Privacy & Cyber Regulatory Enforcement

Council of the European Union publishes new draft ePrivacy Regulation

March 30, 2018 By Privacy, Cyber & Data Strategy Team

The Council of the European Union published a new draft of the ePrivacy Regulation (link here) for discussion purposes on 22 March. This draft aims to facilitate discussions as we are moving towards the final version of the ePrivacy Regulation. As such, the changes outlined below are not final, but rather indicative of the direction […]

Belgian Court Uses Novel Argument to Assume International Jurisdiction over Non-EU Facebook Entities

March 21, 2018 By Daniel Felz and Privacy, Cyber & Data Strategy Team

On February 16, 2018, the Brussels Court of First Instance rendered a judgment in proceedings brought by the Belgian Privacy Commission’s against Facebook. The case forms one part of two-tiered litigation brought by the Commission in regards to alleged monitoring practices vis-à-vis Belgian internet users. In parallel to the proceedings that resulted in the judgment […]

Singapore Joins the APEC CBPR and PRP

March 7, 2018 By Maki DePalo

On March 6, Singapore announced that it has become the sixth country to participate in the Cross-Border Privacy Rules System (CBPR) as of February 20, 2018, joining the United States, Mexico, Canada, Japan and the Republic of Korea, and the second country to participate in the Privacy Recognition for Processors System (PRP) alongside the United […]

In Order, FTC Recognizes Lower Notice Requirements for “Consumer-Expected” Data Collection

March 5, 2018 By Privacy, Cyber & Data Strategy Team

Last week, the Federal Trade Commission granted a petition by Sears Holding Management seeking modification of a 2009 Commission Order. The notable 2009 Order settled allegations that Sears had improperly failed to provide notice regarding data collection by certain software the company offered to consumers. Sears argued that the 2009 Order placed it at a […]