Debevoise Data Blog

JUNE 27, 2024

Our top five European data protection developments from May are: UK guidance on ransom payments: The UK NCSC and various insurance industry bodies co-published guidance on key considerations for ransomware payments. These developments are covered in more detail below.

Data protection 52

Data protection Software e-records Compliance 52

Debevoise Data Blog

JUNE 1, 2023

Privacy and Data Protection , a leading UK journal on practical data protection compliance issues, has featured in its latest edition an article by Robert Maddox and Stephanie Thomas on the hallmarks of effective data protection by design and default under the EU and UK GDPR.

Data protection 52

Data protection Compliance 52

Legal IT Group

SEPTEMBER 19, 2023

For example, in 2020, the Data Protection Authority of Hamburg imposed a 35.3 This fact became known when the H&M servers encountered a technical error, and the data on the network drive became accessible to all employees for a few hours. million euro fine on H&M for violation of Articles 5 and 6 of the GDPR.

Data protection 52

Data protection Compliance e-records Law 52

Debevoise Data Blog

SEPTEMBER 23, 2024

Our top-five European data protection developments from August are: Uber fined for personal data transfer: The Dutch Data Protection Authority fined Uber €290 million for the unlawful transfer of European drivers’ personal data to the U.S., without sufficient safeguards.

Data protection 52

Data protection Court Software Compliance 52

Debevoise Data Blog

JUNE 8, 2023

Third country data transfers : Businesses that transfer personal data outside of the EEA may want to review their transfer mechanisms in light of new guidance on the EU and South East Asia SCCs, and the DPC’s record-breaking €1.2 billion fine against Meta. These developments, and more, covered below. (1)

Data protection 52

Data protection Compliance e-records Dispute resolution 52

Debevoise Data Blog

NOVEMBER 21, 2023

Data protection & AI: In particular: (i) the French CNIL published its first set of guidance on GDPR compliance when developing AI tools; and (ii) the UK ICO issued a preliminary enforcement notice against Snap over its AI chatbot, alleging that Snap had not adequately assessed the privacy risks posed to child users of the tool.

Data protection 52

Data protection Compliance Failure-to-appear e-records 52

new tech law blog

JANUARY 2, 2023

In this regard, we describe below what they should take under consideration in light of Polish labour law and data protection law. Therefore, implementation and exploitation of such solutions by the employer (as a controller of employee data) must be done in compliance with the rules for processing of personal data under Art.

Data protection 52

Data protection Law Law Time-tracking 52

Debevoise Data Blog

DECEMBER 10, 2020

The big news this November was the European Data Protection Board (the “EDPB”) issuing its highly anticipated post- Schrems II data transfer guidance, followed just a day later by the European Commission’s draft updated Standard Contractual Clauses (“SCCs”) (see our blog post here ).

Data protection 52

Data protection Dispute resolution Court Compliance 52

Debevoise Data Blog

MAY 12, 2023

Key takeaways this April include: UK children’s data protection focus continues: Businesses may wish to review policies and procedures for dealing with children’s data in light of recent UK ICO fines and guidance, especially to ensure that terms of use are adequately enforced.

Data protection 52

Data protection Software design Machine learning Software 52

CaseFox

MAY 30, 2023

In today’s digital age, data security is a critical concern for law firms. As custodians of sensitive client information, law firms must take proactive measures to safeguard data from cyber threats and ensure compliance with data protection regulations.

Law firm 98

Law firm Data protection Law Law 98

Legal IT Group

JANUARY 4, 2023

Those who process personal data of EU residents should comply with the requirements of the General Data Protection Regulation or GDPR. Non-compliance with GDPR may result in hefty fines and reputational losses. However, it is not enough to just formally have such policies in place.

Compliance 52

Compliance Data protection Law Law 52

MatterSuite

JUNE 1, 2023

The repercussions of a data breach in the legal sector can be severe, ranging from reputational damage to regulatory non-compliance. In this blog, we will explore the essential elements of data security that every legal department should know of. We will delve into the potential risks and challenges faced by law firms.

Intellectual Property 98

Intellectual Property Data protection Compliance Law firm 98

MatterSuite

JUNE 1, 2023

The repercussions of a data breach in the legal sector can be severe, ranging from reputational damage to regulatory non-compliance. In this blog, we will explore the essential elements of data security that every legal department should know of. We will delve into the potential risks and challenges faced by law firms.

