WhatsApp will not share user data with Facebook until it complies with GDPR
Facebook, its popular messaging app WhatsApp, and the UK’s Information Commissioner’s Office (ICO) have reached a truce in their long-running […]
data transfer
WhatsApp sharing user data with Facebook would be illegal, rules ICO
The UK’s data protection watchdog has concluded that WhatsApp’s sharing of user data with its parent company Facebook would have […]
A deep dive into the Schrems II case
The so-called Schrems II case for possible referral to the Court of Justice of the European Union makes for fascinating […]
Can Theresa May get the data protection deal she wants?
Twice now — first at a speech focused on security, in Munich, then this past Friday in her so-called “Five […]
Working party publishes draft of GDPR guidelines on data export
On February 12, 2018, the Article 29 Working Party (WP29) published guidance regarding Article 49 of the General Data Protection […]
Is a Service Provider’s Privacy Shield Certification Good Enough?
The GDPR imposes two requirements when a company (referred to in the GDPR as a “data controller”) uses a service […]
Are the Standard Contractual Clauses Enough?
The European Union’s General Data Protection Regulation (“GDPR”) is arguably the most comprehensive – and complex – data privacy regulation […]
Guidelines on Processing of Personal Data in Third Countries Under GDPR
Germany’s Federal Association for Information Technology, Telecommunications and New Media published its guidance on data transfers to third countries under […]
PNR Agreements between Fundamental Rights and National Security
On July 26, 2017, the European Court of Justice (ECJ) issued Opinion 1/15 (the Opinion of the Advocate General on […]
Standard contractual clauses challenged by GDPR and scrutinized by CJEU
The EU Standard contractual clauses have been the most frequently used means for data transfers outside the EU. Under the […]
EU moves to remove barriers to data flows in trade deals
The European Union will seek to break down barriers to the flow of data between businesses in future trade deals, […]
Luxembourg DPA approves the BCR of PayPal
The PayPal Group has adopted Binding Corporate Rules, which define its global data protection policy with regard to international transfers […]