Debevoise Data Blog

JANUARY 21, 2021

In this post, we look back at the 2020 European data protection landscape and five trends that help companies understand not only where we are, but where data protection enforcement, litigation, and practice may be headed. million against Marriott for its 2018 data breach When you dig deeper though, two key points emerge.

Data protection 52

Data protection Litigation Litigator Failure-to-appear 52

Ikigai Law

AUGUST 11, 2023

“If you don’t see me in half a decade, just wait a little longer” – India’s data protection bill ( circa 2018 ) On 9 th August, the Digital Personal Data Protection Bill, 2023 was finally passed in the Parliament. The finish line – the new data bill What stood out? Whose competition is it but?

Data protection 52

Data protection Law Law 52

Debevoise Data Blog

APRIL 26, 2024

Key takeaways from March include: CNIL data security practice guide: The French DPA published an update of its data security practice guide for data protection officers, chief information security officers, computer scientists and legal experts. 33(2) GDPR relating to the same personal data breach.

Data protection 52

Data protection e-records Compliance Court 52

Debevoise Data Blog

NOVEMBER 21, 2023

Data protection & AI: In particular: (i) the French CNIL published its first set of guidance on GDPR compliance when developing AI tools; and (ii) the UK ICO issued a preliminary enforcement notice against Snap over its AI chatbot, alleging that Snap had not adequately assessed the privacy risks posed to child users of the tool.

Data protection 52

Data protection Compliance Failure-to-appear e-records 52

Debevoise Data Blog

MAY 12, 2023

Key takeaways this April include: UK children’s data protection focus continues: Businesses may wish to review policies and procedures for dealing with children’s data in light of recent UK ICO fines and guidance, especially to ensure that terms of use are adequately enforced. UK ICO fines TikTok £12.7

Data protection 52

Data protection Software design Machine learning Software 52

Technology Law Dispatch

OCTOBER 20, 2023

On 3 October 2023, the Information Commissioner’s Office (ICO) published guidance (the Guidance) on lawful monitoring in the workplace. This is not limited to employees and could include monitoring of workers or those who are self-employed. their right of erasure). their right of erasure).

Data protection 72

Data protection Law Law 72

Legal Tech Blog

SEPTEMBER 7, 2023

New data protection laws, increasing regulation, greater risk of cyber attacks: The challenges for entrepreneurs are becoming ever greater. On September 1, a new data protection law (revDSG) has come into force in Switzerland. However, compliance can be largely automated through artificial intelligence.

Compliance 70

Compliance Data protection Legal tech Legal tech 70

Clio

JANUARY 30, 2024

Law firm data security should be a top priority for any practice, and here’s why: Clients trust you with their most confidential information. Since clients entrust lawyers with so much of their sensitive data, law firms make prime targets for cybercrime. You don’t want your law firm to become part of that statistic.

Law firm 96

Law firm Law Law Due diligence 96

Inside Privacy

JANUARY 24, 2024

On 15 January 2024, the UK’s Information Commissioner’s Office (“ICO”) announced the launch of a consultation series (“Consultation”) on how elements of data protection law apply to the development and use of generative AI (“GenAI”). Interested stakeholders are invited to provide feedback to the ICO by 1 March 2024.

Data protection 61

Data protection Intellectual Property Compliance Law 61

Inside Privacy

OCTOBER 17, 2023

On 3 October 2023, the UK Information Commissioner’s Office (“ ICO ”) finalized its Employment practices and data protection − Monitoring workers guidance (“ Guidance ”) to account for new types of work, including work from home, and the use of more sophisticated technologies for monitoring.

Data protection 65

Data protection Time-tracking Case management Compliance 65

Debevoise Data Blog

SEPTEMBER 25, 2024

However, data controllers and processers should be aware that the UK’s Information Commissioner’s Office (“ICO”) can also carry out dawn raids as part of investigations into compliance with data protection laws. unlawfully obtaining personal data). unlawfully obtaining personal data).

Data protection 52

Data protection Failure-to-appear Court Judge 52

Inside Privacy

APRIL 12, 2023

These requirements cover a wide range of issues that are frequently debated in relation to the governance of generative AI globally, such as data protection, non-discrimination, bias and the quality of training data.

Intellectual Property 138

Intellectual Property Data protection Law Law 138

Vogel IT Law

APRIL 4, 2023

HealthCareInfoSecurity.com reported that “A user of the now-shuttered BreachForums in April 2021 posted a data set of 533 million Facebook profiles, including mobile numbers, email addresses and names scraped from the site in 2018 and 2019.” Facebook reported revenue of $23 billion in 2022 and $39 billion in 2021.

