68 results Data Privacy Day 2023: highlighting the most impactful ECJ judgments from the past year In recent years, the ECJ has issued landmark judgments with far-yielding consequences for data controllers and data processors. To celebrate Data Privacy Day 2023, we highlighted the most impactful judgments of the ECJ from the past year. Commission publishes PSD3 and PSR Proposal; a tightening of the regulation of payment services providers in the EU On June 28, 2023, the European Commission published a set of new legislative proposals, including PSD3, aimed at ushering in the digital era for payments and the broader financial sector, with a particular focus on consumers. The revised Network and Information Security Directive: enhancing EU cybersecurity standards More businesses and organisations will have to strengthen their cybersecurity strategies, as the European legislator revised the NIS Directive. NIS 2 will impose stricter cybersecurity obligations on more organisations. Stibbe assists Uchida Yoko Co with the acquisition of Open Assessment Technologies Stibbe assisted Uchida Yoko Co., Ltd., with the acquisition of 100% of Open Assessment Technologies S.A. (OAT™). EU-U.S. Data Privacy Framework: A new adequacy decision for the United States On Monday July 10, 2023, the European Commission adopted her adequacy decision for the United States, the “EU-U.S. Data Privacy Framework”, which has immediate effect. ECJ further shapes independent position of DPOs In a judgment of 9 February 2023 (C-453/21), the European Court of Justice has further shaped the rules surrounding the independence of a data protection officer (DPO), one of the cornerstones of the GDPR. Belgian DPA rules on employee geographic tracking by public authorities On 21 February 2023, the litigation chamber of the Belgian data protection authority has ruled on the legitimacy of the geographic tracking of employees by a public authority. Three months after the UBO-case – Where do we stand and what’s next? This article looks at the aftermath of the UBO case invalidating the general access to UBO data, and looks at what lies ahead for companies and member states, and specifically at Belgium's recent regulatory action. To what extent does the WAMCA procedure allow for collective actions for damages due to breaches of the GDPR? Whether it is possible to claim collective damages for an alleged breach of the GDPR by means of WAMCA proceedings has been a recent question within the mass damages practice. What information on this topic can be found in legislation, case law and litera Digital Law Up(to)date: European Parliament violates several provisions of the GDPR for EU Institutions On 5 January 2022, the EDPS issued a reprimand to the European Parliament for non-compliance with several provisions of the GDPR for EU Institutions and ordered it to update its data protection notices of an internal corona testing website. Digital Law Up(to)date: No processing of vaccination status in recruitment process The Litigation Chamber of the Belgian DPA confirms that, in the absence of an existing legal basis, it is not possible for an employer, in this case a hospital, to make the recruitment of a person conditional on the fact that he/she has been vaccinated. Digital Law Up(to)date: DPA publishes recommendation on the processing of biometric data On 6 December 2021, the Belgian Data Protection Authority published a recommendation on the processing of biometric data.  European Strategy for Data: Analysis of the proposed regulation of data governance On 25 November 2020, the European Commission published a proposal for a regulation on data governance and a related Q&A. On 1 October 2021, the Council of the European Union agreed position on the Data Governance Act. Towards a European legal framework for the development and use of Artificial Intelligence Back in 2014, Stephen Hawking said, "The development of full artificial intelligence could spell the end of the human race." One year of Schrems II: a state of affairs for international data transfers International data transfers have been the subject of intense debates ever since the Court of Justice issued its landmark judgement of Schrems I, on 6 October 2015. Digital Law Up(to)date: Belgian DPA asks for clearer justification of the Covid Safe Ticket (CST) The Belgian Data Protection Authority (DPA) has delivered its opinion on two draft cooperation agreements (one legislative agreement and one implementing agreement) relating in particular to the extension of the scope of the Covid Safe Ticket (CST). Enforcement of Schrems II: Council of State refuses unconditional illegality of transfers to the U.S. A recent decision of the Belgian Council of State shines a first light on the enforcement of the Schrems II ruling of the European Court of Justice in Belgium. Digital Law Up(to)date: (1) the download of a software with a permanent licence can constitute a “sale of goods”; (2) alert of the BEUC regarding the privacy policy of WhatsApp and its new terms of use In this blog, we present two interesting matters in the field of digital law: (1) The supply of a copy of software together with a licence to use it can constitute a "sale of goods”; and (2) WhatsApp in turmoil for its privacy policy and terms of use. Pagination Current page 1 Page 2 Page 3 Page 4 Next page
Data Privacy Day 2023: highlighting the most impactful ECJ judgments from the past year In recent years, the ECJ has issued landmark judgments with far-yielding consequences for data controllers and data processors. To celebrate Data Privacy Day 2023, we highlighted the most impactful judgments of the ECJ from the past year.
