The National Privacy Commission (NPC) has issued guidelines on data protection in work from home (WFH) arrangements (NPC PHE Bulletin No. 12 on “Protecting Personal Data in a Work from Home Arrangement; issued May 15, 2020). The full text of the guidelines can be found here: https://www.privacy.gov.ph/2020/05/npc-phe-bulletin-no-12-protecting-personal-data-in-a-work-from-home-arrangement/ ...
The National Information Technology Development Agency (NITDA) had set a revised deadline (June 30 2021) for filing of data protection audit by data controllers. With the deadline fast approaching, we share somefrequently asked questions (FAQ) on Data Protection in our publication, accessiblehere,which may aid in undersanding what companies need to do in order to comply with NITDA’s directives ...
The Basic Laws of Israel that comprise the county’s constitution specifically grant Israel’s citizens the right to privacy as a basic human right. This practice note provides an overview of the regulation of data protection and privacy in Israel, presented in a question and answer format. Legislative Framework • Question 1: Summarize the legislative framework for the protection of personally identifiable information (PII) ...
The General Data Protection Regulation (GDPR) also affects the working relationship between the employer and the works council. Among other things, it affects the use of works agreements as legal basis, the (possible) responsibility of the works council under data protection law, as well as the controlling authority of the company data protection officer over the works council. WORKS AGREEMENT AS INFORMATION PURSUANT TO ART ...
On 2 April 2013, data protection authorities across the EU - including the Information Commissioner's Office (ICO) - announced that they are now investigating whether Google's privacy policy complies with national data protection laws.The investigation was prompted by allegations that Google failed to implement recommendations issued to it by the EU Working Party in October 2012 ...
On 22 July 2020, data protection authorities from Australia, Canada, Gibraltar, Hong Kong, Switzerland and United Kingdom (together the Authorities), issued an open letter (Letter) on global privacy expectations of video teleconferencing companies (VTC companies)[1]. Why there is such a Letter? As a result of the COVID-19 pandemic, the Authorities have witnessed an increasing use of VTC tools, both in social and business contexts ...
This summer, a major reform relating to personal data, in Russia, has been instigated. New privacy regulations entered into force on September 1st, 2022. These introduced a number of new requirements to data processing activities. Part of the new requirements, including new cross-border data transfer rules, will come into force from March 1st, 2023 ...
During recent years, we have been accumulating our experience of advising clients on data protection issues, that companies face when doing their business in Russia. Many of our clients do their business in other CIS countries as well and usually face quite similar issues there. However, the level of regulation and, more importantly, enforcement, in different jurisdictions of the post-Soviet Union territory, varies significantly ...
Introduction Title and date of national law The Act on the protection of privacy in relation to the processing of personal data of December 8,1992 (the 'Data Protection Act' or 'DPA') and its Royal Decree of February 13, 2001. Relation with international instruments The DPA implements EU Directive 95/46/EC on the protection of individuals regarding the processing of personal data and the free movement of such data ...
Aside from a passing reference to data protection in the Electronic Transactions Ordinance (see below), TCI has no data protection statute. However, a number of other areas of local law are applicable or, in the context of the advice sought, ought to be considered in relation to data protection, confidentiality and privacy matters. In that respect:- a. Data protection, privacy and confidentiality at common law TCI is a British Overseas Territory and is a common law jurisdiction ...
Under its Article 88(1), the GDPR allows Member States to draw up their own rules for the area of employee data protection. Germany has taken advantage of this option with Section 26 of the Federal Data Protection Act (BDSG). The first sentence of Section 26(1) already applies while the decision to establish an employment relationship is made and hence it needs to be taken into account early in the application process ...
The forthcoming General Data Protection Regulation also results in adaptations with regard to the protection of social data. On May 25, 2018, an amended Code of Social Law will therefore come into effect simultaneously with the General Data Protection Regulation. Above all, the Code of Social Law (SGB) X is affected. Many of the adaptations are editorial changes that have become necessary, but the content has also been amended ...
The UK press reported recently (August 2004) that an unnamed Lloyds TSB customer, backed by the Lloyds TSB Group Union, has complained to the Information Commissioner (the UK equivalent of the Irish Data Protection Commissioner) in respect of the transfer abroad of “sensitive personal data” 1 held by Lloyds about its customers. The government-appointed information commissioner has been asked to rule on whether Lloyds TSB is acting illegally ...
