Tag: EU-US data transfer

Data protection & privacy digest 16 Dec – 2 Jan 2023: US signals intelligence redress mechanism, “dormant” privacy risk assessment, data brokerage

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes and redress: US signals intelligence redress mechanism, Google search results removal, California consumer privacy rights, Australia Privacy Act review The US Office of the Director of National Intelligence, (ODNI), published a directive for implementing the signals intelligence redress mechanism created under the […]

Data protection & privacy digest 1 – 15 December 2022: draft US adequacy decision, Microsoft ‘data boundary’ for the EU, Age-appropriate design code

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: draft US adequacy decision, EDPB’s binding decisions, AI Act The EU issued a draft adequacy decision for the United States, saying US safeguards against America’s intelligence activities were strong enough to address EU concerns on data transfers. Previously, personal data could be […]

Data protection & privacy digest 9 – 30 November 2022: Microsoft 365 non-compliance, Meta “data scraping” fine, Amazon Prime class action

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: Microsoft Office 365 cloud services, privacy complaints, lead supervisory authority, NIS2 Directive, Australia data breach penalties The German Data Protection Conference negatively assessed the data processing agreements for Microsoft 365 cloud services, regarding the requirements of Art. 28 of the GDPR. The […]

Data protection & privacy digest 27 Sept – 11 Oct 2022: New EU-US data privacy framework is now under EU legislators’ microscope

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: EU-US adequacy procedures, non-material damage in the GDPR, the DSA, Colorado draft privacy law, Andorra data protection regime On 7 October, President Biden signed an Executive Order on ‘Enhancing Safeguards for United States Signals Intelligence Activities’. Along with the Regulations issued by […]

Weekly digest March 21 – March 27, 2022: EU and US reach preliminary data transfer agreement, but experts have doubts

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: new EU-US data transfer deal, Digital Markets Act, China’s algorithmic rules The EU and US have announced a new preparatory data transfer deal, seeking to end the legal uncertainty in which thousands of companies found themselves after the CJEU threw out two […]

Weekly digest February 21 – February 27, 2022: the EU Data Act to facilitate use of digital economic data

TechGDPR’s review of international data-related stories from press and analytical reports. Legal Processes: draft EU Data Act, AI liability rules The Commission proposed new rules on who can use and access data generated in the EU across all economic sectors. The EU Data Act will “ensure fairness in the digital environment, stimulate a competitive data […]

Weekly digest February 7 – February 13, 2022: France latest EU member to put pressure on Google Analytics

TechGDPR’s review of international data-related stories from press and analytical reports. Legal Processes: use of Google Analytics in France, Privacy Sandbox commitments in the UK The use of Google Analytics, (GA), is illegal as it threatens the privacy of French website users, concludes the French data protection regulator CNIL. In its latest decision relating to […]

Weekly digest January 31 – February 6, 2022: UK international data transfer agreement imminent

TechGDPR’s review of international data-related stories from press and analytical reports. Legal Processes: UK IDTA, EU Clinical Trials Regulation, digital Surveillance & International law The implementation of the UK (post-Brexit) international data transfer agreement, (IDTA), stepped into its final stage after being laid before Parliament. If no objections are raised, the IDTA, the Addendum to […]

Weekly digest January 24 – January 31, 2022: GDPR jurisdictional reach, US surveillance laws, DP Engineering

TechGDPR’s review of international data-related stories from press and analytical reports. Legal Processes and Redress: GDPR jurisdictional reach, CNIL’s regulatory win over Google, CJEU case laws summary A recent UK Court of Appeal decision emphasizes the broad geographic scope of both the EU GDPR and the UK GDPR, but also ongoing uncertainty regarding the jurisdictional […]

Weekly digest January 10 – January 16, 2022: Does the use of Google Analytics by EU entities violate the GDPR?

TechGDPR’s review of international data-related stories from press and analytical reports. Legal processes: Google Analytics case in Austria, EU Parliament, French health database, the Irish DPC The Austrian Data Protection Authority, the DSB, ruled that the use of Google Analytics violates the GDPR. Presented as evidence was a case where an IP address “anonymization” function […]

Book a free consultation to discuss your DPO needs and the most suitable package

Request a free consultation