According to press reports, most Germans are willing to accept limitations on the extent of the protection of their personal data vis-à-vis public authorities and agencies in order to tackle the coronavirus crisis. However, that alone is not an adequate justification for measures that employers may take during a coronavirus pandemic to prevent an outbreak in their company ...
On October 26, 2012, three resolutions were adopted by the closed session of the 34th International Conference of Data Protection and Privacy Commissioners and have been published on the conference website. Below we provide an overview of these resolutions ...
The revelations of the intercepted phone messages from Prince Harry and Prince William earlier this year are a reminder of how vulnerable personal data can be. Proposed changes to the law will mean that those who hold confidential personal information must be even more vigilant about what they do with that data. Most businesses will be familiar with the Data Protection legislation but it is important not to be complacent ...
The National Information Technology Development Agency (NITDA) had set a revised deadline (June 30 2021) for filing of data protection audit by data controllers. With the deadline fast approaching, we share somefrequently asked questions (FAQ) on Data Protection in our publication, accessiblehere,which may aid in undersanding what companies need to do in order to comply with NITDA’s directives ...
The Baden-Württemberg Commissioner for Data Protection and Freedom of Information (LfDI) has imposed a fine of €1,240,000 on the AOK Baden-Württemberg health insurance provider. The reason? Data processing errors related to prize draws it ran: the health insurance provider had not obtained the valid consent for data processing of prize draw entrants in 500 cases. An internal whistleblower notified the LfDI about the breach ...
On 10 June 2021, the Data Security Law (DSL), which will become effective as of 1 September 2021, was adopted in China. The enactment of the DSL marks the introduction of China’s first fundamental law in the field of data security, which, together with the Cybersecurity Law and the upcoming Personal Information Protection Law, will lay a legal foundation for safeguarding national data security, promoting data utilisation and mitigating the risks of data processing activities ...
As consumer data collection continues to rise in the United States and around the world, aggregated health data is becoming a more common product bought and sold by data brokers. While worrying on its own, even more concerning is the growth in individually identifiable data being sold by private companies, which could range from the number of occurrences of a certain condition in a given zip code to the names, addresses, and incomes of individuals with the same condition ...
Effective July 29, 2024, the Federal Trade Commission (“FTC”) has issued a final rule that expands the scope of its existing Health Breach Notification Rule (“HBNR”) to include health and wellness applications (“apps”) typically associated with wearable technologies such as smart watches ...
On Saturday 21 March 2020, the Luxembourg Parliament passed a law implementing Council Directive (EU) 2018/822 of 25 May 2018 amending Directive 2011/16/EU as regards mandatory automatic exchange of information in the field of taxation in relation to reportable cross-border arrangements ...
On January 10, the United States District Court for the District of Columbia issued a long-awaited opinion which will allow the U.S. Department of Health and Human Services (HHS) to determine the means by which it will repay inappropriate cuts it levied against 340B participating hospitals’ Medicare reimbursement.[i] The District Court’s decision comes on the heels of the United States Supreme Court’s unanimous decision in American Hospital Association v. Becerra, 142 S. Ct ...
On March 27, 2020, the U.S. Court of Appeals for the District of Columbia addressed the question of discovery costs in a long-running False Claims Act case,U.S. ex rel. Barko v. Halliburton (No. 19-7064, March 2020) (“Barko”). In Barko, a former employee claimed that an affiliate of Halliburton, Kellogg Brown & Root Services (KBR), inflated costs and received kickbacks from subcontractors during the Iraq war during the early to mid-2000s ...
The state of emergency in the Czech Republic was extended until May 17, 2020. What does this mean? At its meeting held on 28 April 2020, the Chamber of Deputies decided to extend the state of emergency until 17 May 2020. By Resolution No. 194 (published in the Collection of Laws under No ...
The National Cybersecurity Coordination, a unit of the Undersecretary of the Interior responsible for coordinating the actions of public agencies in cybersecurity and recommending to the President of the Republic policies, laws, regulations, protocols and standards in this area, recently put two of a series of regulations required by Law No. 21,663 Framework on Cybersecurity up for public consultation ...
While the Canadian government has said it intends to pass legislation dealing with cybersecurity (see Bill C-26 to enact the Critical Cyber Systems Protection Act), many companies have already taken significant steps to protect their IT infrastructure. However, the Internet of Things is too often overlooked in this process. This is in spite of the fact that many devices are directly connected to the most important IT infrastructure for businesses ...
The Health Insurance Portability and Accountability Act (“HIPAA”) contains minimum security standards that Covered Entities and Business Associates must employ to safeguard protected health information (“PHI”). As part of HIPAA’s security standards, Business Associates are obligated to report all security incidents to the Covered Entity ...
In the recent case of R v Andrewes [2022] UKSC 24, the Supreme Court considered whether stripping the Defendant of their earnings would be disproportionate when considering the financial benefit obtained by CV Fraud. This article takes us through the facts of the case and Lauren Bowkett, a Principal Associate in the Business Crime and Compliance team, comments on the recent Supreme Court Judgement ...
Following President Obama’s announcement on December 17, 2014 of a policy to normalize relations with Cuba,the Department of Commerce’s Bureau of Industry and Security (BIS) amended its Export Administration Regulations (EAR) and the Department of the Treasury’s Office of Foreign Assets Control (OFAC) amended its Cuban Assets Control Regulations (CACR) on January 16, 2015, to implement the policy change ...
Initially published by Thomson Reuters [23 November 2022], Shoosmiths partner Sam Tyfield comments on the implications of the recent call for regulation by cryptocurrency firms. Cryptocurrency firms and lobbyists have reacted to the collapse and bankruptcy of FTX by calling for regulation. When unpacked, however, their pleas to be regulated reveal an industry wanting regulation on its own terms while unwilling to face home truths about its faults and efficacy ...
