Data protection and Information - Legal Tech Connection

New York Becomes First State to Mandate CLE in Cybersecurity, Privacy and Data Protection

LawSites

AUGUST 4, 2022

state to mandate that attorneys take continuing legal education courses in cybersecurity, privacy and data protection. New York has become the first U.S. The order creates two types of cybersecurity training, one focused on ethics and the other on practice.

Data protection

Data protection Law Office Attorney Law firm

European Data Protection Roundup – Q4 2024

Debevoise Data Blog

JANUARY 17, 2025

Our top-eleven European data protection developments for the end of 2024 are: EU Cyber Resilience Act: The Council of the European Union approved the Cyber Resilience Act , introducing cybersecurity requirements for digital products sold in the EU. These developments are covered below.

Data protection

Data protection Compliance Court State law

UK ICO Updates Guidance on Artificial Intelligence and Data Protection

Inside Privacy

APRIL 28, 2023

On 29 March 2023, the UK Information Commissioner’s Office (“ICO”) published updated Guidance on AI and data protection (the “Guidance”) following “requests from UK industry to clarify requirements for fairness in AI”. AI has been a strategic priority for the ICO for several years.

Data protection

Data protection Compliance Law Law

Webinars

Case Closed: How to Optimize Your Legal Intake Process for Efficiency

MORE WEBINARS

The UK Information Commissioner’s Data Protection Practioner’s Conference 2023 on Cybersecurity

Technology Law Dispatch

OCTOBER 26, 2023

On 3 October 2023, the UK Information Commissioner’s Office organised its annual Data Protection Practioner’s Conference 2023 (DPPC 2023). This year its focus was on Cybersecurity – a topic that concerns organisations across the board. Here are the takeaways from the DPPC 2023 (the event sessions available here ).

Data protection

Data protection Due diligence Compliance Law

The French CNIL Reminds Two Medical Research Organizations of their Data Protection Obligations

Inside Privacy

MARCH 14, 2023

On March 13, 2023, the CNIL published a statement announcing that it reminded these two organizations of their legal obligations under the French data protection framework. Another requirement is that patients participating in the research must receive all the information mandated by Art.

Data protection

Data protection Compliance

European Data Protection Roundup – July 2024

Debevoise Data Blog

AUGUST 27, 2024

Representative actions: In light of the CJEU ruling that a violation of the controller’s information obligations can be subject to a representative action, businesses should consider the potentially increased risk of litigation following GDPR breach allegations and how to respond.

Data protection

Data protection Compliance Litigator Litigation

European Data Protection Roundup – April 2024

Debevoise Data Blog

MAY 28, 2024

EDPB “Consent or pay” models: Businesses operating large online platforms should consider the European Data Protection Board’s recent opinion indicating that “consent or pay” models are unlikely to be GDPR-compliant.

Data protection

Data protection Compliance Law Law

Decoding India’s Data Protection Law

Ikigai Law

AUGUST 4, 2023

India’s Digital Personal Data Protection Bill 2023 was introduced in Parliament on 3 August 2023. Once passed, the law will govern how businesses collect and use individuals’ data. What data is covered? Personal data, i.e., data about an individual that can identify them. What else should fiduciaries do? (a)

Data protection

Data protection Law Law e-records

European Data Protection Roundup – August 2024

Debevoise Data Blog

SEPTEMBER 23, 2024

Our top-five European data protection developments from August are: Uber fined for personal data transfer: The Dutch Data Protection Authority fined Uber €290 million for the unlawful transfer of European drivers’ personal data to the U.S., without sufficient safeguards. ICO proposes £6.09

Data protection

Data protection Court Software Compliance

European Data Protection Roundup – May 2024

Debevoise Data Blog

JUNE 27, 2024

Our top five European data protection developments from May are: UK guidance on ransom payments: The UK NCSC and various insurance industry bodies co-published guidance on key considerations for ransomware payments. 22, then there must be sufficient human-involvement in that processing for it to be GDPR-compliant.

