Vogel IT Law

APRIL 4, 2023

HealthCareInfoSecurity.com reported that “A user of the now-shuttered BreachForums in April 2021 posted a data set of 533 million Facebook profiles, including mobile numbers, email addresses and names scraped from the site in 2018 and 2019.” Facebook reported revenue of $23 billion in 2022 and $39 billion in 2021.

Data protection 52

Data protection Court Litigator Litigation 52

LawSites

DECEMBER 1, 2021

Among its key findings: Data protection is a clear and rising threat for 46% of GC, while more than a third are concerned about increased regulation and antitrust enforcement. on a scale of 1 to 5) for data privacy obligations and regulations such as GDPR and CCPA, that confidence slipped notably (to 3.27) for 2022.

e-discovery 98

e-discovery Compliance e-filing Data protection 98

Inside Privacy

MARCH 23, 2023

The eID proposal would also enable minors to use their digital identity wallet to prove their age without disclosing other personal data.

Data protection 79

Data protection Law Law 79

Richmond Journal of Law and Technology

MAY 2, 2023

The African Union (AU) member states and Economic Community of West African States (ECOWAS) member states are obligated to respect, protect, and promote the right to privacy and personal data protection, as stated in their declarations and conventions. [12] 12] To ensure compliance and mitigate risks, U.S. 15] Ultimately, U.S.

Data protection 52

Data protection Compliance Due diligence Law 52

ELTA

JUNE 3, 2021

Two new ambassadors were appointed in May 2021: With the nomination of Suzanna Kalendzhian for UAE and Elvīra Krēķe for Latvia, the European Legal Technology was able to further consolidate its Ambassador network. “We says Holger Zscheyge, ELTA’s president.

Data protection 52

Data protection Legal advice Legal tech Legal tech 52

Debevoise Data Blog

DECEMBER 9, 2021

On November 14, 2021, the Cyberspace Administration of China (“CAC”) released the draft “Network Data Security Management Regulations” (the “Draft Regulations”) for public comment.

Data protection 52

Data protection Law Law 52

Debevoise Data Blog

NOVEMBER 11, 2021

International companies doing business in China and Chinese companies doing business internationally have been awaiting clarification on the rules of the road governing the cross-border transfer of data out of China. The last of these, the PIPL, became effective November 1, 2021. Any data processor that transfers “important data”.

Data protection 52

Data protection Compliance Law Law 52

Debevoise Data Blog

MARCH 11, 2021

Earlier this week, Debevoise published an overview of the SEC’s Division of Examination Priorities for 2021. The Road Ahead and Key Takeaways The SEC’s 2021 Priorities highlight the increased risks associated with work-from-home protocols and vendor management, both of which we have discussed in depth in the last year here and here.

Compliance 52

Compliance Data protection Attorney 52

Legal IT Group

NOVEMBER 10, 2023

First of all, the data can be transferred based on the adequacy decision or subject to appropriate safeguards. Among these safeguards, in particular, are binding corporate rules, standard data protection clauses, code of conduct, and certification mechanism. In such cases, appropriate safeguards are used.

Data protection 52

Data protection Compliance Law Law 52

Clio

JANUARY 1, 2025

Between 2021 and 2023, average lawyer wages increased by 19.2%. How are firms preventing unauthorized access to data? Nearly half (48%) of law firms use file encryption, while 42% now offer email encryptionindicating a growing focus on data protection. How much do lawyers earn on average?

Lawyer 98

Lawyer Law firm Bankruptcy Data protection 98

Debevoise Data Blog

SEPTEMBER 21, 2022

For UK data transfers: all new agreements executed on or after 21 September 2022 should incorporate the UK Addendum or IDTA; and all existing agreements incorporating the old SCCs must be updated by 21 March 2024 (or sooner if the processing operations change before then).

Data protection 52

Data protection Compliance Court 52

Legal Tech Innovation Wales

FEBRUARY 15, 2023

Various pieces of legislation apply to AI, for example, UK data protection laws refer specifically to automated decision-making and the processing of personal data. This means that chat bots like Harvey are not able to process client data, without clients first opting-in to having their information used in this way.

Machine learning 59

Machine learning Data protection Legal research Lawyer 59

Debevoise Data Blog

APRIL 19, 2021

On 1 March 2021, Federal Law No. 519-FZ on Amendments to the Federal Law on Personal Data dated 30 December 2020 (the “Law”) came into force. This is additional to general data processing consent, which is still required under pre-existing data protection law. Transfer of Publicly Disclosed Personal Data.

