Elisabeth Dehareng, Author at Connect On Tech

In Data Privacy

7 predictions for the road ahead after ‘Schrems II’

July 28, 2020 by Brian Hengesbaugh and Elisabeth Dehareng 3 Mins Read

It’s difficult to believe that it has only been a short time since the Court of Justice of the European Union invalidated the European Commission adequacy finding for the EU-U.S. Privacy Shield on July 16, 2020. So much has changed. In this final note in the series, we provide seven predictions for the road ahead with “Schrems II” and global data transfers. Some of these may be more controversial than others, but here goes: 1.…

In Data Privacy

Schrems II: European Court of Justice Upholds the SCCs and Invalidates the EU-US Privacy Shield Framework

July 16, 2020 by Elisabeth Dehareng, Joanna De Fonseka, Dr Lukas Feiler, Francesca Gaudino, Brian Hengesbaugh, Julia Kaufmann, Wouter Seinen and Florian Tannen 2 Mins Read

The European Court of Justice (“ECJ”) issued a landmark ruling earlier today that invalidates the EU – US Privacy Shield Framework (“Privacy Shield”) in Case C-311/18 (“Schrems II”).

In Data Privacy

GDPR two years on: What’s happened and what’s ahead?

May 22, 2020 by Benjamin Slinn, Joanna De Fonseka, Julia Kaufmann, Magdalena Kogut-Czarkowska, Francesca Gaudino, Magalie Dansac Le Clerc, Yann Padova, Jennie Nilsson, Elisabeth Dehareng, Raul Rubio, Patricia Pérez, Antonio Muñoz-Torrero, Andre Walter and Wouter Seinen 46 Mins Read

It has been two years since the GDPR came into force on 25 May 2018 and during that time, we have seen more guidance published at an EU level as well as from data protection authorities in Member States which has impacted how organisations approach areas of GDPR compliance. We have also seen enforcement action from data protection authorities across the EU and UK. There have also been other significant developments, over the past two…

In Data Privacy

Data Transfer: Derogations for Specific Situations (Art. 49 GDPR)

March 11, 2020 by Elisabeth Dehareng 5 Mins Read

In the context of the Schrems II case (see a summary here), we continue our analysis of alternative vehicles allowing the transfer of personal to third countries outside the European Economic Area. In previous papers, we focused on Binding Corporate Rules (BCR) [link] as alternatives to the Standard Contractual Clauses (SCC) [link]. This time, we will look at the so-called “derogations for specific situations” set forth under Article 49 GDPR as a subsidiary vehicle to…

In Data Privacy

Data Protection Commissioner v Facebook Ireland (Schrems II): Advocate general’s opinion signals legal changes to standard contractual clauses

December 19, 2019 by Brian Hengesbaugh, Wouter Seinen, Francesca Gaudino, Harry Small, Elisabeth Dehareng, Andre Walter, Michael Egan, Amy de La Lama and Lothar Determann 4 Mins Read

The European Union’s highest court, the Court of Justice of the European Union (CJEU), is evaluating the legitimacy of the EU standard contractual clauses (SCC). SCCs have been the bedrock of cross-border personal data transfers outside the EU for many years. Today, the advocate general (a.g.) has rendered an opinion on the Schrems II case. By way of brief background, Schrems II is a case before the Court of Justice of the European Union (CJEU)…

In Data Privacy

Belgium’s Privacy Commission Issues Recordkeeping Guidance for GDPR

August 10, 2017 by Elisabeth Dehareng 6 Mins Read

The EU General Data Protection Regulation is attracting an increasing amount of attention (and concern) as the clock ticks ever-closer to implementation in 2018.Belgium’s Data Protection Authority (“Privacy Commission”) is among the first European data protection authorities to issue guidance on the record of processing activities under Article 30 of the EU General Data Protection Regulation (“GDPR”). Published on June 14, 2017, the guidance instructs data controllers and data processors on setting up a record of…