Intellectual Property 98

Intellectual Property Data protection Compliance Law firm 98

MatterSuite

DECEMBER 12, 2024

But with the increase of business information in layers, comes the challenge of protecting personal and sensitive information, too. Amidst a world where cyber threats are becoming very advanced and prevalent, it is now imperative to uphold robust compliance to security frameworks, as well as sufficient cybersecurity measures , to secure data.

Compliance 52

Compliance Data protection Failure-to-appear Time-tracking 52

Ikigai Law

AUGUST 3, 2023

Our summary of the Digital Personal Data Protection Bill, 2023 The Digital Personal Data Protection Bill, 2023 ( 2023 Bill ) was tabled in Parliament on 3 August 2023. It is the fifth – and likely final – iteration of India’s efforts to formulate a personal data protection law.

Data protection 52

Data protection Compliance e-filing Hearing 52

Debevoise Data Blog

OCTOBER 20, 2023

The CMA further highlighted that transparency around the data used to train FMs is critical to reducing bias and improving accuracy of outputs, and to ensuring accountability. Two areas that have been stressed previously in the data protection compliance context.

Data protection 52

Data protection Intellectual Property Compliance Law 52

Debevoise Data Blog

FEBRUARY 20, 2023

When calculating the fine, the CNIL cited the large scale of the data processing and the high proportion of minors (38% were between 13 and 17) as aggravating factors. The fines follow non-compliance notices CNIL served to 60 organisations that did not allow users to refuse cookies as easily as to accept them.

Data protection 52

Data protection Compliance e-records Court 52

Liquid Litigation Management, Inc.

AUGUST 9, 2023

However, a breakthrough innovation known as Automated Redaction is quietly revolutionizing document review. This game-changing tool offers powerful search capabilities, simple document interaction, and fully automatic redaction for a wide range of file types, all without the need for imaging the documents.

Data protection 52

Data protection Time-tracking Compliance Litigation 52

Debevoise Data Blog

JANUARY 25, 2024

They are also reminded of their obligation to maintain appropriate technical and organisational measures in relation to their data processing, and may wish to review their compliance with these measures. It remains to be seen whether data protect authorities will provide guidance on how to interpret the “draw strongly” condition.

Data protection 40

Data protection Court e-records Compliance 40

Simple Legal

APRIL 18, 2024

It addresses the core needs of legal teams by: Accelerating efficiency: By enabling in-app document sharing, SimpleLegal minimizes turnaround times, streamlines decision-making processes, and eliminates traditional bottlenecks like email or FTP constraints. What can be shared?

Compliance 81

Compliance Data protection Corporate law Litigation 81

CaseFox

FEBRUARY 27, 2023

Law tech helps improve and streamline legal processes, ranging from document automation to artificial intelligence (AI) tools for legal research. For example, document automation can significantly reduce the time and effort required to draft and review legal documents.

Legal tech 97

Legal tech Legal tech Law firm Document automation 97

Legal IT Group

JANUARY 17, 2023

Therefore, individual states took matters into their own hands and passed local laws to protect the privacy of their residents. Virginia The Virginia Consumer Data Protection Act ( VCDPA ) was adopted in the spring of 2021 and came into force on January 01, 2023. Conclusion What does it actually mean for business?

Data protection 52

Data protection Law Law Attorney 52

MatterSuite

JUNE 12, 2023

Streamlining Document Management Government legal teams deal with a vast amount of documents, including laws, regulations, policies, case files, and contracts. By implementing document management software , legal teams can digitize their records, enabling easy search, retrieval, and sharing of information.

Time-tracking 98

Time-tracking Legal research Document management Legal Database 98

CloudNine

JANUARY 10, 2024

This integration will enable more precise identification of key documents and information, giving practitioners a clearer understanding of the case early on and influencing the speed to litigation, settlement, or other strategic decisions. The General Data Protection Regulation (GDPR) is an early example of this.

Compliance 104

Compliance Machine learning Litigation Litigator 104

Rocket Matter

SEPTEMBER 3, 2024

If you don’t want to become a statistic, take a hard look at your security protocols and compliance. Do you know where all of your client data is and how it is used? Especially important, though, is SOC 2 compliance. What is SOC 2 compliance? SOC 2 compliance ensures that you are securely interacting with client data.

