Data protection, Document and e-records

European Data Protection Roundup – February 2025

Debevoise Data Blog

MARCH 31, 2025

Our top-five European data protection developments from February are: European Commission publishes guidelines on prohibited AI practices : The EU Commission has published non-binding guidance on the EU AI Acts prohibited use cases. Spanish Telecomm provider fined 1.2 Spanish Telecomm Provider Fined 1.2

Data protection

Data protection e-records Compliance Court

European Data Protection Roundup – Q4 2024

Debevoise Data Blog

JANUARY 17, 2025

Our top-eleven European data protection developments for the end of 2024 are: EU Cyber Resilience Act: The Council of the European Union approved the Cyber Resilience Act , introducing cybersecurity requirements for digital products sold in the EU. The UK Upper Tribunal did not consider the provisions under the UK GDPR.

Data protection

Data protection Compliance Court State law

Data Protection in the Workplace: Employer Guidance

Legal IT Group

SEPTEMBER 19, 2023

For example, in 2020, the Data Protection Authority of Hamburg imposed a 35.3 In particular, specific details about the lives of some employees of H&M (illnesses, medical diagnoses, religious beliefs, and family problems) were comprehensively recorded and stored as information on a network drive. 6 (1) (e) of GDPR Art.

Data protection

Data protection Compliance e-records Law

Webinars

The Tech-Savvy Paralegals Playbook: How To Leverage AI

Uncovering The Hidden Connections: A Patent Family Survival Guide

MORE WEBINARS

You Subpoenaed My Documents, Shouldn’t You Pay for Them?

Percipient

APRIL 22, 2023

Your company received a document subpoena in a legal dispute in which it is not involved. Or it received a data request from a consumer under the GDPR or California Consumer Privacy Act. The court-appointed the SBA as a receiver and permitted it to marshal Cardinal’s assets and business records. In United States v.

e-discovery

e-discovery Court e-records Litigator

European Data Protection Roundup – May 2024

Debevoise Data Blog

JUNE 27, 2024

Our top five European data protection developments from May are: UK guidance on ransom payments: The UK NCSC and various insurance industry bodies co-published guidance on key considerations for ransomware payments. 22, then there must be sufficient human-involvement in that processing for it to be GDPR-compliant.

Data protection

Data protection Software e-records Compliance

UK Data Protection and Digital Information Bill: Key Proposed Changes

Debevoise Data Blog

AUGUST 25, 2022

On 18 July 2022, the UK government published the Data Protection and Digital Information Bill (the “Bill”), which proposes reforms to the UK’s data protection and e-privacy landscape in-line with the National Data Strategy.

Data protection

Data protection e-records

European Data Protection Roundup – May 2023

Debevoise Data Blog

JUNE 8, 2023

Third country data transfers : Businesses that transfer personal data outside of the EEA may want to review their transfer mechanisms in light of new guidance on the EU and South East Asia SCCs, and the DPC’s record-breaking €1.2 billion fine against Meta. These developments, and more, covered below. (1)

Data protection

Data protection Compliance e-records Dispute resolution

European Data Protection Roundup – October 2023

Debevoise Data Blog

NOVEMBER 21, 2023

Data protection & AI: In particular: (i) the French CNIL published its first set of guidance on GDPR compliance when developing AI tools; and (ii) the UK ICO issued a preliminary enforcement notice against Snap over its AI chatbot, alleging that Snap had not adequately assessed the privacy risks posed to child users of the tool.

Data protection

Data protection Compliance Failure-to-appear e-records

Law Firm Management: The Ultimate Guide for Modern Firms

Centerbase

MARCH 31, 2025

Implementing best practices like documenting workflows, creating a solid business plan, prioritizing work-life balance, and ensuring cybersecurity can enhance client satisfaction and support sustainable growth. From scheduling to document filing and billing, these tasks become unwieldy if they are not standardized with the right technology.

Law firm

Law firm Time-tracking Law Law

European Data Protection Roundup – January 2021

Debevoise Data Blog

FEBRUARY 10, 2021

As covered in our Annual Review , 2020 was a blockbuster year for European data protection. has appealed , both penalties show that companies need to be wary not only of how they treat customer data, but also employee data. Spanish DPA hands CaixaBank record €6m fine. While Notebooksbilliger.de

Data protection

Data protection Time-tracking Defendant Court

European Data Protection Roundup – December 2022 and January 2023

Debevoise Data Blog

FEBRUARY 20, 2023

Orange established a mobile telephone contract and SIM card without adequately verifying the customer’s data, resulting in identity theft and data processing of a victim’s personal data without consent. before depositing or writing identifiers later used for advertising purposes on their phones.

Data protection

Data protection Compliance e-records Court

GDPR vs. Meta Platforms: is it time to change the business model?

Legal IT Group

FEBRUARY 22, 2023

According to the Better Regulation Delivery Office, several years ago, the e-commerce market in Ukraine alone was worth about UAH 50 billion a year. Everyone with an account has authorized Meta Platforms to record all their activities on the site. But this is just the tip of the iceberg.

Data protection

Data protection Time-tracking e-filing e-records

European Data Protection Roundup – December 2023

Debevoise Data Blog

JANUARY 25, 2024

Sensitive personal data: The CJEU has clarified that the processing of special category personal data, such as health data, requires a legal basis under both GDPR Art. 6, meaning that businesses may wish to review their records of processing activities to ensure that both are reflected. 9 and GDPR Art. 6 and Art.

