On September 21, 2021, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) issued an “Updated Advisory on Potential Sanctions Risks for Facilitating Ransomware Payments.” While this advisory explicitly supersedes OFAC’s … [Read more] about Key Takeaways from OFAC’s Updated Ransomware Advisory
On June 4th, the European Commission issued modernized Standard Contractual Clauses (SCCs) under the EU General Data Protection Regulation (GDPR) for data transfers from controllers or processors in the EU/EEA (or otherwise subject to the EU GDPR) to … [Read more] about September 27 Deadline Looming for EU Standard Contractual Clauses
On September 7 and 8, 2021, the California Privacy Protection Agency (“CPPA”) Board held a public virtual meeting regarding the rulemaking process under the California Privacy Rights Act (“CPRA”). The Board indicated that it expects to initiate … [Read more] about California Privacy Protection Agency Board Meets to Review the CPRA Rulemaking Process
Today, the UK Department of Digital, Culture, Media and Sport (“DCMS”) has made a series of announcements shedding light on the UK’s post-Brexit data strategy. The announcements – which emphasize the importance of international transfers of personal … [Read more] about UK Unveils Post-Brexit Data Plans with an Emphasis on International Transfers of Personal Data
Earlier this month, the European Data Protection Board (EDPB) published a report on the resources that the EU Member States make available to their Data Protection Authorities (DPA) and on the enforcement actions initiated by those DPAs. Resources … [Read more] about EDPB reports on EU Data Protection Authorities’ resources and enforcement actions