The GDPR, the new Privacy Regulation that will enter into force on 25 May 2018, will also impact the privacy rights of employees. All new data protection rules following from the GDPR are also applicable to the processing of data of employees. In this respect, the GDPR does not entail large changes: for the
In anticipation of 25 May 2018, the Article 29 Working Party (“WP29”) regularly publishes guidelines with regards to certain main concepts featured in the Privacy Regulation. In this update, Ovidius discusses the guidelines relating to the (tricky) concept of ‘consent’. When is consent required? Under the Privacy Regulation, processing personal data is only permitted
On 18 and 19 September 2017, the first joint review of the Privacy Shield took place in Washington, DC. After the publication of the report of the European Commission on 18 October 2017, the Article 29 Working Party (“WP29”)* has now also published its findings. The WP29 has been critical of the Privacy Shield
Last month, the Article 29 Working Party (“WP29”)* published guidelines for the interpretation of the new data breach notification duty, which is part of the General Data Protection Regulation (“GDPR”). Although a Dutch notification duty pertaining to data breaches entered into force on 1 January 2016, the GDPR’s version thereof will be somewhat stricter.
In September 2017, the first annual review of the Privacy Shield was conducted over the course of two days in Washington, D.C. On 18 October, the European Commission published its first report on the results of the review. The European Commission concluded that, overall, the U.S. authorities have put in place the necessary structures
Read more« Previous Page — Next Page »