Header graphic for print

HL Chronicle of Data Protection

Privacy & Information Security News & Trends

Posted in Consumer Privacy

Hogan Lovells Launches Global Privacy Guide to Support Businesses with COVID-19 Exit Plans

As the world focuses its efforts on the right strategy to beat the coronavirus and make normal life safe again, businesses are devising and implementing a variety of measures to deal with the COVID-19 crisis which rely on the collection, use and dissemination of personal data.

To assist with this challenge and ensure that privacy and cybersecurity aspects are appropriately addressed, Hogan Lovells has released today a detailed guide providing legal analysis and practical recommendations.  The guide has been prepared by a team spanning its 45 offices around the world and led by the firm’s Global Regulatory practice. Continue Reading

Posted in International/EU Privacy

New Data Protection-Friendly eCommercial Model Clinical Trial Agreements Now Available

Updated versions of the UK model Clinical Trial Agreement (mCTA) and the Clinical Research Organisation model Clinical Trial Agreement (CRO-mCTA) have been published. Given the increasing importance of safe but swift clinical trials in the time of coronavirus, this post outlines the main changes introduced from a data protection perspective and what they mean for contracting parties. Continue Reading

Posted in Employment Privacy

Return to Workplace U.S. Memorandum for Employers

As companies in the United States work to re-open physical workplaces, they must navigate an array of federal, state, and local laws that relate to employees, including requirements to keep workplaces safe while protecting employee privacy.

Hogan Lovells partner Harriet Pearson, whose in-house corporate experience prior to joining the firm included human resources leadership roles, contributed to a memorandum published on May 13 by the HR Policy Association, the lead public policy organization representing chief human resources officers of the largest employers in the United States. Continue Reading

Posted in Consumer Privacy

CCPA Regulations Still Not Final as Enforcement Deadline Approaches; CPRA Appears to Move Forward

Businesses spent the latter months of 2019 working hard to prepare for the January 1, 2020 implementation of the California Consumer Privacy Act (CCPA). Months later, those businesses still are uncertain of their full range of potential compliance obligations because the California Attorney General’s (CAG) CCPA implementing regulations are still not final. As businesses refine their CCPA compliance programs, they should also be aware that privacy rules in California could again change before the end of this year if the California Privacy Rights Act (CPRA) ballot initiative is approved by voters.

Both the CAG draft regulations and the CPRA are subject to complicated administrative processes that could affect their adoption and implementation, as described below. Continue Reading

Posted in Consumer Privacy

Now Available: Biometric Data — Power, Promise and Privacy Challenges (Panel Discussion Materials)

On February 26, Hogan Lovells Partner Bret Cohen participated in a panel discussion about the privacy and security concerns with biometric data at the RSA Conference, along with Alexandra Ross, Director and Global Privacy and Data Security Counsel at Autodesk, and Natalia Belaya, Director of Security Assurance and Compliance at Autodesk. With the use and collection of biometric data becoming more ubiquitous in our digital society, this discussion dove into the privacy and cybersecurity legal landscape surrounding biometric data and explored risks and practical approaches for implementing this technology consistent with laws, regulations, and best practices in the U.S., Europe, and around the world.

The presentation along with the slideshow can be viewed here.

Posted in International/EU Privacy

Brazil Update: Executive Order Increases Chances of LGPD Delay Until 2021

On April 29, The Brazilian Federal Government issued an executive order, Provisional Measure (PM No. 959; Portuguese only), which would postpone the implementation of LGPD until May 3, 2021 if approved by Brazil’s legislature in the next couple of weeks. This type of measure is usually subject to a 120-day window in which they must be approved by Brazil’s Congress. However, due to special measures implemented in response to the current COVID-19 pandemic, Brazil’s House of Representatives and Senate must ratify this Provisional Measure within the next 16 working days for it to take effect. This means that Brazil’s Congress has until May 15, 2020 to consider the Provisional Measure. Continue Reading

Posted in Consumer Privacy

EDPB’s New Guidelines – Clinical Trials in the EU and COVID-19

We currently live in a world where the rapid spread of COVID-19 has provoked the urge to initiate the search for an effective vaccine or medicines to fight against it. In this context, the EDPB has recently published its Guidelines 03/2020 on the processing of data concerning health for the purpose of scientific research in the context of the COVID-19 outbreak (Guidelines) with the clear objective of ensuring that patients’ and trial subjects’ privacy is not disregarded while clinical trials are carried out. Continue Reading

Posted in News & Events

Hogan Lovells Privacy and Cybersecurity Practice Ranked as a Top-Tier Practice by Chambers USA for 9th Consecutive Year

The Chambers USA 2020 lawyer rankings have been released for Privacy & Data Security. Hogan Lovells’ Privacy and Cybersecurity practice has once again received Band 1 recognition in the area of Privacy & Data Security. This team has retained its Band 1 ranking for nine consecutive years. The team also has been recognized at the spotlight table for Privacy & Data Security: Healthcare. Continue Reading

Posted in International/EU Privacy

EDPB Weighs-In on Tools for Fighting the COVID-19 Health Crisis; HL Team Updates Summary of DPA Views

Hogan Lovells’ global Privacy and Cybersecurity team maintains a tracker of guidance from 30+ European data protection authorities related to data processing in the fight against coronavirus. Continue Reading

Posted in News & Events

Now Available — AdTech and Privacy: Managing Risk in a Complex and Evolving Digital Economy (Webinar Materials)

On Wednesday April 15, Hogan Lovells and Ankura hosted a webinar  about the impact of the GDPR and CCPA on cookies and similar AdTech tracking technologies. James Denvil from Hogan Lovells’ Privacy and Cybersecurity practice by was joined senior directors from Ankura to share best practices and perspectives. We have made the webinar available on demand here and the slides can be downloaded here. Continue Reading