39 results EU-U.S. Data Privacy Framework: A new adequacy decision for the United States On Monday July 10, 2023, the European Commission adopted her adequacy decision for the United States, the “EU-U.S. Data Privacy Framework”, which has immediate effect. European Strategy for Data: Analysis of the proposed regulation of data governance On 25 November 2020, the European Commission published a proposal for a regulation on data governance and a related Q&A. On 1 October 2021, the Council of the European Union agreed position on the Data Governance Act. Digital Law Up(to)date: Belgian DPA asks for clearer justification of the Covid Safe Ticket (CST) The Belgian Data Protection Authority (DPA) has delivered its opinion on two draft cooperation agreements (one legislative agreement and one implementing agreement) relating in particular to the extension of the scope of the Covid Safe Ticket (CST). Enforcement of Schrems II: Council of State refuses unconditional illegality of transfers to the U.S. A recent decision of the Belgian Council of State shines a first light on the enforcement of the Schrems II ruling of the European Court of Justice in Belgium. Digital Law Up(to)date: Interesting points in a DPA decision based on a cross-border complaint relating to cookies The Belgian Data Protection Authority published an interesting decision of its Litigation chamber. The content of the decision is not completely new, but it provides (or recalls) some relevant elements for personal data practitioners. Digital Law Up(to)date: The cookie consent framework of IAB Europe violates the GDPR On 2 February 2022, the Belgian Data Protection Authority considered that the Transparency and Consent Framework (TCF) developed by Interactive Advertising Bureau Europe (IAB) violates the GDPR. The Current Status of the AI Act: Navigating the Future of AI Regulation in the EU We discuss the current status of the AI Act since the ban on unacceptable AI systems and the AI literacy obligation, and the challenges that are arising in light of the balance between the rapid advancement of technologies and the slow pace of regulation. Advocate General opinion on further unlawful processing In a recent opinion delivered by Advocate General Campos Sánchez-Bordona, the European Court of Justice is asked to interpret key provisions of the GDPR concerning the rights of individuals whose personal data has been unlawfully processed. Digital Law Up(to)date: French Data Protection authority launches three new initiatives in the field of personal data protection In this blog, we briefly present three interesting initiatives of the CNIL, the French Data Protection Authority. Uitwisseling van persoonsgegevens met het Verenigd Koninkrijk Uit de Brexit deal volgt dat gedurende de eerste 4 maanden van 2021 de doorgifte van persoonsgegevens naar het Verenigd Koninkrijk (“VK”) nog op dezelfde manier mag plaatsvinden als voorheen. Webinar: Responding to Personal Data Breaches in the Post-GDPR era On 24-26 March 2021, Brussels TMT partner Erik Valgaeren will address the topic 'Managing personal data breach in a complex international scenarios' during ERA's online conference 'Responding to Personal Data Breaches in the Post-GDPR era'. Webinar: The next generation of international data transfers On 18 March 2021, Erik Valgaeren, Carolien Michielsen and Jan Joos host a webinar on 'The next generation of international data transfers' organised by DPO-pro. 18 March 2020: Erik Valgaeren sheds a light on the legal perspectives of industrial data during a Beltug conference In the digital age, data is hailed as the 'new gold' or 'oil'. As we seek insights for increased revenue and market expansion, data analysis is vital. It must be handled with care, aligning with strategic goals and ensuring solid security and quality. ICO to impose record-breaking fines for inadequate security measures and data breaches Though the European data protection authorities have taken their time in enforcing the GDPR two announcements by the ICO in the UK regarding proposed fines for British Airways and Marriott demonstrate that large fines are about to start landing regularly. Part one - GDPR and Public Law: Applicability of GDPR to public bodies Nearly a year after the GDPR took effect, questions have emerged about its interaction with public law. This three-part blog series "GDPR and Public Law" explores three key issues regarding its impact on public law and government. Can you rely on your contract to process personal data? The EDPB adopted on 9 April 2019 a set of draft guidelines on personal data processing under Article 6(1)(b) GDPR in the context of providing online services to data subjects. Companies unprepared for increasing cyber risks Companies increasingly face cybercrime incidents. Stibbe offers tailor-made solutions. European Data Protection Board provides welcoming guidance on the territorial scope of the GDPR If personal data of a Korean employee working for a U.S. company is processed in the HR department in London, does the GDPR apply? Is the GPDR applicable to a Dutch customer visiting the website of a Canadian company? Pagination Current page 1 Page 2 Page 3 Next page
EU-U.S. Data Privacy Framework: A new adequacy decision for the United States On Monday July 10, 2023, the European Commission adopted her adequacy decision for the United States, the “EU-U.S. Data Privacy Framework”, which has immediate effect.
