On 17 March Hogan Lovells hosted a live webinar where several of our Global TMT thought leaders interviewed a panel of academic experts from our Law and Technology Academic Advisory Council on the key legal and tech trends for 2017, including regulation of artificial intelligence, competition law and big data, global privacy and copyright trends, and the future of broadband … Continue Reading
Last week, the UK’s Information Commissioner’s Office (ICO) published a monetary penalty notice which fined a private healthcare company, HCA International, £200,000 for its failure to keep sensitive data secure.
In this instance, several data protection compliance issues were at stake – HCA had engaged a subcontractor based in India to process sensitive personal data without putting an agreement in … Continue Reading
Please join us for our March 2017 Privacy and Cybersecurity Events.
On 13 February 2017, the Australian Senate passed into law the Privacy Amendment (Notifiable Data Breaches) Bill 2016. This law amends the primary privacy and data protection legislation in Australia, Privacy Act 1988 (Cth), to introduce the long-anticipated mandatory data breach notification scheme. Under this scheme, all agencies and businesses that are regulated by the Privacy Act are required … Continue Reading
The Polish Data Protection Authority (GIODO) has just released its inspection plans for 2017. This year, the GIODO has decided to target its review of compliance with data protection laws on the health services and consumer sectors, with particular attention to certain profiling activities taking place in stores and shopping malls.
The health sector inspections will be directed at healthcare … Continue Reading
On 7 February 2017, the Russian President signed into law a bill (link in Russian) introducing amendments to the Russian Code on Administrative Offences that increases the amount of the fines imposed for violating Russian data protection laws and differentiates the relevant offences’ types. The greatest increase raises maximum fines for certain violations from RUB 10,000 to 75,000 (approx. USD … Continue Reading
Recent changes to Japan’s Act on the Protection of Personal Information and the establishment of a new Personal Information Protection Commission have raised questions about how the world’s third-largest economy plans to implement new domestic requirements and engage internationally on cross-border data transfers, APEC, new technologies, and more.
Hogan Lovells recently hosted some of Japan’s senior data privacy regulators and … Continue Reading
The internet has become today’s global trade route, and personal data is one of its major currencies. The growth in the digital economy is impressive. One study found that economic activity taking place over the internet is growing at 10% per year within the G-20 group of nations. In the United States alone, one estimate found that companies exported nearly … Continue Reading
On 11 November, 2016, Hong Kong’s Applied Science and Technology Research Institute (“ASTRI“) published its “Whitepaper On Distributed Ledger Technology” (the “DLT Whitepaper“), a substantial research exercise commissioned by the Hong Kong Monetary Authority (the “HKMA“).
The DLT Whitepaper is a useful and well-informed introduction to blockchain, or distributed ledger technology (“DLT“), … Continue Reading
We are pleased to announce that Hogan Lovells Frankfurt-based Partner Tim Wybitul has published a handbook – EU-Datenschutz-Grundverordnung im Unternehmen: Praxisleitfaden – to assist organizations with compliance with the European General Data Protection Regulation (GDPR). Written in German, the handbook includes plain-language summaries of GDPR requirements as well as project-planning and other checklists and examples to aid companies in complying … Continue Reading
Please join us for our October 2016 Privacy and Cybersecurity Events.
The Philippines’ first comprehensive data protection law, the Data Privacy Act of 2012 (the “Act“), took effect on 8 September 2012. The Act mandated the creation of a National Privacy Commission (“NPC“) to implement, enforce and monitor compliance with the Act, with one of its duties to promulgate rules and regulations … Continue Reading
China’s State Administration for Industry and Commerce (SAIC) recently released its draft Implementing Regulations on the Protection of the Rights and Interests of Consumers (Draft Regulations) for comments. The Draft Regulations seek to further strengthen consumer rights in China. Proposed changes include setting mandatory returns and exchange arrangements, tackling aggressive selling behaviour and expressly prohibiting cold calls. In this article … Continue Reading
Thank you to everyone who tuned into our webinar “Privacy Shield: What You Need to Know.”
In this complimentary webinar, Julie Brill, Tim Tobin, and Bret Cohen of Hogan Lovells’ Washington office, and Eduardo Ustaran of our London office explored:
- What do companies need to do to sign up to the Privacy Shield?
- How do companies demonstrate compliance with the
Julie Brill, Hogan Lovells partner, and co-head of our global privacy and Cybersecurity practice, recently commented on the EU-US Privacy Shield for the EurActiv publication. Her comments are republished here, with permission:
The free flow of data is essential to an ever-growing segment of the global economy. Yet some policymakers and advocates, citing privacy concerns, have called for shutting off … Continue Reading
Please join us for our July 2016 Privacy and Cybersecurity Events.
The people of the UK have spoken and our collective choice is to leave the European Union. Some are dreading the likely tsunami of economic hardship. Others are excited about what may lie ahead. Most of us are shocked. But as numbing as the verdict of the UK electorate may be, there are crucial political, legal and economic decisions to … Continue Reading
In an April 15, 2016 report, the French Data Protection Authority, the CNIL, provided details about its little-known responsibility as overseer of the French police’s website-blocking powers. The French legislature gave the CNIL this new role in a November 13, 2014 law designed to enhance French police powers against terrorism. The 2014 law increased French police and intelligence agencies’ … Continue Reading
The new EU General Data Protection Regulation (GDPR) is finally with us. All change. All affected. Now is the time to pay attention.
Businesses have two years to prepare for the new GDPR, which will become fully enforceable on 25 May 2018.
Our Privacy and Cybersecurity team has issued an up to date practical guide, Future-proofing privacy, co-authored by 24 … Continue Reading
Anticipating a new phase of development across the region we are delighted to share our latest briefing discussing the key trends and issues.
On 12 April 2016, the European Commission launched a public consultation (the “Consultation“) on the ePrivacy Directive (2002/58/EC; the “epD“). Interested parties who wish to participate have until 5 July 2016 to submit responses to the Commission’s 33 questions.
The Consultation marks the next step in European data protection reform, arriving shortly after policymakers finally completed … Continue Reading
Connected cars will generate large volumes of data, including data on engine performance, location and driver behaviour. The European Commission has convened multi-stakeholder groups to figure out how to organize access to that data in a safe, competitively neutral and privacy-friendly way. Two recent reports shed light on the principles that should apply to any data sharing infrastructure.
Policy conversations … Continue Reading