Data Protection

Belgian Privacy Commission Issues DPIA “Black” and “White List” Recommendation

May 3, 2018 By Privacy, Cyber & Data Strategy Team

On February 28, 2018, the Belgian Privacy Commission issued a recommendation on the position it takes with regard to data protection impact assessments (or “DPIAs”) as foreseen in the GDPR. A DPIA under the GDPR is similar in scope and impact to its predecessor, the PIA (or “privacy impact assessment”) and requires businesses to assess […]

DHS and FBI Issue a Joint Technical Alert with UK Warning Russian State-Sponsored Cyber Attacks

April 17, 2018 By Maki DePalo

On April 16, 2018, the Department of Homeland Security (DHS), the Federal Bureau of Investigation (FBI), and the United Kingdom’s National Cyber Security Centre issued a joint Technical Alert (TA), alerting the worldwide cyber exploitation of network infrastructure devices by Russian state-sponsored cyber actors. The TA explains primary targets to be government and private-sector organizations, […]

Irish High Court Refers Schrems 2.0 to the ECJ

April 13, 2018 By Privacy, Cyber & Data Strategy Team

On April 11, Justice Caroline Costello of the Irish High Court referred the Schrems 2.0 case to the Court of Justice of the European Union (ECJ) with 11 questions for the ECJ to answer. Per Justice Costello, the sole issue in the case is whether the European Commission’s Decisions regarding standard contractual clauses (SCCs) are […]

Council of the European Union publishes new draft ePrivacy Regulation

March 30, 2018 By Privacy, Cyber & Data Strategy Team

The Council of the European Union published a new draft of the ePrivacy Regulation (link here) for discussion purposes on 22 March. This draft aims to facilitate discussions as we are moving towards the final version of the ePrivacy Regulation. As such, the changes outlined below are not final, but rather indicative of the direction […]