Technology Law Dispatch

7/28/2023 9:55:56 AM

Three lessons from ICO’s quarterly enforcement report

By Cynthia O'Donoghue

The Information Commissioner’s Office (ICO) has published a report on reprimands issued in the second quarter of the year, from April to...

7/12/2023 4:52:47 PM

Third Time’s a Charm: European Commission adopts EU-U.S. Data Privacy Framework

By Cynthia O'Donoghue Aselle Ibraimova Andy Splittgerber +3 more...

Background The European Commission (EC) issued the long-awaited adequacy decision for the new EU-U.S. Data Privacy Framework (Framework)...

5/10/2023 12:33:24 PM

Cookies and international data transfers: Key takeaways from the EDPB 101 Task Force report

By Cynthia O'Donoghue Andy Splittgerber Sven Schonhofen +1 more...

The EDPB 101 Task Force published a report summarizing its assessment on international data transfers in connection with the use of...

5/3/2023 3:20:58 PM

EU-US data transfers: LIBE Committee to stop debate over adequacy decision due to concerns over insufficient privacy safeguards

By Aselle Ibraimova Andy Splittgerber Alicja Lysik

On 13 April 2023, the EU’s Committee on Civil Liberties, Justice and Home Affairs (LIBE Committee) passed a resolution to stop the debate...

4/21/2023 6:52:00 PM

Unanimous Supreme Court limits FTC and other agencies’ investigative power

By Gerard Stegmaier Mark Quist Karim Alhassan

In the latest of a recent string of judicial rebukes, the Supreme Court’s unanimous decision in Axon Enterprise, Inc. v. FTC offers the...

4/19/2023 4:54:19 PM

EU may expand the scope of the adequacy decision for Japan following its first review

By Aselle Ibraimova Alicja Lysik

On 4 April 2023, the Personal Information Protection Commission of Japan (PPC) and European Commissioner for Justice issued a joint Press...

4/17/2023 8:50:05 PM

Takeaways from ICO’s “Privacy in the product design lifecycle” guidance

By Cynthia O'Donoghue Alicja Lysik

On 13 March 2023, the Information Commissioner’s Office (‘ICO’) published new guidance, ‘Privacy in the product design lifecycle’, to...

4/4/2023 5:32:25 PM

Critical Entities Resilience Directive (CER) – broader scope and more stringent obligations

By Aselle Ibraimova Alicja Lysik

The Critical Entities Resilience Directive (‘CER’) entered into force on 16 January 2023, replacing the 2008 European Critical...

3/24/2023 4:39:34 PM

UK Data Protection Bill No.2 – What is changed?

By Aselle Ibraimova Cynthia O'Donoghue

On 8 March 2023, the UK government presented a new version of the UK Data Protection and Digital Information Bill No.2. As with the...

2/27/2023 5:24:18 PM

EU and UK privacy and data predictions for 2023

By Angelika Christoforou

2022 was another busy year in privacy and data protection. We have seen major new developments at both the EU and the UK level, in terms...

2/23/2023 4:31:17 PM

NIS2 toughens up EU’s cyber security obligations

By Cynthia O'Donoghue Aselle Ibraimova Alexander Pierce

The European Union’s Second Network and Information Systems Directive (“NIS2”) entered into force on 16 January 2023, and replaces the...

8/2/2022 10:14:38 AM

ICO25: ICO sets out its three year strategic plan

By Cynthia O'Donoghue Angelika Christoforou

On 14 July 2022, the UK Information Commissioner’s Office (“ICO”) has launched a public consultation on its draft strategic three year...

2/14/2022 3:56:45 PM

ICO launches consultation on Chapter 3 of updated guidance on anonymisation, pseudonymisation and PET

By Angelika Christoforou Cynthia O'Donoghue

On 7 February 2022, the UK Information Commissioner’s Office (ICO) announced that it had launched a consultation on Chapter 3 of its...