Martha Hirst – Debevoise Data Blog

Privacy

California’s Age-Appropriate Design Code Act Expands Businesses’ Privacy Obligations Regarding Minors

By: Avi Gesser, Johanna Skrzypczyk, Michael R. Roberts, Michael Bloom, Martha Hirst and Alessandra G. Masciandaro September 19, 2022

On September 15, 2022, California Governor Gavin Newsom signed into law the bipartisan AB 2273, known as the California Age-Appropriate Design Code Act (“California Design Code”). The California Design Code…

Data Transfers

UK Data Protection and Digital Information Bill: Key Proposed Changes

By: Avi Gesser, Erez Liebermann, Robert Maddox and Martha Hirst August 25, 2022

On 18 July 2022, the UK government published the Data Protection and Digital Information Bill (the “Bill”), which proposes reforms to the UK’s data protection and e-privacy landscape in-line with…

Automated Decision Making

China Publishes New Draft Regulations on Data Security

By: Luke Dembosky, Avi Gesser, Mark Johnson, Philip Rohlik, Ralph Sellar, Johanna Skrzypczyk, Martha Hirst, Mengyi Xu and Eva Yue Niu December 9, 2021

On November 14, 2021, the Cyberspace Administration of China (“CAC”) released the draft “Network Data Security Management Regulations” (the “Draft Regulations”) for public comment. The Draft Regulations have major implications…

Announcement

Debevoise Authors 2022 Edition of the PLI Privacy Law Answer Book

By: Luke Dembosky, Jeremy Feigelson, Jyotin Hamid, Satish Kini, Henry Lebowitz, Maura Kathleen Monaghan, David A. O'Neil, Jim Pastore, David Sarratt, Jeffrey P. Cunard, Christopher Garrett, Kim Le, Tricia Bozyk Sherno, Johanna Skrzypczyk, Javier Alvarez-Oviedo, HJ Brehmer, Frank Colleluori, Josie Dikkers, Martha Hirst and Alexandra Mogul December 1, 2021

The Data Strategy and Security team at Debevoise & Plimpton LLP has authored the 2022 edition of the Privacy Law Answer Book (Practising Law Institute, 2021), a user-friendly guide to…

Roundup

European Data Protection Roundup – October

By: Luke Dembosky, Avi Gesser, Christopher Garrett, Friedrich Popp, Robert Maddox, Fanny Gauthier, Martha Hirst, Diana Moise and Jesse Hope November 1, 2021

European Data Protection Roundup – October 2021 Key takeaways this October include: Liability for excessive security footage: The need to ensure security systems are configured appropriately to minimise the scope…

Roundup

European Data Protection Roundup – September

By: Luke Dembosky, Avi Gesser, Christopher Garrett, Friedrich Popp, Robert Maddox, Fanny Gauthier, Martha Hirst and Diana Moise October 12, 2021

European Data Protection Roundup – September 2021 Key takeaways this September include: Transparency: The importance of providing individuals sufficient information to enable them to understand how their personal data is…

CJEU

European Data Protection Roundup – August

By: Jeremy Feigelson, Avi Gesser, Christopher Garrett, Friedrich Popp, Robert Maddox, Fanny Gauthier and Martha Hirst September 9, 2021

Key takeaways from developments this August include: Indications of what the UK’s post-Brexit data transfer arrangements might look like – companies transferring data from the UK will want to follow…

GDPR

European Data Protection Roundup – July

By: Luke Dembosky, Christopher Garrett, Friedrich Popp, Robert Maddox, Fanny Gauthier, Martha Hirst and Christina Heil August 5, 2021

European Data Protection Roundup – July Key takeaways from developments this July include: a blockbuster €746 million fine against Amazon – the largest ever GDPR penalty – showing the Regulation’s…

GDPR

European Data Protection Roundup – June 2021

By: Jeremy Feigelson, Christopher Garrett, Friedrich Popp, Robert Maddox, Fanny Gauthier and Martha Hirst July 20, 2021

The big news in June were the EU Standard Contractual Clauses for cross-border data transfers to non-EEA countries. There were also significant developments for companies engaging in employee surveillance, ad…

Data Transfers

The new EU SCCs & EDPB guidance on cross-border data transfers – five actions to take now

By: Jeremy Feigelson, Christopher Garrett, Friedrich Popp, Robert Maddox and Martha Hirst July 7, 2021

What’s happened? The European Commission has finalised its new standard contractual clauses (“SCCs”) for the transfer of personal data from EEA member states to the many “third countries” – most…