New Implementation Rules for PRC Data Protection

China has recently published the Regulations on Network Data Security Management, which will enter into force on January 1, 2025, refining the existing data protection requirements. In this article, we provide highlights of the notable requirements provided in the new ...Mehr lesen

Initial Legislative Developments for Artificial Intelligence in Turkiye

With the rapid expansion of the use of artificial intelligence (AI) and its integration into all areas of life, it has become essential to establish a legal framework that regulates the safe and ethical development, distribution and use of AI systems, considering the ...Mehr lesen

Knowing Your Data Related Rights: Romania's Schengen Full Access

After more than a decade of anticipation, Romania has officially become a full member of the Schengen Area. As of 1 January 2025, land border checks with Romania and Bulgaria are a thing of the past, building on the earlier removal of air and sea border controls on 31 ...Mehr lesen

UK Data Reform: Striking the Balance Between Adequacy and Innovation

The UK Government has brought forward a new Bill that proposes several changes to UK data protection law, alongside other provisions intended to broaden use and commercialisation of data for economic and societal benefit. The Bill, introduced into the House of Lords on ...Mehr lesen

Polish Supreme Administrative Court Upholds Employers' Right to Retain Rejected Applicants'...

The Polish Supreme Administrative Court issued a landmark ruling on February 20, 2024 case no III OSK 2700/22, affirming that employers can lawfully retain personal data of rejected job applicants based on their legitimate interest in defending against potential ...Mehr lesen

New members have joined the INPLP: Daniel Stranius and Otto Lindholm (United States)

...Mehr lesen

The suppression of INAI as the personal data protection authority in Mexico.

Mexico will face multiple challenges with the suppresion of INAI as its data protection authority; a new authority will take its place and its independence and specialization has been questioned. What happened and what comes next? ...Mehr lesen

Protecting Attorney Client Privilege after a Cyberattack

Maximizing the Protection of the Attorney-Client Privilege and Work-Product Doctrine in the Wake of a Cyberattack. ...Mehr lesen

Data Protection and Conflict of Interest

The role of the Data Protection Officer (DPO), or Encarregado de Dados, is critical to fostering a culture of privacy and data protection in organisations. Given their unique position, DPOs must have independence, autonomy, and direct access to senior management to ...Mehr lesen

Unauthorized Processing of Personal Data in Connection with a Traffic Accident

The Slovak Office for Personal Data Protection (hereinafter referred to as the “Office”) recently imposed a fine of EUR 7,500 on Company CC for repeated and serious violations of data protection rules under the GDPR. Company CC, which focuses on compensating traffic ...Mehr lesen