Data protection 52

Data protection Court Litigation Litigator 52

Richmond Journal of Law and Technology

MAY 2, 2023

These include e-commerce law, consumer protection law, data privacy laws, and breach notification laws. However, companies can use these laws to their advantage by using them as a guide to identify the most suitable e-commerce market to enter. 11] Therefore, it is crucial for U.S. 15] Ultimately, U.S.

Data protection 52

Data protection Compliance Due diligence Law 52

Ikigai Law

AUGUST 7, 2023

somebody has to sound the alarm.” – Meryl Streep, The Laundromat The Prevention of Money Laundering Act (or, as its friends call it, the ‘PMLA’) is a long-arm law. Reporting entities must follow several compliance and reporting obligations under the anti-money laundering law. The data law is nearly here!

Data protection 52

Data protection Law Law e-records 52

Legal Expert Connections

SEPTEMBER 19, 2018

A law firm website is its most important marketing tool, particularly for insurance defense or AmLaw 100-200 law firms that do not typically run online advertising campaigns. Once a prospect learns about your law firm, they often visit your attorney bio pages and practice area pages to learn more about your services.

Law firm 52

Law firm Law Law Data protection 52

Debevoise Data Blog

FEBRUARY 8, 2021

As anyone following the fallout from the Court of Justice of the European Union’s decision in Schrems II will know, the GDPR restricts the transfer of personal data to “third countries”, including the U.S., This requires firms to share only personal data that is truly necessary for the stated purpose of the data request.

Data protection 52

Data protection Compliance Court Law 52

Technology Law Dispatch

MARCH 6, 2023

If you can remember as far back as December 2021, we published a blog post announcing that the European Data Protection Board (EDPB) published draft guidelines on the interplay between the territorial scope of the GDPR and the international transfer requirements.

Data protection 52

Data protection 52

MatterSuite

DECEMBER 12, 2024

Why is Data Compliance Important? Failure to adhere to the security framework regarding data protection can lead to high fines and even court cases. General Data Protection Regulation (GDPR) Europe introduced a data protection law, which is the GDPR, in 2018 for businesses handling personal and private personal information.

Compliance 52

Compliance Data protection Failure-to-appear Time-tracking 52

Discovery Advocate

NOVEMBER 26, 2018

The Clarifying Lawful Overseas Use of Data Act (Pub. 115-141 (2018), or the CLOUD Act, was enacted in the U.S. on March 23, 2018, in response to difficulties U.S. 115-141 (2018), or the CLOUD Act, was enacted in the U.S. on March 23, 2018, in response to difficulties U.S.

Court 52

Court Data protection Litigation Litigator 52

Discovery Advocate

APRIL 23, 2018

6, 2018, the Article 29 Working Party (Working Party 29) published Working Paper 261 (WP 261), which provided guidance on the provisions of Article 49 of the European Union’s (EU) General Data Protection Regulation (GDPR).

e-discovery 52

e-discovery Data protection Litigation Litigator 52

Legal IT Group

JANUARY 30, 2023

This is the amount of a fine paid by a well-known company for violating the rules of the European General Data Protection Regulation (the GDPR). In this article, you will learn about the top 7 largest fines of 2022 and the personal data practices that should be avoided in your business. Is 1,000 EUR a lot for a business?

Compliance 52

Compliance Data protection Analytics Law 52

MatterSuite

OCTOBER 27, 2023

Ever wondered how technology is reshaping the practice of law, an arena known for its venerable traditions and meticulous procedures? billion by 2023, growing at a compound annual growth rate (CAGR) of around 10% from 2018. This analyzes vast legal databases and provides attorneys with relevant case law, statutes, and legal precedents.

Legal tech 52

Legal tech Legal tech e-discovery Machine learning 52

Percipient

APRIL 22, 2023

The law firm produced the documents but sought reimbursement for over $44,000 spent complying with the subpoena. Although the law firm petitioned for costs under Fed. The court concluded that the law firm was not a “disinterested non-party.” The court denied the reimbursement request.

e-discovery 97

e-discovery Court e-records Litigation 97

Inside Privacy

FEBRUARY 1, 2024

While the EU GDPR regulates the international transfer of personal data, several recently enacted EU laws regulate the international transfer of non-personal data, which is any data that is not “personal data” under the GDPR. This is borne out by the provisions in the proposed EHDS, as discussed below.