European Strategy for Data: Analysis of the proposed regulation of data governance On 25 November 2020, the European Commission published a proposal for a regulation on data governance and a related Q&A. On 1 October 2021, the Council of the European Union agreed position on the Data Governance Act.
Digital Law Up(to)date: Belgian DPA asks for clearer justification of the Covid Safe Ticket (CST) The Belgian Data Protection Authority (DPA) has delivered its opinion on two draft cooperation agreements (one legislative agreement and one implementing agreement) relating in particular to the extension of the scope of the Covid Safe Ticket (CST).
Enforcement of Schrems II: Council of State refuses unconditional illegality of transfers to the U.S. A recent decision of the Belgian Council of State shines a first light on the enforcement of the Schrems II ruling of the European Court of Justice in Belgium.
Digital Law Up(to)date: Interesting points in a DPA decision based on a cross-border complaint relating to cookies The Belgian Data Protection Authority published an interesting decision of its Litigation chamber. The content of the decision is not completely new, but it provides (or recalls) some relevant elements for personal data practitioners.
Digital Law Up(to)date: The cookie consent framework of IAB Europe violates the GDPR On 2 February 2022, the Belgian Data Protection Authority considered that the Transparency and Consent Framework (TCF) developed by Interactive Advertising Bureau Europe (IAB) violates the GDPR.
The Current Status of the AI Act: Navigating the Future of AI Regulation in the EU We discuss the current status of the AI Act since the ban on unacceptable AI systems and the AI literacy obligation, and the challenges that are arising in light of the balance between the rapid advancement of technologies and the slow pace of regulation.
Advocate General opinion on further unlawful processing In a recent opinion delivered by Advocate General Campos Sánchez-Bordona, the European Court of Justice is asked to interpret key provisions of the GDPR concerning the rights of individuals whose personal data has been unlawfully processed.
Digital Law Up(to)date: French Data Protection authority launches three new initiatives in the field of personal data protection In this blog, we briefly present three interesting initiatives of the CNIL, the French Data Protection Authority.
Uitwisseling van persoonsgegevens met het Verenigd Koninkrijk Uit de Brexit deal volgt dat gedurende de eerste 4 maanden van 2021 de doorgifte van persoonsgegevens naar het Verenigd Koninkrijk (“VK”) nog op dezelfde manier mag plaatsvinden als voorheen.
Webinar: Responding to Personal Data Breaches in the Post-GDPR era On 24-26 March 2021, Brussels TMT partner Erik Valgaeren will address the topic 'Managing personal data breach in a complex international scenarios' during ERA's online conference 'Responding to Personal Data Breaches in the Post-GDPR era'.
Webinar: The next generation of international data transfers On 18 March 2021, Erik Valgaeren, Carolien Michielsen and Jan Joos host a webinar on 'The next generation of international data transfers' organised by DPO-pro.
18 March 2020: Erik Valgaeren sheds a light on the legal perspectives of industrial data during a Beltug conference In the digital age, data is hailed as the 'new gold' or 'oil'. As we seek insights for increased revenue and market expansion, data analysis is vital. It must be handled with care, aligning with strategic goals and ensuring solid security and quality.
ICO to impose record-breaking fines for inadequate security measures and data breaches Though the European data protection authorities have taken their time in enforcing the GDPR two announcements by the ICO in the UK regarding proposed fines for British Airways and Marriott demonstrate that large fines are about to start landing regularly.
Part one - GDPR and Public Law: Applicability of GDPR to public bodies Nearly a year after the GDPR took effect, questions have emerged about its interaction with public law. This three-part blog series "GDPR and Public Law" explores three key issues regarding its impact on public law and government.
Can you rely on your contract to process personal data? The EDPB adopted on 9 April 2019 a set of draft guidelines on personal data processing under Article 6(1)(b) GDPR in the context of providing online services to data subjects.
Companies unprepared for increasing cyber risks Companies increasingly face cybercrime incidents. Stibbe offers tailor-made solutions.
European Data Protection Board provides welcoming guidance on the territorial scope of the GDPR If personal data of a Korean employee working for a U.S. company is processed in the HR department in London, does the GDPR apply? Is the GPDR applicable to a Dutch customer visiting the website of a Canadian company?