Data Protection Officer

The Role of a Data Protection Officer

Privacy regulations such as the EU’s General Data Protection Regulation (GDPR) and, more recently, Dubai’s Data Processing Law (DPL 2020) make it mandatory for organizations to appoint a Data Protection Officer (DPO). Under GDPR, a DPO is required for any organization that consistently monitors EU-based data subjects on a large scale. This might exclude smaller…
Read More
CNIL And GDPR

French Data Protection Authority Hands Down First Sanction as Lead Authority

The CNIL has imposed a €250,000 fine on an online retailer for GDPR infringements in cooperation with other EU supervisory authorities. Founded in 2006 and headquartered in France, Spartoo SAS (Spartoo) is one of the leaders of the European online shoe retail market. On 31 May 2018, a week after the entry into application of…
Read More
UFCMJRA

GDPR and the Uniform Foreign Country Money Judgments Recognition Act

You are an American company. While you sell product or otherwise interact with Europe, and thereby collect personal information about European residents, you have no assets or facilities on that continent. Nonetheless, you are concerned about the reach of the European Union’s General Data Privacy Regulations (GDPR), whether you must comply with its requirements, and…
Read More
EU-US Privacy Shield

EU Creates Taskforce to Address Fallout From Privacy Shield’s Demise

Companies in the United States are just beginning to feel the impact of the Schrems 2.0 case, which heralded the end of the EU-US Privacy Shield.  With Privacy Shield’s demise, the mechanism via which 5,000+ companies transferred data from Europe is no longer valid under the EU’s General Data Protection Regulation (GDPR).  Standard Contractual Clauses…
Read More
Marketing And Data Governance CCPA And GDPR

How Marketing Teams Can Participate in Data Governance

Today’s marketing teams are collecting, storing, and processing vast amounts of customer data to make high-impact decisions and build marketing strategies. It was once believed that the more data collected the better, but this has ceased to be the case in many ways. Marketing teams need to be strategic when it comes to data collection–and…
Read More
Privacy Shield

Privacy Shield is Dead: Data Transfers Between EU and US in Question

ADCG wrote earlier this year about the uncertain future of the EU-US Privacy Shield Framework–an agreement between the United States and the European Union that governs the transfer of data between the entities. On July 16, the Court of Justice of the European Union (CJEU) made a decision that effectively struck down the EU-US Privacy…
Read More
GCPR And CCPA Enforcement

Unforgiving GDPR Enforcement Sets the Tone for CCPA Enforcement

Now that the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) are fully-enforceable (CCPA enforcement started July 1), most of the Western world is subject to some pretty serious data privacy standards. But with any law, there’s a difference between what’s written in the rule book, and a governing body’s endgame…
Read More
EasyJet Hack

Breaking Down the EasyJet Hack

Earlier this month, European budget airline EasyJet was hacked. In a “highly sophisticated attack,” 9 million customers had personal information, including email addresses and travel itineraries, compromised. And 2,208 customers had their credit card information stolen. The attack has left many customers “in limbo”, with many questioning how a company that claimed to comply with…
Read More
Data Encryption

Current Industry Regulations for Data Encryption: Are You Up to Date?

Though data is an incredibly valuable resource, more data generally means more responsibility. A larger amount of data presents a larger attack surface for hackers to target through cyberattacks. Encryption, the act of translating data into a new form that is undecipherable without a special key, is an impactful method of avoiding these issues and…
Read More
Back To Top