CJEU

CJEU Finds That Companies Must Provide Individuals with the Identity of Data Recipients When Responding to Data Access Requests

By Cédric Burton, Nikolaos Theodorakis & Michael Kern on January 27, 2023

On January 12, 2023, the Court of Justice of the European Union (CJEU) ruled¹ that the data subject’s right of access to personal data² requires controllers to provide the data subject with the…

CJEU Confirms Exceptions to One-Stop-Shop Mechanism Under the GDPR

By Jan Dhont, Nikolaos Theodorakis & Joanna Jużak on August 17, 2021

Posted in European Union, Privacy

On June 15, 2021, the Court of Justice of the European Union (CJEU) confirmed^[1] that non-leading supervisory authorities (SAs) can initiate national judicial proceedings concerning cross-border data processing in two circumstances:^[2] i) where there is an “urgent need” to act, or ii) if the case has a local impact.
Continue Reading CJEU Confirms Exceptions to One-Stop-Shop Mechanism Under the GDPR

Court of Justice Dismisses Privacy Class Action Against Facebook but Allows Max Schrems to Sue in Austria

By Cédric Burton, Laura De Boel, Sarah Cadiot & Bastiaan Suurmond on February 1, 2018

Posted in European Union, Privacy

In yet another round of Schrems versus Facebook, on January 25, 2018, the Court of Justice of the European Union (CJEU) ruled that privacy activist Max Schrems is a consumer with regard to his Facebook…
Continue Reading Court of Justice Dismisses Privacy Class Action Against Facebook but Allows Max Schrems to Sue in Austria

A Look Ahead at Privacy and Data Security in 2018

By Edward Holman, Beth George & Bastiaan Suurmond on January 24, 2018

Posted in Cybersecurity, European Union, Privacy, Regulatory

2018 promises to be an interesting year in the world of privacy and cybersecurity. In this article, we highlight a few of the most notable developments we expect this year, including major developments in Europe, changes and pending cases at the Federal Trade Commission (FTC), notable U.S. Supreme Court cases scheduled to be decided this year, and some areas of legislation that actually may become law in the U.S.

Big Changes Taking Effect in the European Union

One of the biggest areas where everyone in the privacy field will be looking in 2018 is the European Union (EU). On the legislative front, the General Data Protection Regulation (GDPR) will enter into force on May 25, 2018; the proposed e-Privacy Regulation is scheduled to be adopted this year; and the EU parliament will issue a report on the proposed Regulation on Non-Personal Data. Additionally, the Court of Justice of the EU (CJEU) will rule on several important data protection cases, including on third-party tracking, the right to be forgotten, and the possibility of class actions.Continue Reading A Look Ahead at Privacy and Data Security in 2018

Uncertainty Increases Around EU-U.S. Data Flows

By Cédric Burton, Sarah Cadiot, Sára Hoffman & Laura De Boel on May 26, 2016

Posted in European Union, Regulatory

Two recent developments have significantly increased the already uncertain legal landscape surrounding transatlantic data flows.

Earlier today, the EU Parliament voted out a resolution calling on the European Commission (EU Commission) to further negotiate the…
Continue Reading Uncertainty Increases Around EU-U.S. Data Flows

The Data Advisor

CJEU

CJEU Finds That Companies Must Provide Individuals with the Identity of Data Recipients When Responding to Data Access Requests

Uncertainty Increases Around EU-U.S. Data Flows

ABOUT OUR DATA, PRIVACY, AND CYBERSECURITY PRACTICE