Search Results for:

UK Data Transfer Mechanism Comes Into Force

The International Data Transfer Agreement (“IDTA”), the long awaited mechanism for international transfers of personal data originating from the United Kingdom (“UK”), is now in force as of March 21, 2022, along with a separate addendum to the EU standard contractual clauses (“UK Addendum”). These transfer mechanisms were introduced by…

Read More

The Irish DPC Publishes Final Version of its Children’s Fundamentals

On 17 December 2021, the Irish Data Protection Commission (“DPC”) published the final version of its guidance “Children Front and Centre: Fundamentals for a Child-Oriented Approach to Data Processing” (“the Fundamentals”). The Fundamentals set out principles and recommendations for companies to follow when processing children’s data in Ireland. The Fundamentals seek…

Read More

The UK’s Newly Assertive FCA pushes Google to Check Fintech Companies’ Drive Into Europe

The UK’s Newly Assertive FCA pushes Google to Check Fintech Companies’ Drive Into Europe Subject to mounting pressure from UK lawmakers and regulators, in June 2021 Google announced a new policy that could limit the ability of US fintech companies to advertise in the UK – a key market for…

Read More

EDPB Defines a "Transfer" Under the GDPR

On 18 November 2021 the European Data Protection Board (“EDPB”) released its Guidelines 05/2021 on the Interplay between the application of Article 3 and the provisions on international transfers as per Chapter V of the GDPR (“Guidelines”) for public consultation.  The Guidelines clarify one of the most vexing issues in…

Read More

Europe Opts for Pragmatism with new SCCs and ICO Opens Consultations on UK SCC — What Companies Need to do Next

The dust has settled on the new EU standard contractual clauses for cross-border data transfers (“New SCCs”), but confusion still reigns on how the New SCCs cover data transfers and what companies need to do to take advantage of them and comply with regulatory implementation guidance, including in relation to…

Read More

UK ICO Confirms Transfers Of Data To SEC In The Public Interest

The UK Information Commissioner’s Office (“ICO”) has published a letter sent to the U.S. Securities and Exchange Commission. The ICO confirms that it is possible for SEC regulated UK firms to transfer personal data to the U.S. where the transfer is necessary for important reasons of public interest (the derogation in Article…

Read More

EDPB Clarifies Scientific Research GDPR Compliance, But Harmonisation Across Europe Remains Elusive

Earlier this year, the European Data Protection Board (“EDPB”) issued additional guidance on the application of the General Data Protection Regulation (“GDPR”) in the area of scientific health research. In Key Takeaways from the Guidance, The EDPB: Confirmed that the informed consent that individuals must provide under ethical standards to participate in…

Read More