Header graphic for print

HL Chronicle of Data Protection

Privacy & Information Security News & Trends

Posted in News & Events

Webinar Invitation — Operationalizing the California Consumer Privacy Act

Please join the Hogan Lovells Privacy and Cybersecurity team and LexisNexis on June 19 for the webinar, Operationalizing the California Consumer Privacy Act – Key Decisions and Compliance Strategies.

The California Consumer Privacy Act of 2018 (CCPA) has been described as groundbreaking, watershed, and unprecedented since its passage on June 28, 2018. As the first broad-based state law on consumers’ personal data in the U.S., this important legislation does indeed pose significant compliance challenges for organizations that engage with residents of California, the world’s fifth largest economy. In this presentation, Hogan Lovells partners Mark Brennan and Bret Cohen will explore the impact of the CCPA including: Continue Reading

Posted in International/EU Privacy

Transfers on Trial: Privacy Shield and Standard Contractual Clauses go before the European Courts

July is set to be a busy month in Luxembourg. On the first and second of the month, the General Court of the European Union (which is part of the Court of Justice of the European Union (CJEU)) will hear a case against the EU-U.S. Privacy Shield brought by three French NGOs, La Quadrature du Net, French Data Network and Fédération FDN. A week later, on 9 July, the CJEU will hear arguments in Schrems II, in which the Irish High Court has referred 11 questions relating to whether the European Commission’s Standard Contractual Clauses (SCCs) provide an adequate level of protection for personal data which is transferred to the US. Continue Reading

Posted in International/EU Privacy

China’s First Data Protection Measures Lifting Its Veils

On May 28, 2019, the Cyberspace Administration of China (“CAC“) released the draft Measures on the Administration of Data Security (“Data Security Measures” see our in-house English translation here) for public consultation. The Data Security Measures will be a great leap forward in China’s current data protection landscape, which mainly consists of scattered provisions contained in various pieces of legislation and standards, such as the Cyber Security Law, the E-Commerce Law, the Consumer Rights Protection Law as well as the Personal Information Security Specification (“Specification“), the most comprehensive yet non-binding national standard with respect to data protection. The Data Security Measures, once officially promulgated, will be the first binding administrative regulation in China to specifically and systematically set out explicit protection for personal data and important data collected and processed through the use of cyber technologies, following the effectiveness of the Cyber Security Law in 2017 (see our briefing here). Continue Reading

Posted in Consumer Privacy

New Nevada Privacy Law With “Sale” Opt-Out Right Will Take Effect Before the CCPA

Nevada has a new privacy law. On May 29, Nevada Governor Steve Sisolak signed Senate Bill 220 (SB-220) into law, making Nevada the first state to join California in granting consumers the right to opt out of the sale of their personal information. The act, which amends an existing online privacy notice law, is significantly narrower than the California Consumer Privacy Act (CCPA). It applies only to online activities, defines “consumer” and “sale” in a much more limited manner than the CCPA, and includes broad exceptions for financial institutions subject to the Gramm-Leach-Bliley Act, entities subject to the Health Insurance Portability and Accountability Act, and vehicle manufacturers and vehicle service and repair entities that collect covered information from vehicles through connected or subscription services. Continue Reading

Posted in News & Events

Privacy and Cybersecurity June 2019 Events

Please join us for our June events.

June 4
Privacy Breakfast
Paul Otto and Tim Tobin are presenting at the Hogan Lovells Munich office’s privacy breakfast, “EU General Data Protection Regulation,” on privacy topics such as the California Consumer Privacy Act (CCPA), cybersecurity and data breaches, and sector-specific issues found in the life sciences and health care, automotive, and financial sectors. Click here to register.
Location: Munich, Germany

 

June 25-26
National Association of College and University Attorneys
Bret Cohen and Stephanie Gold are presenting at the annual conference of the National Association of College and University Attorneys on the panel, “Focus on GDPR and Other Privacy Laws: How to Develop and Implement a Practical Approach to Compliance.” Bret is also presenting on the panel, “Navigating GDPR Compliance for Research.”
Location: Denver, Colorado

 

June 26
Cyberthreats in the Internet of Things
Nathan SalminenAllison Holt, and Paul Otto will discuss unique litigation and technical risks related to the Internet of Things (IoT). The discussion will include some of the technical aspects of hacking threats to connected devices, legal implications of such threats, and risk management strategies. Registration will be available shortly.
Location: webinar

 

Posted in Consumer Privacy, International/EU Privacy

GDPR – The Year in Review

Following the one-year anniversary of the coming into effect of the GDPR, Hogan Lovells’ Privacy and Cybersecurity practice has prepared a compilation of key GDPR-related developments of the past 12 months. The compilation covers regulatory guidance, enforcement actions, court proceedings, and various reports and materials. Continue Reading

Posted in Consumer Privacy

NIST Continues to Make Progress on its Privacy Framework

While eyes focus on the privacy legislative debate now underway in the United States, the development of a new Privacy Framework by the influential National Institute of Standards and Technology (“NIST”) is also worthy of attention. On May 13-14, 2019, NIST hosted its second workshop on the recently released discussion draft of its “Privacy Framework: An Enterprise Risk Management Tool” (“Privacy Framework”). The workshop brought together stakeholders to provide feedback on the draft and suggest areas for revision. NIST had previously hosted a workshop in October 2018 to kick off the development of the Privacy Framework and had presented its thinking at other fora such as the Brookings Institution. Continue Reading

Posted in News & Events

Amsterdam Seminar: Protect Your Data!

Joke Bodewits

Ruud van der Velden

 

 

 

 

 

On 23 May 2019, Hogan Lovells’ Amsterdam office will host the in-person seminar “Bescherm je data!” (“Protect Your Data!”). Joke Bodewits and Ruud van der Velden will discuss recent EU legislation, and focus on “lessons learned” for companies with respect to privacy, cybersecurity, and trade secrets.

Continue Reading

Posted in Cybersecurity & Data Breaches

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. The entering into effect of multiple state laws in this area may present challenges for insurance providers operating in states where such cybersecurity requirements are provided for. Continue Reading

Posted in News & Events

Hogan Lovells Privacy and Cybersecurity Practice Ranked as a Top-Tier Practice by Chambers USA for 8th Consecutive Year

Chambers USA recently released its 2019 rankings and we are pleased to announce that Hogan Lovells’ Privacy and Cybersecurity (PaC) practice once again received Band 1 recognition by Chambers USA. Chambers noted that PaC “[r]emains one of the country’s preeminent privacy and data security practices. A highly talented roster of attorneys advising clients on major data breaches and complex policy matters across a multitude of industries, including retail, automotive and media.” Continue Reading