• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

Paul Greaves

Heavier Breach Notification Obligations for U.S. Companies Subject to the EU GDPR According to Proposed Regulatory Guidance from the EDPB

October 19, 2022 By Paul Greaves

On October 18, 2022, the European Data Protection Board (“EDPB”) published a proposed updated version of its regulatory guidance on personal data breaches under the EU GDPR (the “Proposed Updated Guidance”). The Proposed Updated Guidance seeks to place heavier personal data breach notification obligations on controllers established in the U.S. (and other non-EU countries) but […]

Filed Under: Board Governance & Cyber Risk Management, Privacy & Cyber Regulatory Enforcement Tagged With: Cybersecurity, Data Breach Notification, EU Data Protection, EU Privacy, EU Regulation, European Union (EU)

UK Information Commissioner’s Office Issues Warning on Ransomware Payments

July 13, 2022 By Paul Greaves

On July 8, 2022, the UK Information Commissioner’s Office (UK ICO) together with the UK National Cyber Security Centre (NCSC), published a joint letter asking the Law Society of England & Wales to remind its members that they should not advise clients to pay ransomware demands should they fall victim to a cyber-attack. The Law […]

Filed Under: Board Governance & Cyber Risk Management, Crisis & Data Breach Response, Privacy & Cyber Regulatory Enforcement Tagged With: Cybersecurity, Data Breach Notification, Ransomware, Regulatory Enforcement, UK data protection, UK GDPR

EDPB Issues Draft Guidelines on the Calculation of Administrative Fines

May 19, 2022 By Paul Greaves and Privacy, Cyber & Data Strategy Team

On May 16, 2022, the European Data Protection Board (‘EDPB’) published draft regulatory guidelines (‘draft guidance’) on the calculation of administrative fines for infringements of the EU General Data Protection Regulation (‘GDPR’). In the draft guidance, the EDPB sets out its methodology, consisting of five steps, for calculating administrative fines. The EDPB adopted these guidelines […]

Filed Under: Board Governance & Cyber Risk Management, Crisis & Data Breach Response, European Privacy & Cybersecurity, Privacy & Cyber Regulatory Enforcement, Privacy & Cybersecurity Litigation Tagged With: Cross-border, Data Breach Notification, EU Data Protection, GDPR, Privacy, Regulatory Enforcement

EU and U.S. Reach Agreement In Principle on a Replacement for the EU-U.S. Privacy Shield

March 25, 2022 By Paul Greaves and Wim Nauwelaerts

On March 25, 2022, the European Commission and the United States announced that they have reached an “agreement in principle” on a replacement for the EU-U.S. Privacy Shield, which was invalidated by the Court of Justice of the European Union in 2020. The new framework will be designed to allow personal data to flow freely […]

Filed Under: Board Governance & Cyber Risk Management, European Privacy & Cybersecurity, Privacy & Cyber Regulatory Enforcement Tagged With: Cross-border, EU Data Protection, EU Privacy, EU Regulation, European Union (EU), International Data Transfers

EDPB Issues Draft Guidelines on Data Subject Access Rights

January 30, 2022 By Paul Greaves, Wim Nauwelaerts and Privacy, Cyber & Data Strategy Team

On January 28, 2022, the European Data Protection Board (“EDPB”) published draft regulatory guidelines (“draft guidance”) on the right of data subjects to have access to their personal data under the EU General Data Protection Regulation (“GDPR”). In the draft guidance, the EDPB explains the aim and components of the right. This analysis is followed […]

Filed Under: Board Governance & Cyber Risk Management, Privacy & Cyber Regulatory Enforcement

  • « Go to Previous Page
  • Page 1
  • Page 2
  • Page 3
  • Page 4
  • Page 5
  • Page 6
  • Interim pages omitted …
  • Page 8
  • Go to Next Page »

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


RANSOMWARE FUSION CENTER
Click here to request access

THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up


Secondary Sidebar

Categories

Recent Posts

  • No Second Bite at the Apple for Accellion Plaintiffs: Judge Denies Motion to Modify Class Certification Order
  • Connected Vehicles Under the Spotlight: French DPA Issues Landmark Guidance on Vehicle Data Privacy
  • Five Eyes Issues Urgent Call to Action on AI-Driven Cyber Threats
  • DOJ Settles False Claims Act Case with LOGZONE Over Cybersecurity Deficiencies
  • FTC Targets EdTech Data Practices in Final Order Following Major Student Data Breach
Copyright © 2026 · Alston & Bird · All Rights Reserved. Privacy.