Due diligence 52

Due diligence Data protection Federal law Court 52

Legal Tech Monitor

SEPTEMBER 6, 2023

With the goal of simplifying and standardizing those business dealings, the non-profit organization oneNDA developed an open-source NDA that, since its launch in 2021, has been adopted by more than 1,000 companies, including American Express, Google, Novartis and Panasonic. The formally launched version one in August 2021.

Software 52

Software Dispute resolution Time-tracking Data protection 52

LawSites

DECEMBER 1, 2021

Among its key findings: Data protection is a clear and rising threat for 46% of GC, while more than a third are concerned about increased regulation and antitrust enforcement. on a scale of 1 to 5) for data privacy obligations and regulations such as GDPR and CCPA, that confidence slipped notably (to 3.27) for 2022.

e-discovery 52

e-discovery Compliance e-filing Data protection 52

Ikigai Law

MAY 9, 2023

Italy resuscitated ChatGPT after a brief ban, as OpenAI assured it has ‘addressed or clarified’ issues raised by data protection regulators. Bills check: The next session of the Parliament (July/August) is likely to see the Digital Personal Data Protection Bill come to life. Jio has also bagged the sweet IPL deal.

Data protection 52

Data protection Court Hearing Law 52

Debevoise Data Blog

OCTOBER 11, 2021

On August 20, 2021, China’s Standing Committee of the National People’s Congress passed the Personal Information Protection Law (“PIPL”). 1 The PIPL will take effect on November 1, 2021. The PIPL will come into force in November 2021 and it remains to be seen how the PIPL will be enforced in practice. 3 Article 2.

Law 52

Law Law e-records Compliance 52

Debevoise Data Blog

APRIL 14, 2023

In January 2021, the FCA had already highlighted the challenges and risk of misconduct arising from the increasing use of unmonitored or encrypted communication tools, emphasising that communications must be recorded and auditable.

e-records 52

e-records Compliance e-filing Data protection 52

Debevoise Data Blog

NOVEMBER 29, 2023

While some countries have indicated that they intend to allocate responsibility to their existing data protection authorities, others (such as Spain ) will create specific AI-focused agencies. On 21 April 2021 the Commission published its draft legislation governing the use of AI; this forms the basis of the negotiation discussions.

Compliance 52

Compliance Data protection e-records Law 52

Debevoise Data Blog

MARCH 4, 2021

state with a comprehensive privacy law, with Governor Ralph Northam’s signing of the Virginia Consumer Data Protection Act (“VCDPA”) on March 2, 2021. law in the direction of its overseas cousin, the European Union’s General Data Protection Regulation (“GDPR”). Virginia has just become the second U.S.

Data protection 52

Data protection Law Law Compliance 52

Debevoise Data Blog

OCTOBER 4, 2021

On September 21, 2021, the U.S. Strong Cybersecurity : In Part 1 , we noted that OFAC will now be considering the sufficiency of a victim’s cybersecurity program in deciding whether to bring an enforcement action relating to a ransomware payment, and offered some tips on data protection measures that can reduce risk.

Due diligence 52

Due diligence Compliance Data protection Law 52

Debevoise Data Blog

OCTOBER 18, 2021

Digital Doorbells: If any more evidence is needed that facial recognition technology has hit the mainstream, consider CNET’s review of the best facial recognition security cameras of 2021. What Kind of Data Do Facial Recognition Laws Cover? C20-1084JLR, 2021 WL 1401633, at *2 (W.D. C20-1082JLR, 2021 WL 1401634, at *5 (W.D.

Law 52

Law Law Court Time-tracking 52

Legodesk

NOVEMBER 21, 2021

Read Also – Legal Filing System: How to Organize Your Files in 2021 Regrettably, lawyers dont always practice what they preachespecially with document management. For law firms that dont have a data management plan, some important information is compelled to fall through the cracks and not ever make it to the clients file.

Lawyer 52

Lawyer Document management Software Time-tracking 52

Legodesk

NOVEMBER 21, 2021

Read Also – Legal Filing System: How to Organize Your Files in 2021 Regrettably, lawyers don’t always practice what they preach—especially with document management. For law firms that don’t have a data management plan, some important information is compelled to fall through the cracks and not ever make it to the client’s file.

Lawyer 52

Lawyer Document management Software Time-tracking 52

Ikigai Law

FEBRUARY 9, 2023

On 17 January, the IT ministry held a consultation with online gaming companies, industry associations, and law/policy experts – on the online gaming amendments to the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021 (IT rules).

