Uncategorised

Schrems II – EDPB FAQs response

Jane Finlayson-Brown

Further to last week’s landmark decision by the Court of Justice of the European Union (CJEU) in Case -311/18 Data Protection Commissioner v Facebook Ireland Ltd and Maximillian Schrems (Schrems II) invalidating the EU-US Privacy Shield data transfer mechanism, European data protection regulators have been discussing their response and EU data exporters have been waiting. Read More

No Comments

French Conseil d’Etat partially annuls the CNIL’s guidelines on cookies and other tracking devices

Laurie-Anne Ancenys

The Conseil d’Etat, the French Administrative Supreme Court, (the Council) partially annuls the CNIL’s cookies guidelines, on aspects related to cookie walls, for lack of competence. The background to this decision are guidelines on cookies and other tracking devices, issued by the French supervisory authority (the CNIL), on 4 July 2019. The purpose of these Read More

No Comments

CJEU invalidates EU-US Privacy Shield framework and upholds EC Standard Contractual Clauses

Nigel Parker

On 16 July 2020, the Court of Justice of the European Union (the CJEU) issued a landmark decision in Case C-311/18 Data Protection Commissioner v Facebook Ireland and Maximillian Schrems (commonly referred to as Schrems II). The CJEU invalidated the European Commission’s (the EC) adequacy decision on the EU-US Privacy Shield and upheld the general Read More

No Comments

The One-Stop-Shop – A Big Disappointment Or Just Slow To Bloom?

David Smith

A few months ago, when asked to comment on the success or otherwise of the GDPR’s so called one-stop shop I suggested that the house was still out. Whilst there were some worrying signs it was perhaps too early to simply write off the arrangement. Since then we have seen France’s top court, the Conseil Read More

No Comments

Where Have All The ICO’s Fines Gone To?

David Smith

Before we all started to feel the impact of the Covid-19 coronavirus emergency and the ICO published its light touch approach to regulation during the pandemic, those who follow these matters closely were already wondering what might have happened to all the ICO’s fines. The UK’s data protection regulator has, not surprisingly, continued to impose Read More

No Comments

UK ICO Sets Out Approach To Data Protection Enforcement During Covid-19 Coronavirus Emergency

David Smith

The ICO’s recently published regulatory approach during the Covid-19 coronavirus public health emergency may not contain any great surprises but should nevertheless bring some welcome relief to businesses. In this time of so much uncertainty anything that limits that uncertainty, even if only in relation to the risks of data protection enforcement, must be a Read More

No Comments