Data Notes

The not so mega ‘mega fine’: ICO fines British Airways £20 million for its 2018 data breach

German Regulator Publishes Schrems II ‘Checklist’

SCHREMS II FALLOUT CONTINUES: NEW SCCS AND EDPB GUIDANCE COMING SOON

Schrems II: Reaction from European Regulators and Technology Companies Suggest an Uncomfortable Road Ahead for Transatlantic Data Transfers

EDPB Adopts Final Guidelines on GDPR Extra-territoriality

Happy GDPR-versary! Herbert Smith Freehills reflections on a year of GDPR regulation

Brexit and its impact on international transfers of personal data

Miriam Everett, Head of the Data Protection and Privacy group at Herbert Smith Freehills, has been working with the LexisNexis Data Protection …

Japan Adequacy Decision Adopted by the EU Commission

On 23 January 2019, the EU Commission adopted a decision confirming the adequacy of Japanese data protection laws for the purpose of transferring …

UK Government note clarifies "no deal" and data protection

The UK Government has published a "no deal" note to clarify how data protection law will work in the event that the UK leaves the EU without a deal. The …

EDPB finally issues draft guidelines on GDPR extra-territoriality

On 23 November 2018, the European Data Protection Board (the "EDPB") published its draft guidelines on Article 3 of the GDPR, being the provision that …

General Data Protection Regulation: first enforcement notice shows extra-territorial reach

The UK data protection regulator, the Information Commissioner’s Office (ICO), has issued its first enforcement notice under the EU’s new strict data …

Data protection if there's no Brexit deal

On 13 September 2018, the UK Government published a series of technical notes setting out the implications in various sectors and areas of a 'no deal' …