Data protection

Data protection Court e-records Compliance

Data subject requests under the GDPR. Why is it essential to respond to them correctly and on time?

Legal IT Group

JUNE 15, 2023

According to the GDPR – General Data Protection Regulation – residents of the European Union (“ EU ”) can send requests regarding their data to all legal and natural persons who process it. If the individual continues to receive emails after the data has been deleted, this will constitute a breach of the GDPR.

e-records

e-records Data protection e-filing Compliance

The Future of Legal Tech: How Technology Is Transforming the Business of Law

MatterSuite

OCTOBER 27, 2023

E-discovery solutions , a significant part of legal tech, were estimated to be a multi-billion-dollar industry. The global e-discovery market size was projected to reach $17.32 Document Analysis: AI-driven software, such as Kira and Relativity, can review and extract critical information from documents, contracts, and emails.

Legal tech

Legal tech Legal tech e-discovery Machine learning

Eight GDPR Questions when Adopting Generative AI

Debevoise Data Blog

OCTOBER 10, 2023

A foreign business not directly subject to GDPR may nevertheless be required to comply with GDPR restrictions if they have entered Standard Contractual Clauses or signed-up to the EU-US Data Protection Framework to facilitate the receipt of personal data. Will the Generative AI tool be used to create new personal data?

Data protection

Data protection e-records Compliance Law

The EU AI Act – Navigating the EU’s Legislative Labyrinth

Debevoise Data Blog

NOVEMBER 29, 2023

The specific detail of these requirements is yet to be agreed but could include heightened data governance standards, monitoring and record-keeping rules, heightened standards for cybersecurity and transparency, as well as human oversight obligations. To subscribe to the Data Blog, please click here. Limited risk systems.

Compliance

Compliance Data protection e-records Law

The 2024 Clio Cloud Conference in Review

Clio

OCTOBER 8, 2024

With a record 2,500 in-person and 1,500 virtual attendees, Jack highlighted Clio’s growth alongside AI’s transformative role in the legal profession, as outlined in the latest Legal Trends Report. Gavin shared tactical steps to protect sensitive information and emphasized the ethical considerations involved in data protection.

Time-tracking

Time-tracking Judge Law firm Data protection

Client Intake Software

Lawmatics

JULY 2, 2024

Client intake software in law firms typically replaces traditional paper-based forms or manual data entry processes, offering a more efficient and error-free way to gather information. Collect comprehensive information from clients, including personal details, contact information, case-specific details, and relevant documents.

Client Intake

Client Intake Software Time-tracking Legal software

You Can’t Have Legal GRC Optimisation Without Data Management Improvement?

Legal Tech Blog

DECEMBER 8, 2022

While these are necessary to help reduce complacency towards internal data protection compliance and ensure organisations actively work to reduce their exposure, it isn’t always easy for companies to align. In the case of e-discovery , for example, artificial intelligence is already being leveraged to great effect.

e-discovery

e-discovery Machine learning Compliance Due diligence

A New Era of FTC Privacy and Cybersecurity Oversight: Top Ten Things Companies Should Know When Assessing FTC Compliance and Exposure

Debevoise Data Blog

JANUARY 14, 2022

27] Examples include the telemarketing sales rule, children’s online privacy protection rule, and health breach notification rule. [28] In order to bring an action under this provision, the FTC must establish that the defendant had actual or constructive knowledge ( e., RCG Advances LLC et al.,

Compliance

Compliance Court Litigator Litigation

National Security Update: DOJ Unveils Rules Restricting Sensitive Bulk Data Transfers

Debevoise Data Blog

JANUARY 16, 2025

Department of Justice (DOJ) issued the Final Rule on Preventing Access to Sensitive Data, creating a comprehensive export control regime to restrict the transfer of bulk sensitive personal and government-related data to foreign adversaries deemed threats to U.S. Engaging in data-mapping exercises may alleviate this burden.

Compliance

Compliance Due diligence e-records Time-tracking

Legal Tech Connection

European Data Protection Roundup – February 2025

European Data Protection Roundup – Q4 2024

Webinars

Trending Sources

Data Protection in the Workplace: Employer Guidance

Webinars

You Subpoenaed My Documents, Shouldn’t You Pay for Them?

European Data Protection Roundup – May 2024

UK Data Protection and Digital Information Bill: Key Proposed Changes

European Data Protection Roundup – May 2023

European Data Protection Roundup – October 2023

Law Firm Management: The Ultimate Guide for Modern Firms

European Data Protection Roundup – January 2021

European Data Protection Roundup – December 2022 and January 2023

GDPR vs. Meta Platforms: is it time to change the business model?

European Data Protection Roundup – December 2023

Data subject requests under the GDPR. Why is it essential to respond to them correctly and on time?

The Future of Legal Tech: How Technology Is Transforming the Business of Law

Eight GDPR Questions when Adopting Generative AI

The EU AI Act – Navigating the EU’s Legislative Labyrinth

The 2024 Clio Cloud Conference in Review

Client Intake Software

You Can’t Have Legal GRC Optimisation Without Data Management Improvement?

A New Era of FTC Privacy and Cybersecurity Oversight: Top Ten Things Companies Should Know When Assessing FTC Compliance and Exposure

National Security Update: DOJ Unveils Rules Restricting Sensitive Bulk Data Transfers

Stay Connected