Debevoise Data Blog – Page 49

National Association of Attorneys General’s 2023 Consumer Protection Spring Conference

By: Courtney M. Dankworth, Avi Gesser, Paul D. Rubin, Jehan A. Patterson, Samuel J. Allaman and Melissa Muse June 12, 2023

On May 10−12, 2023, the National Association of Attorneys General (the “NAAG”) held its Spring 2023 Consumer Protection Conference to discuss the intersection of consumer protection issues and technology. During the portion of the conference that was open to the public, panels featuring federal and state regulators, private legal practitioners, and industry experts discussed potential legal liabilities and consumer risks…

European Data Protection Roundup – May 2023

By: Robert Maddox, Friedrich Popp, Fanny Gauthier, Martha Hirst, Aisling Cowell, Tristan Lockwood, Maria Epishkina and Alexandre Pous June 8, 2023

Key takeaways this May include: Facial recognition: Businesses, including those with no presence in the EEA, face continued challenges in establishing GDPR-compliant facial recognition technology after the French CNIL fined Clearview AI an additional € 5.2 million for failing to comply with its previous order against the company. GDPR individuals’ rights: Businesses should look to two new CJEU decisions on…

Erez Liebermann to Speak at FT Cyber Resilience Summit, June 22, 2023, Washington D.C.

By: Erez Liebermann June 1, 2023

On Thursday, June 22 at 10:25 AM (EDT), Erez Liebermann will speak on a panel entitled Policies and priorities to strengthen resilience at the Financial Times Cyber Resilience Summit: Technology policies, legislative frameworks and digital diplomacy are at the forefront of efforts to build cyber resilience. Government agencies and regulatory bodies are under constant pressure to refine priorities and initiatives,…

Article: 8 Hallmarks of effective Data Protection by Design and Default

By: Robert Maddox and Stephanie Thomas June 1, 2023

Privacy and Data Protection, a leading UK journal on practical data protection compliance issues, has featured in its latest edition an article by Robert Maddox and Stephanie Thomas on the hallmarks of effective data protection by design and default under the EU and UK GDPR. The article encourages organisations to consider incorporating principles of data protection by design and default…

Lessons from The Financial Stability Board’s Report on Cyber Incident Reporting

By: Luke Dembosky, Avi Gesser, Erez Liebermann, Kristin Snyder, Charu A. Chandrasekhar and Tristan Lockwood May 31, 2023

Big businesses, especially those with a global footprint and operating in regulated sectors, are increasingly confronted with new and diverging cyber incident reporting requirements. A single incident—even a relatively minor one—may require notification to dozens of data protection, cyber, law enforcement, and sectoral regulators around the world, in addition to insurers, customers, and counterparties. Not only do many regulatory reporting…