Due diligence 52

Due diligence Data protection Hearing Compliance 52

Debevoise Data Blog

OCTOBER 26, 2021

Further, in a case that we have covered previously involving a supermarket using video surveillance with facial recognition capabilities, the Spanish data protection authority (the “AEDP”) fined grocer Mercadona for violating numerous provisions of the EU’s General Data Protection Regulation.

Compliance 52

Compliance Federal law Data protection Machine learning 52

AXDRAFT

JANUARY 20, 2023

In March 2022, Hubspot reported a breach where malicious individuals accessed client data via an employee’s compromised account. During 2021–2022 , there was a surge in the use of SaaS applications, but it also led to an outbreak of cybercrime and stolen data: 81% of organizations experienced a breach of sensitive data.

Time-tracking 52

Time-tracking Contract management Software Analytics 52

Debevoise Data Blog

OCTOBER 12, 2021

million fine against Austrian Post for channelling electronic data protection-related inquiries to a web form and not offering an additional email address, irrespective of the data subject option to also use non-electronic postal mail or customer service.

Data protection 52

Data protection Failure-to-appear Compliance e-records 52

Dennis Kennedy

SEPTEMBER 10, 2023

The 2021 training cut-off for GPT large language models should be taken into account. I address that by using techniques like specifying that a person be an expert in the principles and approaches set out in the works of someone whose works are before 2021. In the case of ChatGPT, how do we deal with the current 2021 training cut-off?

Legal technology 71

Legal technology Legal technology Law Law 71

Debevoise Data Blog

APRIL 28, 2023

UK ICO updates guidance to clarify requirements for fairness in AI What happened : The UK ICO has updated its existing Guidance on AI and data protection following requests from industry to clarify requirements for fairness in AI. Norwegian Data Protection Authority fines medical device company c.$240,000

Data protection 52

Data protection Compliance e-filing Software 52

Debevoise Data Blog

NOVEMBER 1, 2021

Subject access requests : The possibility that companies responding to data subject access requests from individuals will have to provide copies of entire documents containing their personal data, rather than only extracts. Stolen data was also posted on the darkweb.

Data protection 52

Data protection Court Defendant Law 52

Debevoise Data Blog

FEBRUARY 10, 2021

As covered in our Annual Review , 2020 was a blockbuster year for European data protection. If January is anything to go by, 2021 will be the same. In particular, it highlights the need to ensure that this type of decision-making does not have a disproportionate impact on individuals with particular protected characteristics.

Data protection 52

Data protection Time-tracking Defendant Court 52

Debevoise Data Blog

FEBRUARY 20, 2023

The Task Force was convened in September 2021 following hundreds of cookie banner-related complaints from the European Center for Digital Rights. EDPB’s cookie banner task force report highlights user-friendly design choices What happened : In January 2023, the EDPB adopted a final report on the Cookie Banner Task Force’s work.

Data protection 52

Data protection Compliance e-records Court 52

Legal Tech Monitor

SEPTEMBER 10, 2023

The 2021 training cut-off for GPT large language models should be taken into account. I address that by using techniques like specifying that a person be an expert in the principles and approaches set out in the works of someone whose works are before 2021. In the case of ChatGPT, how do we deal with the current 2021 training cut-off?

Legal technology 52

Legal technology Legal technology Law Law 52

Debevoise Data Blog

SEPTEMBER 23, 2024

Our top-five European data protection developments from August are: Uber fined for personal data transfer: The Dutch Data Protection Authority fined Uber €290 million for the unlawful transfer of European drivers’ personal data to the U.S., without sufficient safeguards.

Data protection 52

Data protection Court Software Compliance 52

Debevoise Data Blog

JANUARY 17, 2025

Our top-eleven European data protection developments for the end of 2024 are: EU Cyber Resilience Act: The Council of the European Union approved the Cyber Resilience Act , introducing cybersecurity requirements for digital products sold in the EU. The UK Upper Tribunal did not consider the provisions under the UK GDPR.

Data protection 52

Data protection Compliance Court State law 52

Debevoise Data Blog

SEPTEMBER 27, 2023

The AEPD held that a DPO cannot hold a position that leads them to determine the purposes and means of data processing. The scale and data protection risks associated with such technologies has been further complicated recently by their increasing integration with artificial intelligence systems.

Data protection 52

Data protection Compliance e-filing Court 52