Debevoise Data Blog

JULY 30, 2024

Our top five European data protection developments from June are: Non-material damage under GDPR: The CJEU clarified the scope of compensation for non-material damage in the context of identity theft and data subjects’ fear that their personal data had been exposed. To subscribe to the Data Blog, please click here.

Data protection 52

Data protection Time-tracking Mediator Analytics 52

Debevoise Data Blog

JANUARY 25, 2024

Nevertheless, when considering the appropriateness of protective measures, the obligation rests on the data controller to prove that they met the required standard. The rulings arose at the request of both the German and Lithuanian courts, following local administrative fines. The Court ruled that: “Scoring” (i.e.,

Data protection 40

Data protection Court e-records Compliance 40

Clio

OCTOBER 8, 2024

Jack also announced exciting new Clio features for 2025, including automated workflows, custom reporting, and new payment methods. To cap off his exhilarating keynote, Jack revealed that ClioCon 2025 will take place in Boston, Massachusetts. Secure your tickets for ClioCon 2025 today!

Time-tracking 59

Time-tracking Judge Law firm Data protection 59

Eric Goldman

APRIL 28, 2023

If passed, the bill goes into effect July 1, 2024 with the first round of DPIAs due July 1, 2025. Among their targets were the Data Protection Impact Assessment requirements, which NetChoice argued amounted to prior restraint and compelled speech. The bill is currently pending approval by both chambers.

Data protection 131

Data protection Court Hearing Judge 131

Inside Privacy

FEBRUARY 1, 2024

Note that the data localization prohibition in this Regulation applies to individual EU Member States’ laws; it does not preclude the EU from implementing data localization requirements. The restrictions on transfers of non-personal data appear to serve two main purposes. X (Recent Council versions remove this obligation.)

Intellectual Property 72

Intellectual Property State law Court Compliance 72

Debevoise Data Blog

FEBRUARY 27, 2024

GDPR one-stop-shop: Businesses wishing to take advantage of the GDPR one-stop-shop system should take note of a new digest, published by the European Data Protection Board, which analyses the decisions made by so-called Lead Supervisory Authorities in this context.

Data protection 52

Data protection Compliance e-records Court 52

Debevoise Data Blog

MAY 23, 2022

This contrasts with the VCDPA’s and the UCPA’s definition of “sale,” which is limited to an exchange of personal data for only monetary consideration. The CTPA bolsters opt-out rights by requiring controllers to recognize a global opt-out preference by January 1, 2025. CTPA § 6(e)(1)(A)(ii). CTPA § 11(b).

Law 40

Law Law Compliance Attorney 40