Last week has seen two important developments in relation to the EU-U.S. Privacy Shield (“Privacy Shield”) for transfers of personal information from Europe to the United States. A draft adequacy decision and related documentation for the Privacy … [Read more] about EU Institutions Weigh In on Commission’s EU-U.S. Privacy Shield Proposal
UK Regulator Elaborates Plans for Extensive Guidance on GDPR Compliance
The UK Information Commissioner’s Office (“ICO”) has provided details on its plans to provide guidance to organizations on compliance with the European Union’s General Data Protection Regulation (“GDPR”), which will apply EU-wide as from 25 May … [Read more] about UK Regulator Elaborates Plans for Extensive Guidance on GDPR Compliance
European Council Adopts the Network and Information Security Directive
On May 17, 2016, the European Council formally adopted its position at first reading of the Network and Information Security Directive (“NIS Directive”). The objective of the NIS Directive is to increase cooperation between EU Member States on issues … [Read more] about European Council Adopts the Network and Information Security Directive
Illinois Makes Extensive Changes to Data Breach Notification Law
On May 6, 2016, Illinois Governor Bruce Rauner signed HB1260, which significantly updates the state’s Personal Information Protection Act. The changes take effect on January 1, 2017. When the new law becomes effective, Illinois’ data breach … [Read more] about Illinois Makes Extensive Changes to Data Breach Notification Law
Supreme Court Holds Congress Cannot Confer Automatic Standing By Statute
The Supreme Court has issued its much anticipated opinion in Spokeo Inc. v. Robins, No. 13-1339, 578 U.S. ___ (2016) (click here for a prior post detailing the procedural history and case background). The Supreme Court granted certiarori in Spokeo … [Read more] about Supreme Court Holds Congress Cannot Confer Automatic Standing By Statute