Privacy & data protection

EDPB
Privacy & data protection

On July 19th the European Data Protection Board (EDPB) met in Brussels to discuss cross border cooperation and consistency procedures.  

The Paypers Market Guide | time.lex
Privacy & data protection

On October 3rd 2017, the EU’s Article 29 Working Party (WP29) adopted its draft of ‘Guidelines on Personal data breach notification under Regulation 2016/679 [General Data Protection Regulation]’. Even though the document is still open for comments by stakeholders until November 28th, this article takes a preliminary look at the guidelines’ main takeaways and recalls upon data breach obligations arising from other instruments that payment -, communication- and internet service providers might also have to comply with.

The Paypers Market Guide | time.lex
Privacy & data protection

Ecommerce merchants, PSPs, fintech companies and financial institutions use big data technologies to improve customer intelligence, reduce risk, and meet regulatory objectives. For all companies doing business in Europe, including those based in the US or elsewhere outside the EU, it is crucial to align business operations with the General Data Protection Regulation (GDPR) that will come into force on 25 May 2018.

GDPR: where to start | time.lex
Privacy & data protection

The General Data Protection Regulation, which saw the light of day in spring last year, is set to apply from 25 May 2018. This means that businesses and organizations of all shapes and sizes have about 16 months to prepare themselves to comply with the new set of data protection rules. However, this preparation is easier said than done.

Guidelines EDPS | time.lex
Privacy & data protection

The European Data Protection Supervisor publishes guidelines on the processing of personal data through web services and by mobile applications.

Data Protection Officer | time.lex
Privacy & data protection

A Data Protection Officer is a position or role within an organisation. The Data Protection Officer oversees the processing of personal and privacy-sensitive information. When the General Data Protection Regulation (GDPR) comes into force in May 2018, many companies will be obliged to have appointed a Data Protection Officer.

Big Data's legal & compliance challenges | time.lex
Privacy & data protection

In light of some of these issues, European citizens have grown more conscious about the value and the protection of their personal data. The principal question is no longer: who is the owner of my personal data, but rather: who has actual access to my data? 

Cloud Computing and EU Financial Services | time.lex
Privacy & data protection

For some time now the EU’s financial services sector has sought clarification upon when and to what extent it may use public cloud computing.  Recent developments in the Netherlands and the UK may shed a little light on the issue.

WP29 Apps on Smart Devices | time.lex
Privacy & data protection

The publication of the Article 29 Data Protection Working Party’s opinion “Apps on Smart Devices” has provided clarification on the legal framework relating to the processing of personal data on different smart, especially mobile, devices. The opinion is a must-read comprehensive guide for all stakeholders in the apps “eco-system”.

BOYD smartphone | time.lex
Privacy & data protection

“Bring your own device” or “BYOD”, meaning that employees use their own laptop or smartphone and software for professional purposes, is an increasing trend. A lot of companies simply tolerate it or even ignore it and believe that it doesn’t concern them. This raises legal concerns. Who is liable for data breaches, viruses and breach of company’s confidential information? Is the company, as employer, allowed to enforce its IT-policies on those privately owned devices? What about the employee’s privacy?

Here is a checklist for a BYOD policy under European / Belgian law. Obviously it does not replace legal advice on the topics mentioned below. Do not hesitate to contact us with your questions.