On 22 July 2020, data protection authorities from Australia, Canada, Gibraltar, Hong Kong, Switzerland and United Kingdom (together the Authorities), issued an open letter (Letter) on global privacy expectations of video teleconferencing companies (VTC companies)[1]. Why there is such a Letter? As a result of the COVID-19 pandemic, the Authorities have witnessed an increasing use of VTC tools, both in social and business contexts ...
On 2 April 2013, data protection authorities across the EU - including the Information Commissioner's Office (ICO) - announced that they are now investigating whether Google's privacy policy complies with national data protection laws.The investigation was prompted by allegations that Google failed to implement recommendations issued to it by the EU Working Party in October 2012 ...
The General Data Protection Regulation (GDPR) also affects the working relationship between the employer and the works council. Among other things, it affects the use of works agreements as legal basis, the (possible) responsibility of the works council under data protection law, as well as the controlling authority of the company data protection officer over the works council. WORKS AGREEMENT AS INFORMATION PURSUANT TO ART ...
The revelations of the intercepted phone messages from Prince Harry and Prince William earlier this year are a reminder of how vulnerable personal data can be. Proposed changes to the law will mean that those who hold confidential personal information must be even more vigilant about what they do with that data. Most businesses will be familiar with the Data Protection legislation but it is important not to be complacent ...
The National Information Technology Development Agency (NITDA) had set a revised deadline (June 30 2021) for filing of data protection audit by data controllers. With the deadline fast approaching, we share somefrequently asked questions (FAQ) on Data Protection in our publication, accessiblehere,which may aid in undersanding what companies need to do in order to comply with NITDA’s directives ...
The Baden-Württemberg Commissioner for Data Protection and Freedom of Information (LfDI) has imposed a fine of €1,240,000 on the AOK Baden-Württemberg health insurance provider. The reason? Data processing errors related to prize draws it ran: the health insurance provider had not obtained the valid consent for data processing of prize draw entrants in 500 cases. An internal whistleblower notified the LfDI about the breach ...
The National Privacy Commission (NPC) has issued guidelines on data protection in work from home (WFH) arrangements (NPC PHE Bulletin No. 12 on “Protecting Personal Data in a Work from Home Arrangement; issued May 15, 2020). The full text of the guidelines can be found here: https://www.privacy.gov.ph/2020/05/npc-phe-bulletin-no-12-protecting-personal-data-in-a-work-from-home-arrangement/ ...
What it’s aboutThe Data Privacy Act (Republic Act No. 10173) seeks to protect the confidentiality of “personal information.” The latter is defined as “any information whether recorded in material form or not, from which the identity of an individual is apparent or can be reasonably and directly ascertained by the entity holding the information, or when put together with other information would directly and certainly identify an individual ...
The launch of our annual conference, Data Insights x Shoosmiths, took place on Wednesday, 24 January 2024 at our offices in London and virtually via live-stream. We were delighted to see a conversation between the titans of data transfer: Privacy Lawyer and Activist at NOYB Max Schrems and French MP Philippe Latombe, followed by a keynote from Barrister, Author and AI visionary Jamie Susskind ...
On 10 June 2021, the Data Security Law (DSL), which will become effective as of 1 September 2021, was adopted in China. The enactment of the DSL marks the introduction of China’s first fundamental law in the field of data security, which, together with the Cybersecurity Law and the upcoming Personal Information Protection Law, will lay a legal foundation for safeguarding national data security, promoting data utilisation and mitigating the risks of data processing activities ...
This article forms part of our ‘New How: Perspectives’ report: ‘Can real estate help solve the productivity puzzle?. To access this free report, please click on the download link to the right of this page. The Covid pandemic has clearly had a significant impact on our society, the economy and everyday life, with numerous sectors having found life in lockdown incredibly challenging ...
With cloud technology becoming increasingly important, data centres provide services critical to many businesses. Given the strategic value of data center to digital transformation, it is essential that data center vendors have a clear plan to manage the risks they face. What are some of the key risks for data center vendors Security Digital and physical security risks have been listed as the top 5 data center security risks for 2023 ...
As consumer data collection continues to rise in the United States and around the world, aggregated health data is becoming a more common product bought and sold by data brokers. While worrying on its own, even more concerning is the growth in individually identifiable data being sold by private companies, which could range from the number of occurrences of a certain condition in a given zip code to the names, addresses, and incomes of individuals with the same condition ...
In Rolfe v Veale, the High Court awarded summary judgment against claimants who alleged distress following an inadvertent data breach. Here, Philip Tansley and Matthew MacLachlan consider the court's reasoning and the broader implications for such claims ...
