The Digital Economy Bill passed into UK law last Thursday 27 April 2017 amidst the flurry of activity known as the “wash up” period before the dissolution of Parliament and ahead of the early general election in the UK to be held on 8 June. The Digital Economy Act introduces measures to “modernise the UK for enterprise,” and includes plans … Continue Reading
On 27 April 2017 the German Parliament passed an entirely new Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG). The new BDSG replaces the old BDSG, which has been in force for the last 40 years. The new BDSG shall adapt the German law to the provisions of the EU General Data Protection Regulation (GDPR). The new … Continue Reading
The steady trickle of GDPR guidance from the Article 29 Working Party continues. Fresh from finalising its guidance on data portability, lead supervisory authorities and data protection officers, the Working Party has published draft guidance on data protection impact assessments (DPIA), the full text of which is available on the Working Party website. Comments can be submitted to the … Continue Reading
On 19 April 2017, the UK Government’s Department for Culture, Media and Sport (DCMS) published a report on cybersecurity breaches and how they affected UK companies in the last year. Headline statistics from the report include:
- 61% of businesses hold personal data electronically;
- 46% of all UK businesses identified at least one cybersecurity breach in the past year, rising to
2016 was an eventful year in the Asia-Pacific region, as data protection and cyber security issues increasingly feature in the news headlines in the Asia-Pacific region as they do elsewhere, our annual publication, the 2017 Asia-Pacific Data Protection and Cyber Security Guide provides you with an update on key regulatory developments and emerging trends in data protection and cyber security.… Continue Reading
On 17 March Hogan Lovells hosted a live webinar where several of our Global TMT thought leaders interviewed a panel of academic experts from our Law and Technology Academic Advisory Council on the key legal and tech trends for 2017, including regulation of artificial intelligence, competition law and big data, global privacy and copyright trends, and the future of broadband … Continue Reading
Last week, the UK’s Information Commissioner’s Office (ICO) published a monetary penalty notice which fined a private healthcare company, HCA International, £200,000 for its failure to keep sensitive data secure.
In this instance, several data protection compliance issues were at stake – HCA had engaged a subcontractor based in India to process sensitive personal data without putting an agreement in … Continue Reading
Please join us for our March 2017 Privacy and Cybersecurity Events.
On 13 February 2017, the Australian Senate passed into law the Privacy Amendment (Notifiable Data Breaches) Bill 2016. This law amends the primary privacy and data protection legislation in Australia, Privacy Act 1988 (Cth), to introduce the long-anticipated mandatory data breach notification scheme. Under this scheme, all agencies and businesses that are regulated by the Privacy Act are required … Continue Reading
The Polish Data Protection Authority (GIODO) has just released its inspection plans for 2017. This year, the GIODO has decided to target its review of compliance with data protection laws on the health services and consumer sectors, with particular attention to certain profiling activities taking place in stores and shopping malls.
The health sector inspections will be directed at healthcare … Continue Reading
On 7 February 2017, the Russian President signed into law a bill (link in Russian) introducing amendments to the Russian Code on Administrative Offences that increases the amount of the fines imposed for violating Russian data protection laws and differentiates the relevant offences’ types. The greatest increase raises maximum fines for certain violations from RUB 10,000 to 75,000 (approx. USD … Continue Reading
Recent changes to Japan’s Act on the Protection of Personal Information and the establishment of a new Personal Information Protection Commission have raised questions about how the world’s third-largest economy plans to implement new domestic requirements and engage internationally on cross-border data transfers, APEC, new technologies, and more.
Hogan Lovells recently hosted some of Japan’s senior data privacy regulators and … Continue Reading
The internet has become today’s global trade route, and personal data is one of its major currencies. The growth in the digital economy is impressive. One study found that economic activity taking place over the internet is growing at 10% per year within the G-20 group of nations. In the United States alone, one estimate found that companies exported nearly … Continue Reading
On 11 November, 2016, Hong Kong’s Applied Science and Technology Research Institute (“ASTRI“) published its “Whitepaper On Distributed Ledger Technology” (the “DLT Whitepaper“), a substantial research exercise commissioned by the Hong Kong Monetary Authority (the “HKMA“).
The DLT Whitepaper is a useful and well-informed introduction to blockchain, or distributed ledger technology (“DLT“), … Continue Reading
We are pleased to announce that Hogan Lovells Frankfurt-based Partner Tim Wybitul has published a handbook – EU-Datenschutz-Grundverordnung im Unternehmen: Praxisleitfaden – to assist organizations with compliance with the European General Data Protection Regulation (GDPR). Written in German, the handbook includes plain-language summaries of GDPR requirements as well as project-planning and other checklists and examples to aid companies in complying … Continue Reading
Please join us for our October 2016 Privacy and Cybersecurity Events.
The Philippines’ first comprehensive data protection law, the Data Privacy Act of 2012 (the “Act“), took effect on 8 September 2012. The Act mandated the creation of a National Privacy Commission (“NPC“) to implement, enforce and monitor compliance with the Act, with one of its duties to promulgate rules and regulations … Continue Reading
China’s State Administration for Industry and Commerce (SAIC) recently released its draft Implementing Regulations on the Protection of the Rights and Interests of Consumers (Draft Regulations) for comments. The Draft Regulations seek to further strengthen consumer rights in China. Proposed changes include setting mandatory returns and exchange arrangements, tackling aggressive selling behaviour and expressly prohibiting cold calls. In this article … Continue Reading
Thank you to everyone who tuned into our webinar “Privacy Shield: What You Need to Know.”
In this complimentary webinar, Julie Brill, Tim Tobin, and Bret Cohen of Hogan Lovells’ Washington office, and Eduardo Ustaran of our London office explored:
- What do companies need to do to sign up to the Privacy Shield?
- How do companies demonstrate compliance with the
Julie Brill, Hogan Lovells partner, and co-head of our global privacy and Cybersecurity practice, recently commented on the EU-US Privacy Shield for the EurActiv publication. Her comments are republished here, with permission:
The free flow of data is essential to an ever-growing segment of the global economy. Yet some policymakers and advocates, citing privacy concerns, have called for shutting off … Continue Reading
Please join us for our July 2016 Privacy and Cybersecurity Events.
The people of the UK have spoken and our collective choice is to leave the European Union. Some are dreading the likely tsunami of economic hardship. Others are excited about what may lie ahead. Most of us are shocked. But as numbing as the verdict of the UK electorate may be, there are crucial political, legal and economic decisions to … Continue Reading