Court Data protection State law 
Inside Privacy
FEBRUARY 1, 2024
Note that the data localization prohibition in this Regulation applies to individual EU Member States’ laws; it does not preclude the EU from implementing data localization requirements. X (Recent Council versions remove this obligation.)
Debevoise Data Blog
OCTOBER 18, 2021
The TDPA provides for a private right of action for violation of the prohibition to sell, lease, or disclose data. Compensatory damages or damages between $200 and $1,000 are authorized for each unlawful sale, as are reasonable attorneys’ fees and court costs. See Vance v. Amazon.com Inc. , C20-1084JLR, 2021 WL 1401633, at *2 (W.D.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Debevoise Data Blog
OCTOBER 26, 2021
Further, in a case that we have covered previously involving a supermarket using video surveillance with facial recognition capabilities, the Spanish data protection authority (the “AEDP”) fined grocer Mercadona for violating numerous provisions of the EU’s General Data Protection Regulation.
Debevoise Data Blog
MAY 23, 2022
Like other state privacy laws, the CTPA contains a number of entity-based and data-based exemptions, including financial institutions covered by the Gramm-Leach-Bliley Act, national securities associations that are registered under the Securities Exchange Act of 1934, and data regulated by the Fair Credit Reporting Act, among other exemptions.
Debevoise Data Blog
JANUARY 17, 2025
Our top-eleven European data protection developments for the end of 2024 are: EU Cyber Resilience Act: The Council of the European Union approved the Cyber Resilience Act , introducing cybersecurity requirements for digital products sold in the EU. The UK Upper Tribunal did not consider the provisions under the UK GDPR.
Inside Privacy
MAY 3, 2023
On April 27, 2023, the Advocate General (“AG”) of the Court of Justice of the European Union (“CJEU”) issued its opinion in the case C-807/21 on the conditions for imposing GDPR fines on legal persons (e.g., million fine the Berlin Supervisory Authority imposed on Deutsche Wohnen SE for infringing the GDPR’s data retention obligations.
3 Geeks and a Law Blog
JULY 11, 2023
I think we can all agree that data privacy is a fundamental and sacred, right. We live in a country where a court of law recently ruled that the All Writs Act couldn’t compel Apple to unlock an iPhone belonging to an accused terrorists. Not all, I believe only one or two state laws in the US require it.
Expert insights. Personalized for you.
72 
Let's personalize your content