PSD2 came into effect in the European Union on January 13, 2018. PSD2 is important as it aims to further harmonise the EU payments market and break the banks' de facto monopoly on the provision of payment services and the use of their customer data. Below is a review of developments to date as they relate to transposing PSD2 into Norwegian law, including an update on the most recent developments ...
Most companies go to great lengths to protect and maintain their intellectual property (IP). These companies recognize the value of their IP and work towards its development, sustainability and commercialization. IP strategy customary includes where and when to file patent applications, how to choose a brand name and register it, how to protect and enforce copyrights, protect trade secrets, etc ...
The online retail sector has seen a considerable increase in intervention by the competition authorities both on a national level and in Brussels. Most recently, in December 2018, the European Commission fined the clothing company Guess € 39.8 million for applying online sales and advertising restrictions ...
The ePrivacy Regulation was actually supposed to enter into force on May 25, 2018 jointly with the EU General Data Protection Regulation. Now it is expected to go into effect in 2019 at the earliest. It has new provisions in store, particularly for online marketing. The ePrivacy Regulation is intended to replace the current European ePrivacy Directive (2002/58/EC) and the Cookie Directive (2009/136/EC) ...
In December of 2018, the U.S. Environmental Protection Agency (EPA) and Army Corps of Engineers (Corps) released their much-anticipated draft proposed rule to re-write the definition of “waters of the United States” (WOTUS) (“2018 Rule”). The definition of WOTUS establishes the scope of agency jurisdiction over waters and wetlands under the Clean Water Act (CWA) ...
I. Introduction According to a Bitkom study from September 2018, German industry has incurred a total loss of 43 billion euros as a result of cyberattacks over the past two years. Seven out of ten industrial companies have been victims of such attacks during this period. At EU level, there has recently been a growing discussion on how to face this mounting danger ...
As an eventful 2018 comes to a close, we look ahead to 2019 and our “Top 10 List” of key issues U.S. financial institutions, non-banks providing financial services, and financial technology (fintech) entities should plan for and watch throughout the upcoming year. The first five items on the list are discussed below, and the remainder of our list will follow shortly in another post ...
Over the last several years, the emphasis on privacy and data protection has grown significantly. With the amount of data collected by companies and technology skyrocketing, the need to protect personal information has been at the forefront of states’ legislative agendas. While all 50 states now have breach notification statutes, states are now taking a closer look at issues such as tracking online behavior and the use of biometric data ...
Executives and in-house counsel should be aware that traveling with sensitive data can lead to its seizure—with potentially severe consequences worldwide. Recently, Parliament in the United Kingdom seized from a traveling executive a USB drive containing data that had been produced in a United States lawsuit between Six4Three, a software company, and Facebook. Put simply, that data was in the wrong place at the wrong time ...
The Supreme Court has handed down one of the most anticipated Endangered Species Act (ESA) rulings in recent years. In Weyerhaeuser Co. v. U.S. Fish and Wildlife Serv., the Supreme Court unanimously overruled the Fifth Circuit Court of Appeals, holding that the Fish and Wildlife Service can only designate property that is “habitat” as critical habitat under the ESA ...
Regulation (EU) 2018/302 of February 28, 2018, on addressing geo-blocking and other forms of discrimination based on customers' nationality, place of residence or place of establishment within the internal market (the "Regulation") came into force, December 3, 2018. The Regulation seeks to increase access for customers in the EU and EEA to goods and services by preventing unjustified geo-discrimination due to the customer's nationality, place of residence or establishment ...
In February of this year, the Securities Exchange Commission issued its updated Statement and Guidance on Public Company Cybersecurity Disclosures. In April, the SEC issued an Order that, among other things, levied a $35 million fine against Yahoo! Inc. for failing to properly report a 2014 data breach. These actions support the view that the SEC is consciously committing attention and resources to cybersecurity issues affecting public companies ...
Since the GDPR has been in force, almost every company has, among other things, dealt with issues of the permissibility of direct marketing and other marketing activities under data protection law. At their data protection conference on Nov. 07-08, 2018, the German data protection supervisory authorities issued a new "orientation guide" on this topic (as of November 2018) ...
The large number of vague terms as well as provisions requiring interpretation in the GDPR create significant application issues for companies. However, it becomes even more of a challenge if companies not established in the EU want to review whether the GDPR is applicable to them. Generally speaking, the European legislator set themselves the goal of creating the most extensive territorial scope of the GDPR possible ...
On Nov. 19, 2018, the Bureau of Industry and Security (BIS) of the U.S. Department of Commerce issued an Advance Notice of Proposed Rulemaking[1] requesting public comment on criteria for identifying emerging technologies essential to U.S. national security that would be subject to increased export controls ...
When auditing annual financial statements, auditors are required to draw attention to risks that potentially threaten the company. Such risks can result for example from failure to implement the EU General Data Protection Regulation (GDPR) that has been in force since May 25, 2018. Given the substantial fines envisaged in the GDPR, these risks can result in high provisions, in the worst case in refusal on the part of the auditor to issue an unqualified audit opinion ...
The value of the car is no longer merely associated with the car body, its engine or other material parts. Substantial value is found in the knowledge that controls the car – knowledge that does not only steer the car, but which may form the basis for maintenance and repairs planning, computing insurance premiums or indicating who is liable in the case of damage ...
Earlier this week, the UK Cryptoassets Taskforce published its Final Report on cryptoassets and distributed ledger technology (DLT). The Taskforce – which includes representatives from HM Treasury, the UK Financial Conduct Authority (FCA) and the Bank of England – was established in March 2018 to analyse and assess the risks and potential benefits of cryptoassets and DLT and “set out the path forward with respect to regulation [of these areas] in the UK” ...
Blockchain is a distributed ledger of data entries. The entries are processed and managed by a series of different computers, or ‘nodes’, which can be running on different servers. Every computer connected to the system keeps a copy of this ledger, meaning that different parties can view and manage the same information in real time. It also makes it exceptionally safe and secure. The energy sector has been relatively slow to adopt blockchain technology ...
The role of the Millennial lawyers and the recent incorporation of Artificial Intelligence (“AI”) in law firms are current trending topics. As a 27-year old associate of a law firm based in Guatemala City, every time I read about AI and that global law firms are incorporating AI to their practice, I ask myself, will I be replaced by it (or IT) ...
The High Court judgment in Friends of the Irish Environment v. An Bord Pleanála (delivered in 2018 by Meenan J) decided that if a Section 5 referral is made by a third party, then the owners and occupiers of the lands must be identified and served with notice of the referral, and given an opportunity to make submissions in accordance with basic fair procedures ...
The Abu Dhabi Global Market (the ADGM) recently announced the launch of a commercial license specifically catered towards tech start-ups that allows entrepreneurs to obtain an operational license in the ADGM and access to a Professional Services Support Program aimed at allowing entrepreneurs entry to a community of businesses, financial services and professional advisors ...
In Scots law, it is possible to acquire certain rights to land – access, for instance – simply by the passage of time. This process is known as “prescription” and is outlined in the Prescription and Limitation (Scotland) Act 1973. There are two forms of prescription: positive and negative. Negative prescription extinguishes certain rights after a period of time ...
Brick and mortar retailers are rapidly diversifying checkout and payment methods to combat the erosion of sales to online channels and provide an improved shopping experience for consumers. From self-checkout kiosks, to store-specific mobile applications for payment, scan-as-you-go devices, and even ‘just walk out’ models, retailers are reinventing consumer’s notions of the traditional checkout line by going cashierless ...
