European Union (EU)

Alston & Bird Issues Cyber Alert on the EU Network Information Security Directive

March 29, 2016 By Cybersecurity Preparedness & Response Team

This morning, Alston & Bird partner Jim Harvey issued an Advisory on the EU’s forthcoming Network Information Security Directive (“NIS Directive”). National laws passed to implement the NIS Directive will impose substantial new compliance responsibilities on providers of “essential services,” as well as on a broad range of “digital service providers”—potentially even if a digital […]

A Brief Overview of the Privacy Shield

March 15, 2016 By Privacy, Cyber & Data Strategy Team

A one page summary is now available to help U.S. organizations initially evaluate whether the Privacy Shield represents a viable mechanism to legitimize their transfer of personal data from the European union. The summary lists the key features and requirements of the Privacy Shield, some of which were contained in the now-invalidated EU-U.S. Safe Harbor Framework, […]

WP 29 Issues Statement on EU-U.S. Privacy Shield

March 2, 2016 By Privacy, Cyber & Data Strategy Team

On the same day that the European Commission debuted the EU-U.S. Privacy Shield, the Article 29 Working Party (WP29) issued a statement welcoming the publication of the draft “adequacy decision” of the European Commission as well as the legal texts that constitute the Privacy Shield arrangement. In accordance with its mission, WP29 said that it would […]

Article 29 Working Party announces its 2016 Action Plan for GDPR Preparedness

February 4, 2016 By Privacy, Cyber & Data Strategy Team

During a press conference held on February 3, 2016, the President of the Article 29 Working Party (“Working Party”) discussed the Working Party’s 2016 action plan concerning the new General Data Protection Regulation (“GDPR”). The action plan lays out the groundwork required to prepare the DPAs for their new role under the GDPR and to […]

Germany’s Christmas Present: Data-Protection Class Actions

January 6, 2016 By Daniel Felz

Following the European Court of Justice’s Schrems decision invalidating the Safe Harbor mechanism, much attention has focused on how the Data Protection Authorities (DPAs) of EU member states would interpret and enforce Schrems. While close attention to DPA activity is important—and will become even more so upon the passage of the EU General Data Protection […]