Data protection

Data protection Software e-records Compliance

European Data Protection Roundup – June 2024

Debevoise Data Blog

JULY 30, 2024

Our top five European data protection developments from June are: Non-material damage under GDPR: The CJEU clarified the scope of compensation for non-material damage in the context of identity theft and data subjects’ fear that their personal data had been exposed. These developments, and more, are covered below.

Data protection

Data protection Time-tracking Mediator Analytics

European Data Protection Roundup – October 2023

Debevoise Data Blog

NOVEMBER 21, 2023

Data protection & AI: In particular: (i) the French CNIL published its first set of guidance on GDPR compliance when developing AI tools; and (ii) the UK ICO issued a preliminary enforcement notice against Snap over its AI chatbot, alleging that Snap had not adequately assessed the privacy risks posed to child users of the tool.

Data protection

Data protection Compliance Failure-to-appear e-records

Drones and privacy: data protection risks

Legal IT Group

JUNE 26, 2023

In that case, you also need to be aware of whether the data protection rules are not violated. Source: Drones and Data Protection What should companies/people who use drones do to be in compliance with privacy regulations? Once again, it depends on the type of drone and the purpose you use it for.

Data protection

Data protection Time-tracking Compliance

European Data Protection Roundup – August 2023

Debevoise Data Blog

SEPTEMBER 27, 2023

The controller was also fined €9,000 for not having the proper contact information for the DPO in its privacy policy, and for using cookies without user consent. These developments, and more, covered below.

Data protection

Data protection Compliance e-filing Court

European Data Protection Roundup – March 2024

Debevoise Data Blog

APRIL 26, 2024

Key takeaways from March include: CNIL data security practice guide: The French DPA published an update of its data security practice guide for data protection officers, chief information security officers, computer scientists and legal experts. These developments, and more, are covered below.

Data protection

Data protection e-records Compliance Court

Clause wise analysis of Digital Personal Data Protection Bill, 2023

Ikigai Law

AUGUST 8, 2023

A detailed clause-wise analysis of the Digital Personal data Protection Bill 2023 On 7 August 2023, the Lok Sabha passed the Digital Personal Data Protection Bill, 2023. It will soon be introduced in the Rajya Sabha and likely become a law in a couple of days. Read the analysis here.

Data protection

Data protection Law Law

European Data Protection Roundup – April 2023

Debevoise Data Blog

MAY 12, 2023

Key takeaways this April include: UK children’s data protection focus continues: Businesses may wish to review policies and procedures for dealing with children’s data in light of recent UK ICO fines and guidance, especially to ensure that terms of use are adequately enforced.

Data protection

Data protection Software design Machine learning Software

Guidance on Privacy-Enhancing Technologies for Data Protection Compliance: Key Considerations for Organizations

Technology Law Dispatch

JUNE 23, 2023

On 19 June 2023, the Information Commissioner’s Office (ICO) has released new Guidance on Privacy-Enhancing Technologies (PETs) for Data Protection Compliance. Understanding PETs PETs are software and hardware systems that can help minimize use of personal data use while maximizing information security.

Data protection

Data protection Compliance Software Law

European Data Protection Roundup – February

Debevoise Data Blog

MARCH 26, 2023

The tribunal agreed with the ICO that where Experian obtained personal data for marketing purposes from a third party that had collected it on the basis of consent, the consent would no longer be informed and withdrawal of consent is complicated, though Experian had since changed this practice. A global approach.

Data protection

Data protection Compliance Court Law

European Data Protection Roundup – November 2023

Debevoise Data Blog

DECEMBER 22, 2023

For example, the Garante notes the need to incorporate data protection by design and by default principles within any AI systems used in the healthcare space. In particular, the paper recommends the use of internal data access controls, regular auditing of data security measures, and the use of data protection impact assessments.

Data protection

Data protection Time-tracking Compliance Machine learning

Data Protection in the Workplace: Employer Guidance

Legal IT Group

SEPTEMBER 19, 2023

For example, in 2020, the Data Protection Authority of Hamburg imposed a 35.3 In particular, specific details about the lives of some employees of H&M (illnesses, medical diagnoses, religious beliefs, and family problems) were comprehensively recorded and stored as information on a network drive. 6 (1) (a) of GDPR Art.

