Author

Harry Small

Browsing

Avid readers of this blog will know that shortly before the new year holidays advocate general Hendrik Saugmandsgaard Øe (a.g.) gave his opinion on how European Court of Justice (CJEU) should deal with the second Schrems case (Schrems II) on international data transfers. You’ll find the summary we wrote at the time here. This is the first in a series of blogs, on different impacts the opinion might have particularly on the available data transfer…

The European Union’s highest court, the Court of Justice of the European Union (CJEU), is evaluating the legitimacy of the EU standard contractual clauses (SCC). SCCs have been the bedrock of cross-border personal data transfers outside the EU for many years. Today, the advocate general (a.g.) has rendered an opinion on the Schrems II case. By way of brief background, Schrems II is a case before the Court of Justice of the European Union (CJEU)…

On 20th June 2019 the Information Commissioner’s Office (ICO) published its “Update report into adtech and real time bidding” setting out the ICO’s findings and views on data protection practices in the adtech industry. This follows a review by the ICO of the adtech industry including engagement with industry stakeholders. The review focused specifically on real time bidding (RTB) as, according to the ICO, this type of online behavioural advertising appears particularly challenging from a…

Please click here to read Part I of this article. Future GDPR regulatory landscape Higher risk of enforcement on the horizon? In the GDPR’s first year we have seen a large number of complaints and data breach notifications to regulators but comparatively few enforcement actions and fines. There are likely several reasons why enforcement activity has been relatively slow so far. First, a number of DPAs will have faced challenges in preparing for GDPR themselves;…

The GDPR celebrated its first anniversary on 25 May 2019 – a good time to take stock. In this article, we look at how the GDPR has been enforced so far, what the regulators’ future direction of travel might be, and the key areas organisations will need to focus on in the coming months. EU enforcement trends The local data protection authorities (DPAs) are facing a heavy caseload. As at 22 May 2019, there had…