Header graphic for print

HL Chronicle of Data Protection

Privacy & Information Security News & Trends

Posted in Consumer Privacy

EDPB’s New Guidelines – Clinical Trials in the EU and COVID-19

We currently live in a world where the rapid spread of COVID-19 has provoked the urge to initiate the search for an effective vaccine or medicines to fight against it. In this context, the EDPB has recently published its Guidelines 03/2020 on the processing of data concerning health for the purpose of scientific research in the context of the COVID-19 outbreak (Guidelines) with the clear objective of ensuring that patients’ and trial subjects’ privacy is not disregarded while clinical trials are carried out. Continue Reading

Posted in News & Events

Hogan Lovells Privacy and Cybersecurity Practice Ranked as a Top-Tier Practice by Chambers USA for 9th Consecutive Year

The Chambers USA 2020 lawyer rankings have been released for Privacy & Data Security. Hogan Lovells’ Privacy and Cybersecurity practice has once again received Band 1 recognition in the area of Privacy & Data Security. This team has retained its Band 1 ranking for nine consecutive years. The team also has been recognized at the spotlight table for Privacy & Data Security: Healthcare. Continue Reading

Posted in International/EU Privacy

EDPB Weighs-In on Tools for Fighting the COVID-19 Health Crisis; HL Team Updates Summary of DPA Views

Hogan Lovells’ global Privacy and Cybersecurity team maintains a tracker of guidance from 30+ European data protection authorities related to data processing in the fight against coronavirus. Continue Reading

Posted in News & Events

Now Available — AdTech and Privacy: Managing Risk in a Complex and Evolving Digital Economy (Webinar Materials)

On Wednesday April 15, Hogan Lovells and Ankura hosted a webinar  about the impact of the GDPR and CCPA on cookies and similar AdTech tracking technologies. James Denvil from Hogan Lovells’ Privacy and Cybersecurity practice by was joined senior directors from Ankura to share best practices and perspectives. We have made the webinar available on demand here and the slides can be downloaded here. Continue Reading

Posted in News & Events

Now Available: U.S. Consumer Financial Issues during COVID-19 and Beyond (Webinar Materials)

Mark Brennan

Allison Schoenthal

Tim Tobin

Mike Turrill

Allison Funk

Ashley Hutto-Schultz

Roshni Patel

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

During this webinar, Hogan Lovells attorneys discussed the latest developments on consumer financial issues and how you can steer your organization in today’s rapidly changing COVID-19 environment and beyond. The webinar can be viewed on demand here, and the slides can be downloaded here. Continue Reading

Posted in International/EU Privacy

CNIL’s New Guidelines on HR Processing

The French Data Protection Authority (CNIL) has recently released new guidelines (French only) regarding human resources processing operations.

When the GDPR became effective, the CNIL’s previous set of HR Data guidelines became out of date as they did not incorporate the new law’s requirements (e.g. obligations relating to records of processing activities and Data Protection Impact Assessments). These new guidelines replace several older HR guidelines issued by the CNIL, including and in particular the well-known Simplified Norm NS-46 and the Notification Exemption for payroll, both of which are no longer applicable. Continue Reading

Posted in Consumer Privacy

Second Circuit Panel Sides With Ninth Circuit on What Qualifies as an Autodialer

A recent decision by the U.S. Court of Appeals for the Second Circuit in Duran v. La Boom Disco, Inc. has interrupted the emerging consensus around the definition of “autodialer” in the Telephone Consumer Protection Act (TCPA). On April 7, 2020, a Second Circuit panel joined a Ninth Circuit panel in adopting a broad reading of the statutory definition of “automatic telephone dialing system” (ATDS), commonly referred to as an autodialer. The Duran decision also rejected the reasoning in opinions issued by panels in the Seventh and Eleventh Circuits earlier this year, which deepens the split between the Courts of Appeals and increases the pressure on the Federal Communications Commission, Congress, and even the U.S. Supreme Court to provide clarity on what constitutes an autodialer under the TCPA. Continue Reading

Posted in Cybersecurity & Data Breaches

New York Department of Financial Services Released New Guidance Addressing COVID-19 Related Cybersecurity Risks

Continuing its focus on COVID-19’s impact on its regulated entities, on April 13, the New York Department of Financial Services (NYDFS) released new cybersecurity guidance in response to the COVID-19 pandemic. The guidance highlights the heightened cybersecurity risks from the current crisis and NYDFS’ expectations that its regulated entities address those risks as large portions of their workforce have shifted to remote working arrangements. Continue Reading

Posted in International/EU Privacy

Making COVID-19 Apps Data Protection Compliant

The role of COVID-19 contact tracing apps in the exit strategy of the current lockdown that is gripping much of the world is increasingly becoming a focus of attention. While that role is being hotly debated, it is very likely that those apps in combination with other measures will be deployed across many countries. Until now and despite the calls by influential bodies such as the European Data Protection Supervisor for a coordinated approach to the development of single COVID-19 mobile app involving the World Health Organization, different countries have adopted their own strategies. Continue Reading

Posted in International/EU Privacy

Dutch DPA Imposed a Controversial Fine on the Royal Dutch Tennis Association

The Dutch Data Protection Authority (Dutch DPA) recently imposed a fine of EUR 525,000 on the Royal Dutch Tennis Association (KNLTB) for sharing the personal data of its members with two of its sponsors in June 2018 on the basis of its own commercial interests. Continue Reading