ECJ advocate-general issues first opinion on processing in employment context

A European Court of Justice adviser has said that provisions regulating the processing of employees’ personal data should be specific and provide for certain safeguards to qualify as “specific rules” under the GDPR.

22 September 2022

EDPS takes to court to fight Europol data processing

The EDPS has urged the European Court of Justice to strike out provisions of the Europol Regulation, which it says override a previous order from the regulator and undermines its authority.

22 September 2022

GDR 100 Elite interviews: Osborne Clarke’s Flemming Moos and Ashley Hurst

Hamburg-based Osborne Clarke data practice head Flemming Moos and international head of tech, media and comms Ashley Hurst tell GDR about dark patterns, enforcement hotspots and the recent evolution of UK data protection litigation.

20 September 2022

Judge substitutes government as defendant in data breach class action

A health care provider has persuaded a US federal judge to swap the Department of Justice in its place as a defendant – the latest in a series of rulings that have shifted liability for health care data breaches to the US government.

16 September 2022

Court dismisses claim that SolarWinds insufficiently prepared for 2020 hack

A Delaware state judge has rejected SolarWinds investors’ claims that the IT software provider’s board ignored cybersecurity red flags and should be held liable for a massive cyberattack discovered in 2020.

13 September 2022

Singapore data breach ruling unlikely to open floodgates

Observers say that confirmation that non-material harm caused by data breaches is actionable in Singapore is unlikely to lead to a significant uptick in litigation.

13 September 2022

Singapore opens the gates to non-material damages

Singapore’s Court of Appeal has confirmed that individuals can base data privacy lawsuits on allegations that they suffered non-material harm such as distress, despite opposition from the city-state’s attorney-general.

12 September 2022

Secrecy surrounding Uber data breach wasn’t unusual, witnesses say

Former Uber engineers and security leaders have testified that dealing with a 2016 breach of data relating to 51 million users and drivers was highly confidential – but that such a secretive response is commonplace in any company.

12 September 2022

Attorneys for ex-Uber CSO distance him from decision-making role

A former regulator said Uber’s last-minute announcement regarding a massive data breach after a two-year regulatory investigation was the “single-most frustrating” moment in his FTC career.

09 September 2022

ECJ advocate-general throws GDPR competence clash question back to member states

A European Court of Justice adviser has said that there is no hierarchy between data regulators’ and courts’ GDPR infringement decisions, but urged member states to put in place mechanisms to prevent conflicting decisions.

08 September 2022

Unlock unlimited access to all Global Data Review content