The internet has become today’s global trade route, and personal data is one of its major currencies. The growth in the digital economy is impressive. One study found that economic activity taking place over the internet is growing at 10% per year within the G-20 group of nations. In the United States alone, one estimate found that companies exported nearly … Continue Reading
Cyber risk has been high on the agenda of financial services regulators for some time now. In the UK, the FCA specifically addressed its concerns in its 2015/2016 Business Plan and it has an on-going programme of work which includes working with the PRA and Bank of England on visibility of IT resilience and risks at board level, and with … Continue Reading
|–||What are the legal implications of the Internet of Things (IoT) in the U.S. and around the world?|
|–||How do we mitigate the risks to consumer privacy and data security?|
|–||How do we meet IoT’s demands on infrastructure?|
Join us for Hogan Lovells’ 5th Annual Winnik International Telecoms and Internet Forum on 1 November, in Washington, … Continue Reading
On August 29, 2016, the Federal Aviation Administration’s (“FAA”) long-awaited small unmanned aircraft systems (“UAS” or “drone”) rule went into effect, for the first time broadly authorizing commercial drone operations. This is a positive step, as drones have great safety and efficiency benefits for the public. Nevertheless, the American public remains concerned about drone privacy issues.
The prevailing thinking among … Continue Reading
The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) is taking an aggressive stand on HIPAA enforcement and targeting violations related to security risk assessments and business associate agreements. Three resolution agreements posted in the last month make clear that the agency expects entities subject to HIPAA to take appropriate steps to secure their data, regardless … Continue Reading
The Department of Health and Human Services (HHS) released guidance on July 11, 2016, intended to help the healthcare industry prepare for and respond to ransomware attacks. Specifically, this guidance clarifies: (1) that a ransomware attack is considered a “security incident” under HIPAA, and (2) that a ransomware attack will typically be considered a “breach” by HHS unless entities are … Continue Reading
The Beijing No.1 Intermediate People’s Court recently refused to recognise that there is a “right to be forgotten” under Chinese laws. However, the fact that this issue was expressly raised and discussed in the Chinese court highlights that litigants and courts in China have kept themselves apprised of data privacy developments elsewhere in the world. And while recognising that this … Continue Reading
The new EU General Data Protection Regulation (GDPR) is finally with us. All change. All affected. Now is the time to pay attention.
Businesses have two years to prepare for the new GDPR, which will become fully enforceable on 25 May 2018.
Our Privacy and Cybersecurity team has issued an up to date practical guide, Future-proofing privacy, co-authored by 24 … Continue Reading
Hogan Lovells announced last week that Julie Brill will join the firm as a partner and co-director of the Privacy and Cybersecurity practice on 1 April. Brill is a Commissioner at the Federal Trade Commission and her service will conclude on 31 March.
As co-director of the Privacy and Cybersecurity practice, Brill succeeds co-director and founding partner Christopher Wolf, who … Continue Reading
As reported in The New York Times, Hogan Lovells represented a diverse group of 15 major technology companies, such as Google, Facebook, Microsoft, Snapchat, and Cisco, in filing last week an amicus brief in In re Search of an Apple iPhone. The Times reports:
“‘These companies, which are often fierce competitors, have joined together to voice concern about … Continue Reading
To what extent are the personal communications sent by an employee from their employer’s computer private? In Europe it has been accepted for some years that employees do not lose their right to privacy in the workplace. However a recent decision from the European Court of Human Rights (ECHR) confirms the rights of the employer to restrict employees from any … Continue Reading
One of the most common devices in the emerging Internet of Things (IoT) was reportedly discovered to have a bug. According to the research firm Fortinet, a popular fitness tracker was vulnerable to wireless attacks through its unsecured Bluetooth port. A savvy attacker could install malware wirelessly within ten seconds—simply by coming within a few feet of the tracker. When … Continue Reading
The need for proper and legitimate powers to enable intelligence and law enforcement agencies to do their job and keep everyone safe requires little justification. We live in a dangerous and uncertain world where anyone can be a victim of intolerance. So in a show of political awareness and legislative dexterity, the UK government is currently seeking to adopt a … Continue Reading
Personal data is an important aspect of most M&A transactions because almost all businesses store information about their employees and customers. For some deals, data is critical, and there is a trend among regulators on a global scale to increase sanctions over data privacy and security violations. There is also a risk that data protection violations may render a deal … Continue Reading
2014 saw the implementation of new comprehensive, “European style” privacy laws in Singapore and Malaysia, the amendment of China’s consumer protection law to include data privacy principles and a further … Continue Reading
Thank you to everyone who participated in the Hogan Lovells webinar “Russia Data Localization Update: New Details Emerge from Meetings with Russian Regulator” on 2 April 2015. This update follows an October 2014 presentation that outlined Russia’s newly enacted Data Localization Law. In this webinar, Hogan Lovells privacy and data protection attorneys Natalia Gulyaeva and Bret Cohen provided insight into … Continue Reading
With the September 2015 effective date of Russia’s Data Localization Law less than six months away, the Russian data protection authority, Roskomnadzor, has still not issued any formal guidance on how it interprets the law’s broad requirement that companies must process and store the personal data of Russian citizens within Russia. Roskomnadzor has, however, recently held a series of meetings … Continue Reading
Security concerns and the need to increase cyber security measures have recently boosted the use of Bring Your Own Device (BYOD) policies in France. Recent events have exacerbated fears of data breaches and hacking for IT managers who were not overly concerned before. As a consequence, IT security teams are seeking to apply the same security and device management systems … Continue Reading
The UK and Canadian data protection regulators have written to webcam manufacturers to highlight concerns about the safety of internet-connected devices and to enlist their assistance in reducing the risks posed by their products. In particular, the regulators call for manufacturers to roll out privacy-friendly default settings, implement “privacy by design” – whereby data protection and privacy considerations are built … Continue Reading
Privacy regulators are increasingly turning their attention to the manner in which mobile apps collect, process and transmit personal data.
On 9 December, 21 privacy enforcement authorities around the world issued an open letter to seven of the world’s leading app marketplaces calling on them to make app privacy policies available to users prior to downloading.
The open letter was … Continue Reading
As the keynote speaker for the Winnik Forum, U.S. Federal Trade Commission (FTC) Commissioner Maureen Ohlhausen sat down with Chris Wolf, Director of Hogan Lovells’ Privacy and Information Management Practice to discuss the evolving role of the FTC as we enter an era of “Big Data” and the “Internet of Things.” Commissioner Ohlhausen offered her views … Continue Reading
At the 2014 Winnik International Telecoms & Internet Forum: the Internet of Things, a wide range of policymakers, companies and other experts spoke on a variety of issues relating to the growing ability of everyday devices to wirelessly communicate with people and with each other.
|Please join us for the third annual Winnik International Telecoms & Internet Forum, which will be held on 22 October 2014 at Hogan Lovells’ Washington, D.C. office. This forum brings together professionals from around the world for an afternoon of high-level discussion on current topics in international telecoms, media, and the Internet landscape. Please register using the link on the|
Written by Gonzalo F. Gállego and Belén Gámez
It is well-known that international transfers of personal data from EU data controllers to data processors based in “countries not granting an adequate level of protection” (“Third Countries“), are subject to certain requirements provided for in the laws implementing the Data Protection Directive (95/46/EC) (the “Directive“) in each … Continue Reading