EDPB to define strategic cases

The EDPB is establishing a set of definitions that aim to determine what qualifies as a strategic case, as part of its work to make cooperation between member state authorities on cross-border enforcement more effective.

24 May 2022

Employers struggle with CPRA requirements

With the exemption clock winding down, the California Privacy Rights Act could unleash a tidal wave of privacy policies and procedures onto HR departments that most US-based companies aren’t prepared for.

23 May 2022

Lawmaker touts sandboxes as key to responsible AI

An MEP has said regulatory sandboxes are essential to enable smaller businesses to compete with giants and provide them with the security to experiment, interact with regulators, and obtain confirmation that the products they develop are compliant.

23 May 2022

Clearview ordered to pay £7.5 million in latest European penalty

The UK Information Commissioner’s Office has fined Clearview AI £7.5 million (€8.9 million) and ordered the company to delete all data of UK citizens.

23 May 2022

Proposed EU-US AI risk management road map may crumble under jurisdictional and corporate preferences

The lofty goals of a planned EU-US AI road map may be hampered by regulatory differences and corporate preference for self-regulation.

20 May 2022

Italy fines Uber €4 million

Italy’s data protection regulator has found that Uber provided inadequate privacy notices to both drivers and riders, and failed to obtain the necessary consent to carry out scoring for fraud risk.

20 May 2022

Litigation funders increasingly attracted to trade secrets cases

If litigation financiers take last week’s news of a $2 billion jury verdict in a trade secrets case the same way that they have viewed $2 billion patent verdicts in the past, it could lead to a rush of financing marketing aimed at trade secret owners.

20 May 2022

Cryptocurrency sanctions case highlights ransomware liability

Ransomware might be a common business problem but entities can’t ignore where their crypto payments land, with a recent judgment highlighting the US government’s increased vigour for pursuing entities that send cryptocurrency to sanctioned countries.

19 May 2022

TalkTalk says data breach litigation claimants conducting a “classic fishing expedition”

Counsel to TalkTalk has said that allowing parts of a data breach case against it to proceed would amount to “pure heresy in the face of all the jurisprudence”, following the claimants’ application for information about possible data breaches.

19 May 2022

Fractured deployment of NIS 2 could be headache for digital services

The political agreement between the European Parliament and European Council on the NIS 2 Directive brings the cybersecurity law closer to the finish line, but consensus in Brussels may belie the prospect of harmony between member states.

19 May 2022

Get unlimited access to all Global Data Review content