Technology Law Source

Tag Archives: GDPR

The GDPR: A year in review

On May 25, 2018, the General Data Protection Regulation (GDPR) became effective across the European Union. The GDPR is a regulation designed to give EU residents control over their personal data and simplify the regulatory framework for international organizations doing business in the EU. In its infancy, it was not entirely clear how the GDPR would be enforced. Now, one year later, the regulation is beginning to show some teeth.

For individual consumers, the GDPR likely calls to mind last year’s flurry of privacy policy email updates from companies scrambling to comply, or perhaps the constant stream of consent pop-ups and cookie banners Europeans navigate on a daily basis when browsing the web. For U.S. companies that do business abroad, however, the GDPR represents a constant struggle to refine their data protection policies, as strict compliance remains an elusive target.

Although many data privacy lawyers disagree on whether strict compliance with the GDPR is even possible, recent enforcement measures have shed some light on how the regulation may be enforced in the future. A review of last year’s enforcement actions should help companies avoid unnecessary penalties and inform them what to expect going forward.…

Riding the waves of U.S. data privacy legislation

privacy legislationMuch has been written about the European General Data Protection Regulation (GDPR). Commentators have touted the EU’s supposedly superior data protection regimen. But don’t lose focus on what is happening within the U.S. and the implications for U.S. companies that may not be focused on GDPR requirements. Even companies that are GDPR focused may not meet the upcoming requirements. At least three significant privacy legislation fronts in the U.S. bear mentioning:…

LexBlog