Data protection

Data protection Compliance e-records Law

German Data Protection Authorities Publish Paper on Cloud-Based Digital Health Applications

Inside Privacy

NOVEMBER 28, 2023

They raise various questions under regulatory and data protection and data security laws. The DiGA Regulation imposes specific data protection and data security requirements on health apps (in addition to safety, functionality, quality and interoperability requirements). 26 of the GDPR.

Data protection

Data protection Time-tracking Software Law

UK Data Protection Bill No.2 – What is changed?

Technology Law Dispatch

MARCH 24, 2023

On 8 March 2023, the UK government presented a new version of the UK Data Protection and Digital Information Bill No.2. As with the previous bill, the new bill aims to alleviate the burden of compliance with the UK GDPR and its implementing UK Data Protection Act (2018) for organisations in the UK.

Data protection

Data protection Failure-to-appear Compliance Software

European Data Protection Roundup – May 2023

Debevoise Data Blog

JUNE 8, 2023

As we covered here , last October, the CNIL fined Clearview AI €20 million for various data protection violations, including “intrusive and massive” data processing without consent or a valid legitimate interest. Nonetheless, businesses that transfer personal data to the U.S. These developments, and more, covered below.

Data protection

Data protection Compliance e-records Dispute resolution

EU General Court Clarifies When Pseudonymized Data is Considered Personal Data

Inside Privacy

APRIL 28, 2023

Following a number of complaints, the European Data Protection Supervisor (‘EDPS’) decided that the SRB shared pseudonymized personal data with the consulting firm without informing the affected individuals of this sharing. Before sharing the responses, SRB replaced the name of each respondent with a code.

Court

Court Data protection

Get your update on IT & data protection law in our newsletter (Winter 2023 edition)

Technology Law Dispatch

FEBRUARY 7, 2023

We hope you enjoy reading it.

Data protection

Data protection Court Law Law

European Data Protection Roundup – March 2023

Debevoise Data Blog

APRIL 28, 2023

UK ICO updates guidance to clarify requirements for fairness in AI What happened : The UK ICO has updated its existing Guidance on AI and data protection following requests from industry to clarify requirements for fairness in AI. Norwegian Data Protection Authority fines medical device company c.$240,000

Data protection

Data protection Compliance e-filing Software

UK Information Commissioner’s Office Releases New Guidance for Monitoring at Work

Inside Privacy

OCTOBER 17, 2023

On 3 October 2023, the UK Information Commissioner’s Office (“ ICO ”) finalized its Employment practices and data protection − Monitoring workers guidance (“ Guidance ”) to account for new types of work, including work from home, and the use of more sophisticated technologies for monitoring.

Data protection

Data protection Time-tracking Case management Compliance

Get your Update on IT & Data Protection Law in our Germany Newsletter (Summer 2023 Edition)

Technology Law Dispatch

AUGUST 2, 2023

The Summer 2023 Edition of the quarterly IT & Data Protection Newsletter by Reed Smith Germany has just been released: English version German version This edition covers the following topics: New adequacy decision for EU-U.S. data transfers CJEU: Requirements for GDPR damage claims CJEU: Lawfulness of processing in case of Art.

Data protection

Data protection Court Law Law

Case T-557/20: the importance and impact on data protection

Legal IT Group

JUNE 12, 2023

Every day, more and more companies face the problem of personal data protection. As companies are increasingly scrutinised for proper data protection, it’s worth paying close attention to the latest best practices to avoid dealing with the potential negative consequences of a data breach.

Data protection

Data protection e-filing Court e-records

Minnesota’s Attempt to Copy California’s Constitutionally Defective Age Appropriate Design Code is an Utter Fail (Guest Blog Post)

Eric Goldman

APRIL 28, 2023

Recently, the Senate Judiciary Committee heard the bill for informational purposes. Among their targets were the Data Protection Impact Assessment requirements, which NetChoice argued amounted to prior restraint and compelled speech. The bill is currently pending approval by both chambers. Enforcement is limited to the MN AG.

