Topic: Policy

Activists and DPC clash over European Commission monitoring plans

The Irish data regulator has contested activists’ claims that the European Commission will increase its monitoring of large privacy investigations over concerns the watchdog has inadequately enforced the GDPR.

03 February 2023

ICO confirms end of 24-hour PECR data breach notification deadline

Days after appearing to backtrack on a commitment to stop enforcing a 24-hour data breach regime applying to communication providers, the UK data regulator has confirmed that it now expects low-risk PECR data notifications to be filed within 72 hours.

02 February 2023

Luxembourg set to reform retention law

Draft Luxembourg legislation is designed to adapt the country’s mass data retention framework to recent European Court of Justice rulings.

31 January 2023

Finnish regulator calls for supervisory role under upcoming EU data laws

The Finnish data protection authority’s head has called for national regulators to remain responsible for the supervision of any processing activity using personal data under upcoming data laws.

30 January 2023

NIST finalises AI risk management guidance

NIST’s AI risk management framework joins a growing federal push to regulate AI in the US.

27 January 2023

ECJ rules on police biometric data collection

The European Court of Justice has said the systematic collection of biometric and genetic data of accused individuals is contrary to EU law that requires enhanced protection for sensitive personal data.

27 January 2023

GDR 100 Elite interviews: Cooley’s Travis LeBlanc and Patrick Van Eecke

Co-Lead of Cooley’s cyber/data/privacy practice and global litigation department Travis LeBlanc and head of Cooley’s European cyber/data/privacy practice Patrick Van Eecke discuss how the firm’s practice is weathering an economic slowdown and why EU-wide class actions and the SEC’s proposed cybersecurity requirements are keeping clients up at night.

27 January 2023

Commission escalates Belgian DPA battle

The European Commission has launched infringement proceedings against Belgium relating to the dismissal of two senior members of the country’s data protection authority.

26 January 2023

ICO data breach reporting backtrack

Communication service providers must continue to report data breaches within 24 hours, the ICO has said, despite saying a few days ago that it would cease enforcing the requirement.

26 January 2023

Belgium opens the door to third party appeals

Belgium’s Constitutional Court has ruled that interested third parties can challenge decisions by the Belgian data watchdog, in a move that could increase pressure on the regulator from NGOs and competitors dissatisfied with investigative outcomes.

25 January 2023

Unlock unlimited access to all Global Data Review content