• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

EU Privacy

European Commission Moves to Extend Free Flows of Personal Data to the UK

March 24, 2025 By Paul Greaves and Kelly Hagedorn

On March 18, 2025, the European Commission proposed to extend its adequacy decision in favor of the United Kingdom (‘UK’) for an additional six-month period. This would allow free flows of personal data from the EU to the UK to continue until December 2025. The existing adequacy decision – which was adopted in 2021 in […]

Filed Under: Data Protection, International, Privacy, Regulation Tagged With: Cross-border, EU Data Protection, EU Privacy, EU Regulation, GDPR

EDPB Adopts Opinion on the Use of Processors and Sub-processors

October 11, 2024 By Kelly Hagedorn

On October 7, 2024, the European Data Protection Board (“EDPB”) adopted an opinion on obligations following from the use of processors and sub-processors (the “Opinion”). The EDPB is the body that seeks to ensure harmonised application of the EU GDPR across the European Economic Area (“EEA”) and is comprised of the heads of the data […]

Filed Under: Cybersecurity, Data Protection, International, Privacy Tagged With: Data Protection, EU Data Protection, EU Privacy, European Union (EU), GDPR

Why the New EU-U.S. Data Privacy Framework May Be Good News for Life Sciences Companies in the U.S.

August 21, 2023 By Wim Nauwelaerts

BACKGROUND U.S.-based life sciences companies can be subject to the European Union (‘EU’) General Data Protection Regulation (‘GDPR’), even if they do not have any subsidiary, affiliate or other physical presence in the EU. This can be the case if, for example, a pharmaceutical or medical device company in the U.S. acts as a sponsor […]

Filed Under: Health Privacy Tagged With: EU Privacy

European Commission Takes Significant Step Towards New Solution for Transatlantic Transfers of Personal Data

December 13, 2022 By Paul Greaves and Wim Nauwelaerts

What Happened? On December 13, 2022, the European Commission (the “Commission”) took a significant step towards the adoption of the EU-U.S. Data Privacy Framework (“DPF”). The DPF is a new framework designed to replace the EU-U.S. Privacy Shield (“Privacy Shield”), which was struck down by Court of Justice of the European Union in the Schrems […]

Filed Under: Data Protection, Data Security, International Tagged With: Cross-border, EU Data Protection, EU Privacy, EU Regulation, International Data Transfers

Heavier Breach Notification Obligations for U.S. Companies Subject to the EU GDPR According to Proposed Regulatory Guidance from the EDPB

October 19, 2022 By Paul Greaves

On October 18, 2022, the European Data Protection Board (“EDPB”) published a proposed updated version of its regulatory guidance on personal data breaches under the EU GDPR (the “Proposed Updated Guidance”). The Proposed Updated Guidance seeks to place heavier personal data breach notification obligations on controllers established in the U.S. (and other non-EU countries) but […]

Filed Under: Cybersecurity, Data Protection, Data Security, Privacy Tagged With: Cybersecurity, Data Breach Notification, EU Data Protection, EU Privacy, EU Regulation, European Union (EU)

  • Page 1
  • Page 2
  • Page 3
  • Interim pages omitted …
  • Page 13
  • Go to Next Page »

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


RANSOMWARE FUSION CENTER
Click here to request access

THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up

@ALSTONPRIVACY
Click here to follow us on Twitter

Secondary Sidebar

Categories

Recent Posts

  • Suite Victory: Marriott Finally Checks Out of Court
  • European Vulnerability Database Published by the European Union Agency for Cybersecurity
  • DOJ Settles Another False Claims Act Case for Alleged Failures in Implementing NIST SP 800-171 and Basic Cybersecurity Controls
  • UK Publishes Software Security Code
  • Texas AG Secures $1.375 Billion from Google: Key Takeaways for Companies Collecting Consumer Data
Copyright © 2025 · Alston & Bird · All Rights Reserved. Privacy.
This website uses cookies to improve functionality and performance. By continuing to browse this site, you are consenting to the use of cookies on this website. OkCookie policy