Data protection

Data protection Court Hearing Judge

New laws of the USA on data protection in 2023

Legal IT Group

JANUARY 17, 2023

Therefore, individual states took matters into their own hands and passed local laws to protect the privacy of their residents. In this article, we will review who needs to know the new rules of the US legislation, when exactly they will come into force and what obligations these laws provide.

Data protection

Data protection Law Law Attorney

European Data Protection Roundup – September 2023

Debevoise Data Blog

OCTOBER 20, 2023

What to do : A UK business that wishes to transfer personal data to the US under the data bridge should go to the DPF List , search for the US organisation in question, and confirm they are signed up to the “UK Extension”. data transfers. Two areas that have been stressed previously in the data protection compliance context.

Data protection

Data protection Intellectual Property Compliance Law

Summary of the Digital Personal Data Protection Bill, 2023

Ikigai Law

AUGUST 3, 2023

Our summary of the Digital Personal Data Protection Bill, 2023 The Digital Personal Data Protection Bill, 2023 ( 2023 Bill ) was tabled in Parliament on 3 August 2023. It is the fifth – and likely final – iteration of India’s efforts to formulate a personal data protection law.

Data protection

Data protection Compliance e-filing Hearing

European Data Protection Roundup – December 2022 and January 2023

Debevoise Data Blog

FEBRUARY 20, 2023

On 29 December 2022, the CNIL fined TikTok UK and Ireland as joint controllers €5 million for failing to: offer users the ability to refuse cookies as easily as accepting them (several clicks were required to refuse all cookies, as opposed to just one to accept them); and inform users in a sufficiently precise manner about cookie purposes.

Data protection

Data protection Compliance e-records Court

UK Information Commissioner’s Office Publishes Guidance for Video Game Developers and Designers to Improve Data Protection in their Services

Inside Privacy

FEBRUARY 23, 2023

On February 16, 2023, the UK Information Commissioner’s Office (“ICO”) released guidance for the video game industry on how to conform with the UK’s Age Appropriate Design Code when developing video games. For more information about the UK’s Age Appropriate Design Code, see our previous blog posts here and here.

Data protection

Brazil Rolls Out Long-Awaited Data Protection Sanctions

Legal Tech Monitor

MARCH 9, 2023

Lawyers expect a wave of demand for advice from companies that need to strengthen their internal safeguards in order to avoid fines and restrictions on handling personal information

Data protection

Data protection Lawyer

Law Firm Data Security: A Comprehensive Guide

CaseFox

MAY 30, 2023

In today’s digital age, data security is a critical concern for law firms. As custodians of sensitive client information, law firms must take proactive measures to safeguard data from cyber threats and ensure compliance with data protection regulations.

Law firm

Law firm Data protection Law Law

Venkat’s Blog Post Unjustly Removed from Google Search Results Due to EU RTBF Takedown

Eric Goldman

MARCH 15, 2023

Here is the notice I recently received: If you can’t read the image, here’s what it says: __ Notice of European data protection law removal from Google Search To: Webmaster of [link] Due to a request under the data protection law in Europe, Google can no longer show one or more pages from your site in Google Search results.

Data protection

Data protection Law Law

The Power of Aggregating and Curating Law Firms’ AI Publishing for Societal Benefit

Kevin O'Keefe

FEBRUARY 25, 2024

Privacy and Data Protection: Advising on compliance with data protection laws, including GDPR in Europe and CCPA in California, especially for AI systems that process personal data. However, this information is spread out across their separate blogs, news articles and other publications.

Law firm

Law firm Intellectual Property Data protection Compliance

TechTicker Issue 48: Half a decade later, a data protection law is here

Ikigai Law

AUGUST 11, 2023

“If you don’t see me in half a decade, just wait a little longer” – India’s data protection bill ( circa 2018 ) On 9 th August, the Digital Personal Data Protection Bill, 2023 was finally passed in the Parliament. The finish line – the new data bill What stood out?