Intellectual Property 72

Intellectual Property State law Court Compliance 72

new tech law blog

DECEMBER 2, 2022

Entities transferring personal data outside the European Economic Area on the basis of standard contractual clauses that are no longer in force (where the transfer began before 27 September 2021) should conclude agreements based on new clauses by 27 December 2022.

Data protection 52

Data protection Compliance Court 52

Debevoise Data Blog

NOVEMBER 12, 2021

Google was then able to collate and sell that data to advertisers. privacy laws, fining Google US$ 22.5 Mr Lloyd alleged that Google breached its duties as a data controller under the Data Protection Act 1998 (“DPA”) when it implemented the ‘Safari Workaround’. million in 2012.

Data protection 52

Data protection Court Judge Litigator 52

Debevoise Data Blog

AUGUST 18, 2021

The penalty resolves charges that Pearson misled investors related to a 2018 data breach. The SEC has shown this week that, when the facts warrant, it is prepared to call out such communications strategies as violations of the securities laws. securities issuer. For What Did the SEC Fault Pearson ?

Data protection 40

Data protection Software Law Law 40

Technology Law Dispatch

SEPTEMBER 14, 2023

On August 18, 2023, the Fourth Circuit decertified approximately 20 million putative class action claims arising out of a 2018 data breach involving Marriott Hotels.

Defendant 52

Defendant Lawsuit Court Litigation 52

Technology Law Dispatch

JANUARY 23, 2023

The UK Network and Information Systems (NIS) Regulations 2018 will be strengthened in an effort to protect essential and digital services. However, the frequency and scale of cyber incidents and consequent increased risk of severe damage has prompted change to UK cyber laws as well. What are the changes?

Data protection 52

Data protection Law Law 52

Ikigai Law

JUNE 6, 2023

Instead of a separate regulator, the government is contemplating a body similar to the data protection board suggested under the latest version of the data bill. Meanwhile, the Delhi High Court has given the government six weeks’ time to share the outcome of its consultations on the draft e-pharmacy rules from 2018.

Time-tracking 52

Time-tracking Court Data protection Hearing 52

Legal IT Group

FEBRUARY 21, 2023

Moreover, since 2018, IAB Ukraine has had its own representative office in Ukraine. It is a “guide” for website owners, technology providers, agencies, advertisers, and digital marketers to comply with the law on processing personal data. In total, the IAB Global Network unites 45 IAB organizations around the world.

Data protection 52

Data protection Compliance Law Law 52

Debevoise Data Blog

MARCH 17, 2023

This tension is particularly challenging when considering how long to keep confidential data that was used to train an AI model that is currently in operation. Taking the second question first, there does not appear to be any specific legal requirements as to how long AI training data must be maintained.

e-discovery 52

e-discovery Compliance Litigation Litigator 52

Debevoise Data Blog

OCTOBER 10, 2022

European Data Protection Roundup – September 2022 Key takeaways this September include: Google Analytics : Continue to assess carefully the use of Google Analytics. What to do : The Danish Data Protection Agency referred entities to the CNIL’s detailed guidance on making Google Analytics GDPR-compliant.

Data protection 52

Data protection Analytics Software Compliance 52

Debevoise Data Blog

FEBRUARY 27, 2024

GDPR one-stop-shop: Businesses wishing to take advantage of the GDPR one-stop-shop system should take note of a new digest, published by the European Data Protection Board, which analyses the decisions made by so-called Lead Supervisory Authorities in this context.

Data protection 52

Data protection Compliance e-records Time-tracking 52

LawSites

DECEMBER 27, 2022

Notably, the post that captured the most eyes was about New York becoming the first state to mandate CLE in cybersecurity, privacy and data protection. New York Becomes First State to Mandate CLE in Cybersecurity, Privacy and Data Protection. Jackson Women’s Health Organization. Here’s What Happened.

Data protection 80

Data protection Analytics Legal tech Legal tech 80

Richmond Journal of Law and Technology

APRIL 11, 2023

4] The establishment of minimum security standards could force software manufacturers and technology companies to take on the burden of implementing more secure software and better protect consumers. [5] 7] Recent threats from hackers, cyberterrorists, and data breaches have led to an increased examination of the U.S.’s 114-113, Div.

Data protection 52

Data protection Software Defendant Law 52