The European Data Protection Board (“EDPB”) and European Data Protection Supervisor (“EDPS”) adopted joint opinions on the draft Standard Contractual Clauses (“SCCs”) released by the European Commission in November 2020. The guidance addresses both international transfers (“International SCCs”) and controller-processor relationships within the EEA (“EEA Controller-Processor SCCs”). International SCCs The International SCCs will replace the existing SCCs companies have used to transfer personal data from within the EEA to organizations in non-EEA countries not deemed to provide an adequate level of protection for data of EU residents. In the wake of the invalidation of the EU-U.S. Privacy Shield in the Court of Justice of the European Union’s (the “CJEU’s”) Schrems II judgment, most organizations…
United Arab Emirates to introduce new data protection law, a step towards a UAE data protection regime that would provide adequate level protection for the purposes of data transfers from the EU and other regulated jurisdictions.
Pres. Biden to nominate to FTC Alvaro Bedoya, Georgetown Law professor and founding director of GU’s Center on Privacy & Technology where his work has focused on surveillance technologies including facial recognition.
.@DPCIreland to fine #WhatsApp Ireland Ltd €225 million for failure to meet the #transparency requirements of #GDPR Articles 12-14. This fine increases the €30-50 million proposed in the DPC’s December draft decision. https://edpb.europa.eu/system/files/2021-09/dpc_final_decision_redacted_for_issue_to_edpb_01-09-21_en.pdf