Commission publishes PSD3 and PSR Proposal; a tightening of the regulation of payment services providers in the EU On June 28, 2023, the European Commission published a set of new legislative proposals, including PSD3, aimed at ushering in the digital era for payments and the broader financial sector, with a particular focus on consumers.
The revised Network and Information Security Directive: enhancing EU cybersecurity standards More businesses and organisations will have to strengthen their cybersecurity strategies, as the European legislator revised the NIS Directive. NIS 2 will impose stricter cybersecurity obligations on more organisations.
Stibbe assists Uchida Yoko Co with the acquisition of Open Assessment Technologies Stibbe assisted Uchida Yoko Co., Ltd., with the acquisition of 100% of Open Assessment Technologies S.A. (OAT™).
EU-U.S. Data Privacy Framework: A new adequacy decision for the United States On Monday July 10, 2023, the European Commission adopted her adequacy decision for the United States, the “EU-U.S. Data Privacy Framework”, which has immediate effect.
ECJ further shapes independent position of DPOs In a judgment of 9 February 2023 (C-453/21), the European Court of Justice has further shaped the rules surrounding the independence of a data protection officer (DPO), one of the cornerstones of the GDPR.
Belgian DPA rules on employee geographic tracking by public authorities On 21 February 2023, the litigation chamber of the Belgian data protection authority has ruled on the legitimacy of the geographic tracking of employees by a public authority.
Three months after the UBO-case – Where do we stand and what’s next? This article looks at the aftermath of the UBO case invalidating the general access to UBO data, and looks at what lies ahead for companies and member states, and specifically at Belgium's recent regulatory action.
To what extent does the WAMCA procedure allow for collective actions for damages due to breaches of the GDPR? Whether it is possible to claim collective damages for an alleged breach of the GDPR by means of WAMCA proceedings has been a recent question within the mass damages practice. What information on this topic can be found in legislation, case law and litera
Digital Law Up(to)date: European Parliament violates several provisions of the GDPR for EU Institutions On 5 January 2022, the EDPS issued a reprimand to the European Parliament for non-compliance with several provisions of the GDPR for EU Institutions and ordered it to update its data protection notices of an internal corona testing website.
Digital Law Up(to)date: No processing of vaccination status in recruitment process The Litigation Chamber of the Belgian DPAÂ confirms that, in the absence of an existing legal basis, it is not possible for an employer, in this case a hospital, to make the recruitment of a person conditional on the fact that he/she has been vaccinated.
Digital Law Up(to)date: DPA publishes recommendation on the processing of biometric data On 6 December 2021, the Belgian Data Protection Authority published a recommendation on the processing of biometric data. Â
European Strategy for Data: Analysis of the proposed regulation of data governance On 25 November 2020, the European Commission published a proposal for a regulation on data governance and a related Q&A. On 1 October 2021, the Council of the European Union agreed position on the Data Governance Act.
Towards a European legal framework for the development and use of Artificial Intelligence Back in 2014, Stephen Hawking said, "The development of full artificial intelligence could spell the end of the human race."
One year of Schrems II: a state of affairs for international data transfers International data transfers have been the subject of intense debates ever since the Court of Justice issued its landmark judgement of Schrems I, on 6 October 2015.
Digital Law Up(to)date: Belgian DPA asks for clearer justification of the Covid Safe Ticket (CST) The Belgian Data Protection Authority (DPA) has delivered its opinion on two draft cooperation agreements (one legislative agreement and one implementing agreement) relating in particular to the extension of the scope of the Covid Safe Ticket (CST).
Enforcement of Schrems II: Council of State refuses unconditional illegality of transfers to the U.S. A recent decision of the Belgian Council of State shines a first light on the enforcement of the Schrems II ruling of the European Court of Justice in Belgium.
Digital Law Up(to)date: (1) the download of a software with a permanent licence can constitute a “sale of goods”; (2) alert of the BEUC regarding the privacy policy of WhatsApp and its new terms of use In this blog, we present two interesting matters in the field of digital law: (1) The supply of a copy of software together with a licence to use it can constitute a "sale of goods”; and (2) WhatsApp in turmoil for its privacy policy and terms of use.