Data protection

Data protection Law Law

China Releases Guidance on Filing Standard Contract for the Cross-Border Transfer of Personal Information

Inside Privacy

MAY 30, 2023

To that end, the CAC’s guidance includes a template Standard Contract and Personal Information Protection Impact Assessment Report. Upon receiving the required documentation, the provincial CAC has 15 working days to accept or reject the submission, and then must inform the personal information processing entity of its decision.

Data protection

Data protection Law Law

Cybersecurity for Law Firms: Protecting Sensitive Data in the Digital Age

Rocket Matter

OCTOBER 22, 2024

Not only are law firms storing more data, but since the pandemic has forced us all to become increasingly mobile, keeping clients’ sensitive information safe is even more challenging. 11 Tips for Effective Law Firm Data Protection As a law firm, protecting your clients' sensitive information should be at the top of your priority list.

Law firm

Law firm Law Law Data protection

Data Security Essentials for Your Legal Department: What You Need to Know

MatterSuite

JUNE 1, 2023

In today’s digital landscape, data security has become an increasingly critical concern for businesses across all industries. However, for corporate legal departments handling sensitive and confidential client information, safeguarding data is of utmost importance.

Intellectual Property

Intellectual Property Data protection Compliance Law firm

New York Becomes First State to Mandate CLE in Cybersecurity, Privacy and Data Protection

European Data Protection Roundup – Q4 2024

Webinars

Trending Sources

UK ICO Updates Guidance on Artificial Intelligence and Data Protection

Webinars

The UK Information Commissioner’s Data Protection Practioner’s Conference 2023 on Cybersecurity

The French CNIL Reminds Two Medical Research Organizations of their Data Protection Obligations

European Data Protection Roundup – July 2024

European Data Protection Roundup – April 2024

Decoding India’s Data Protection Law

European Data Protection Roundup – August 2024

European Data Protection Roundup – May 2024

European Data Protection Roundup – June 2024

European Data Protection Roundup – October 2023

Drones and privacy: data protection risks

European Data Protection Roundup – August 2023

European Data Protection Roundup – March 2024

Clause wise analysis of Digital Personal Data Protection Bill, 2023

European Data Protection Roundup – April 2023

Guidance on Privacy-Enhancing Technologies for Data Protection Compliance: Key Considerations for Organizations

European Data Protection Roundup – February

European Data Protection Roundup – November 2023

Data Protection in the Workplace: Employer Guidance

German Data Protection Authorities Publish Paper on Cloud-Based Digital Health Applications

UK Data Protection Bill No.2 – What is changed?

European Data Protection Roundup – May 2023

EU General Court Clarifies When Pseudonymized Data is Considered Personal Data

Get your update on IT & data protection law in our newsletter (Winter 2023 edition)

European Data Protection Roundup – March 2023

UK Information Commissioner’s Office Releases New Guidance for Monitoring at Work

Get your Update on IT & Data Protection Law in our Germany Newsletter (Summer 2023 Edition)

Case T-557/20: the importance and impact on data protection

Minnesota’s Attempt to Copy California’s Constitutionally Defective Age Appropriate Design Code is an Utter Fail (Guest Blog Post)

New laws of the USA on data protection in 2023

European Data Protection Roundup – September 2023

Summary of the Digital Personal Data Protection Bill, 2023

European Data Protection Roundup – December 2022 and January 2023

UK Information Commissioner’s Office Publishes Guidance for Video Game Developers and Designers to Improve Data Protection in their Services

Brazil Rolls Out Long-Awaited Data Protection Sanctions

Law Firm Data Security: A Comprehensive Guide

Venkat’s Blog Post Unjustly Removed from Google Search Results Due to EU RTBF Takedown

The Power of Aggregating and Curating Law Firms’ AI Publishing for Societal Benefit

TechTicker Issue 48: Half a decade later, a data protection law is here

China Releases Guidance on Filing Standard Contract for the Cross-Border Transfer of Personal Information

Cybersecurity for Law Firms: Protecting Sensitive Data in the Digital Age

Data Security Essentials for Your Legal Department: What You Need to Know

Stay Connected