Digital disruption

Payment service providers face even tougher DP requirements than those under the GDPR

Jane Finlayson-Brown

Application Programming Interfaces (APIs) are bringing new open banking initiatives to the forefront of online payment services, with huge potential for innovation.  Although access to data is essential in the rise of APIs, processing personal data for open banking initiatives covered by Payment Services Directives or the Open Banking Standard will always require explicit consent. Read More

No Comments

Bitfinex: could greater regulation have prevented its hack?

Conor O'Hanlon

Introduction “In response to these constructive discussions with the CFTC’s Division of Enforcement, BFXNA has made significant changes to the way in which U.S. customers engage in financed trading on Bitfinex.” – Bitfinex Announcement, June 2, 2016[1] In their engagement to date with the emerging cryptocurrency sector, the United States Commodity Futures Trading Commission (the Read More

No Comments

Dynamic IP addresses can be personal data says Advocate-General of the CJEU

Peter van Dyck

Summary On request for a preliminary ruling from the German Supreme Court, the Advocate-General of the Court of Justice of the European Union (CJEU) concluded that dynamic IP addresses can be personal data within the meaning of the EU Data Protection Directive. Background German federal institutions exploit websites which contain general information for the public. Read More

No Comments