for customers in the EU and EEA to goods and services by preventing unjustified geo-discrimination due to the customer's nationality, place of residence or establishment ...