Compliance 52

Compliance Law firm Law Law 52

MatterSuite

JUNE 19, 2023

An RFP is a formal document used by organizations and companies to invite vendors for corporate projects. These documents detail the work scope, specific legal services needed, project timelines, evaluation criteria, and proposal submission instructions. They do so to submit proposals for legal services.

Law firm 97

Law firm Due diligence Compliance Law 97

MatterSuite

JULY 2, 2023

Lawyers often spend hours conducting legal research, drafting documents, and answering client queries. ChatGPT can swiftly analyze and interpret legal documents. Document Drafting: Drafting legal documents can be a time-consuming and meticulous process. To understand the privacy policies and how the AI tool handles data.

Lawyer 98

Lawyer Legal research Compliance Legal education 98

Legal IT Group

NOVEMBER 13, 2023

A data protection officer ( DPO ) is a specialist who helps companies ensure compliance with international data protection laws. In a nutshell, the DPO is a key person who helps the company in all business processes to ensure compliance with the data protection law.

Data protection 52

Data protection Compliance International law Law 52

Technology Law Dispatch

FEBRUARY 27, 2023

2022 was another busy year in privacy and data protection. Regulations surrounding privacy and data continue to develop at a rapid pace. Sven Schonhofen , Munich – “Cookie compliance will continue to be an enforcement trend. Andreas Splittgerber , Munich – “2023 will be a landmark year for AI regulations in Europe.

Data protection 59

Data protection Analytics Compliance Court 59

Debevoise Data Blog

JUNE 25, 2022

In light of these trends, we have also included four tips for companies seeking to establish practical compliance and governance programs related to their ADM systems. It may also, in certain circumstances, involve a quantitative analysis of the model outputs to see if there is a disparate impact on any protected classes.

Compliance 52

Compliance Law Law Data protection 52

Legal IT Group

JANUARY 10, 2023

Since the entry into force of the General Data Protection Regulation (GDPR), many companies processing the data of Europeans have faced the task of achieving the much desired GDPR-compliance. Why do we need this?

Compliance 52

Compliance Data protection Law Law 52

Inside Privacy

NOVEMBER 13, 2023

The Court also clarified that the GDPR does not require data subjects to provide reasons for their request, and therefore, the data holder cannot reject an access request on the grounds that the data subject access request is not aimed at verifying GDPR compliance.

Data protection 69

Data protection Law Law Court 69

Inside Privacy

NOVEMBER 20, 2023

On October 11, 2023, the French data protection authority (“CNIL”) issued a set of “how-to” sheets on artificial intelligence (“AI”) training databases. There are eight sheets in total, each covering a data protection issue AI providers should consider when designing their systems. What are the next steps?

Data protection 57

Data protection Machine learning Compliance Law 57

Legal IT Group

JUNE 5, 2023

A data protection impact assessment (DPIA) sounds like something big, complicated and problematic. DPIA stands for Data Protection Impact Assessment. A DPIA is typically conducted when a new project involving the specific processing of personal data is being implemented. Well, it is true. Let’s check.

Data protection 52

Data protection Compliance Time-tracking Law 52

3 Geeks and a Law Blog

JULY 11, 2023

He announces SessionGuardian will offer free CLE courses on cybersecurity awareness and compliance. Firms should look beyond check-the-box compliance to make privacy and security central in their culture. This basically sharing sensitive documents on extra debts with outside parties. So I definitely think data.

Law firm 189

Law firm Time-tracking Due diligence Attorney 189

Inside Privacy

APRIL 3, 2023

The CJEU also held that, in this case, providing the register under a court order served a different purpose ( i.e. , civil proceedings) from the one for which the data had been collected initially ( i.e. , tax compliance). However, courts will still have to limit access to documents to what is strictly necessary.

Court 52

Court Data protection Litigator Litigation 52

Debevoise Data Blog

SEPTEMBER 25, 2024

However, data controllers and processers should be aware that the UK’s Information Commissioner’s Office (“ICO”) can also carry out dawn raids as part of investigations into compliance with data protection laws. unlawfully obtaining personal data). Train key staff on protocols and procedures for dawn raids.

Data protection 52

Data protection Failure-to-appear Court Judge 52