Category

Data Privacy & Security

Category

On Wednesday, October 6, 2021, Baker McKenzie partners Harry Valetk and Brian Hengesbaugh, Global Chair of the Firm’s Data Privacy & Security Business Unit, presented at the Global Data Protection Boot Camp 2021 hosted by the Practising Law Institute. The boot camp boasted an impressive line-up of data privacy experts from both government and industry to share practical insights. The half-day program was comprised of the following four segments: Introduction and Legislative Developments in Data Protection LawsNuts and Bolts…

On 9 June 2021, the Parliament registered the draft law On Protection of Personal Data, proposing to completely replace the existing law and aiming to implement the General Data Protection Regulation (GDPR) in Ukraine.On 29 September 2021, the Parliamentary Committees on Digitalization and on Human Rights Protection together with the Ukrainian Parliament Commissioner for Human Rights (current Ukrainian Data Protection Agency) and the Joint EU and European Council project presented the draft law On the…

*Article originally posted on IAPP.org* Privacy professionals around the world are feverishly working on configuring and implementing the European Union’s new Standard Contractual Clauses (“SCCs”). On September 27, 2021, companies in the European Economic Area (EEA) must not enter into new cross-border data transfer arrangements with companies in the United States and most other countries, unless the recipient outside the EEA agrees to the new SCCs (Elisabeth Dehareng, Francesca Gaudino and Brian Hengesbaugh, The road ahead…

Executive Summary On 20 August 2021, the Standing Committee of the National People’s Congress passed the Personal Information Protection Law of the PRC (“PIPL”), after deliberating two draft versions and seeking for public comment in a ten month’s span. The passage of the PIPL signifies that China is stepping into a more robust and comprehensive personal information protection regime by establishing a unified, generally-applicable legislation, as EU does with the aid of the General Data…

In brief On 25 May 2021, the Singapore High Court provided long-awaited clarifications on the scope of private actions under the Personal Data Protection Act 2012 (PDPA). It was held that in order to succeed in a private action under the PDPA, the claimant must suffer loss or damage that falls within the common law heads of loss or damage (such as pecuniary loss, damage to property, and personal injury including psychiatric illness) directly as…

US employers want employees to return to the brick and mortar workplace but with the COVID-19 Delta variant rampaging across the US and elsewhere, many employers are requiring employees to be vaccinated before they return – and they are requiring proof of vaccination. So, what can employers do to track the vaccination status of their employees? In this Quick Chat video, our Labor and Employment and Data Privacy lawyers discuss risks and best practices for US employers on tracking…

Introduction Digital transformation has gained traction in recent years and affects employment relationships more than ever. The emergence of the so-called platform economy is certainly the epitome of this development. However, new technologies and methods of collaboration also need to comply with legal requirements. At the end of 2020, the Federal Labour Court (FLC) likely turned the platform business model upside down, when the judges decided that a crowdworker using a platform’s app on a…

Due diligence and ethical sourcing in supply chain management has been the subject of increasing regulatory attention. This reflects the growing impetus for companies to ensure that their supply chains are socially responsible. Similar to “Know Your Client” or “KYC” standards in the financial services sector, which protect both clients and financial intermediaries, the concept of “Know Your Supply Chain” reflects the requirements to protect workers, the environment, and the integrity of company purchasing arrangements.…

Colorado has joined the growing list of US states passing new comprehensive privacy laws by enacting the Colorado Privacy Act (the “CPA”). Governor Jared Polis signed the CPA into law on July 7, 2021, making it the third comprehensive state privacy law enacted in the US. With other states also considering proposals on comprehensive privacy legislation, CPA is another signal that companies must be prepared for more (not less) privacy regulatory risks. Like the California…