Tag: European

Cooley Privacy Talks: European Data Transfers: Where Do We Stand Now?

This post relates to Cooley’s Privacy Talks series – a webinar program featuring Cooley practitioners discussing practical guidance and best practices around managing data protection-related issues. Sessions range from the European General Data Protection Regulation (GDPR) to the California Consumer Privacy Act (CCPA) – and all the other new data protection frameworks arising in […]

New UK International Data Transfer Tools in Force Starting March 21

After being presented to the UK Parliament in February 2022, the UK’s new data transfer tools are now in force and ready for use.

Data Act: EU Proposes Rules for Accessing and Sharing Industrial Data

On February 23, 2022, the European Commission published its proposal for the Data Act, which aims to maximize the value of industrial data in the economy by ensuring that a wider range of stakeholders gain control over their industrial data – and that more data is available for innovative use […]

Cooley Privacy Talks: Overview of Privacy Enforcement Actions in the US and EU

This post relates to Cooley’s Privacy Talks series – a webinar program featuring Cooley practitioners discussing practical guidance and best practices around managing data protection-related issues. Sessions range from the European General Data Protection Regulation (GDPR) to the California Consumer Privacy Act (CCPA) – and all the other new data protection frameworks arising in […]

France Issues Processor Guidelines on “Reusing Personal Data to Improve or Develop Services or Products”

On January 12, 2022, the French Data Protection Authority (CNIL) issued guidance (available in French only) that sets out the conditions for processors to reuse the personal data entrusted by controllers for their own purposes. The CNIL notably refers to a scenario where a processor wants to reuse the personal […]

New UK International Data Transfer Tools Presented to UK Parliament

Background Standard contractual clauses are one of the key tools relied upon by organizations that transfer personal data to recipients in ‘inadequate’ countries under the UK and/or the EU General Data Protection Regulation. However, unlike in the European Union – where new SCCs were adopted in 2021 (the “New EU […]

Cooley Privacy Talks: Reconciling the GDPR With the Clinical Trial Regulation (CTR)

This post relates to Cooley’s Privacy Talks series – a webinar program featuring Cooley practitioners discussing practical guidance and best practices around managing data protection-related issues. Sessions range from the European General Data Protection Regulation (GDPR) to the California Consumer Privacy Act (CCPA) – and all the other new data protection frameworks […]

‘Controller,’ ‘Processor’ and ‘Transfer’: Some GDPR Concepts Re-Explained

Happy Data Privacy Day! Many companies are still struggling with some basic concepts of the General Data Protection Regulation, such as “controller,” “processor” and “transfer” of personal data. The European Data Protection Board (EDPB) has tried to shed some light on these concepts in its guidelines on the concepts of […]

‘Inbox Advertising’: Direct Marketing Rules Apply to Ads in Email Inboxes

On November 25, 2021, the Court of Justice of the European Union (CJEU) held in the case C-102/20 that the display of advertising messages in a form similar to an actual email among others in an inbox constitutes an electronic mail for direct marketing purposes. Hence, rules on direct marketing […]

New Standard Contractual Clauses: 10 Things You Need to Know

On the third anniversary of the General Data Protection Regulation, Cooley launched a series of webinar focused on the GDPR. The GDPR permits the transfer of data from the European Union and the European Economic Area (EEA) to third countries using standard contractual clauses (SCCs), which are a useful mechanism […]