Checklist for transferring personal data after Schrems II (Timelex)

Authors: Geert Somers and Liesa Boghaert (Timelex) Publication date: 25/11/2020 The CJEU ruling from 16 July 2020 in the Schrems II case created a lot of uncertainty for organisations transferring personal data outside the EEA. Not only was the EU-US Privacy Shield invalidated, the Court also imposed conditions for the use of standard contractual clauses (SCCs)

2020-12-02T01:56:36+00:00 2 décembre, 2020|Categories: Droit au respect de la vie privée|Tags: , , , , |

Les nouvelles lignes directrices et recommandations de la CNIL en matière de cookies et autres traceurs (Timelex)

Auteurs: Mahault Piéchaud Boura et Geert Somers (Timelex) Date de publication: 27/10/2020 Par ses délibérations du 17 Septembre 2020, la CNIL adopte de nouvelles lignes directrices en matière de cookies et autres traceurs, qu’elle complémente de recommandations visant à faciliter leur mise en œuvre, en particulier pour configurations propres aux environnements web et

2020-11-06T10:18:23+00:00 6 novembre, 2020|Categories: Droit au respect de la vie privée|Tags: , , |

EIOPA guidelines on outsourcing to cloud service providers (Timelex)

Author: Niels Vandezande (Timelex) Publication date: 03/09/2020 Earlier this year, the European Insurance and Occupational Pensions Authority (EIOPA) published the final version of its guidelines on outsourcing to cloud service providers. These guidelines were finalized after a public consultation procedure. While the guidelines of course apply specifically to insurance and reinsurance undertakings,

2020-09-11T09:30:43+00:00 11 septembre, 2020|Categories: Droit de l'informatique|Tags: |

5 things you need to know about the obligation to appoint a GDPR representative (Timelex)

Authors: Bernd Fiten and Geert Somers (Timelex) Publication date: 29/04/2020 Did you know the GDPR can be relevant to your company even if you do not have an establishment in the EU? In this blog you will read 5 things you need to know about the GDPR representative, which you

2020-05-01T07:08:19+00:00 1 mai, 2020|Categories: Droit au respect de la vie privée|Tags: , , |

Cybercriminals thrive on the COVID-19 pandemic (Timelex)

Authors: Zenzi De Graeve and Geert Somers (Timelex) Publication date: 07/04/2020 The outbreak of the COVID-19 pandemic changed our lives drastically as it impacts our health system, our economy and our daily interactions. But in addition to these persistent threats, the virus created an environment in which cybercriminals thrive. Cyberattacks

German real estate company fined 14.5 million EUR for storing all personal data of tenants indefinitely in an archive system (Timelex)

Author: Frederic Debusseré (Timelex) Publication date: 11/11/2019 On 30 October 2019, the Berlin Data Protection Authority (DPA) issued a big fine of 14.5 million EUR against Deutsche Wohnen SE, a German publicly listed real estate company with more than 160,000 apartments in its portfolio, for storing all personal data of its tenants

2019-12-02T10:40:04+00:00 23 novembre, 2019|Categories: Droit au respect de la vie privée|Tags: , , |

RGPD amende British Airways : société piratée doublement victime ? (Timelex)

Auteur: Bernd Fiten (Timelex) Date de publication: 10/07/2019 L’Autorité de contrôle britannique Information Commissioner's Office (ICO), a annoncé son intention d'infliger à British Airways une amende de 183 millions de livres sterling (équivalant à 243,47 millions d'euros). Ceci représente 1,5 % du chiffre d'affaires total de l'entreprise pour l'exercice 2017. Il s’agit d’une

Can a YouTuber qualify as “a journalist” under the GDPR? (Timelex)

Auteur: Jos Dumortier (Timelex) Publicatiedatum: 20/02/2019 Journalists are, to a certain extent, exempted from the application of the GDPR. The details are regulated by Member State law. Art. 85, 1. of the GDPR states that Member States shall by law reconcile the right to the protection of personal data pursuant to

2019-02-23T01:50:09+00:00 23 février, 2019|Categories: Droit au respect de la vie privée Privacy, IT & IP|Tags: , , |

10-step checklist for personal data breaches (Timelex)

Author: Zenzi De Graeve (Timelex) Publication date: 23/01/2019 As you may already know, the GDPR introduces an obligation on all organizations to report (under certain circumstances) personal data breaches to the supervisory authority within 72 hours after becoming aware of the breach. In addition, if the breach results in a high

How To Tackle Data Breaches Notifications Under GDPR (time.lex)

Author: Edwin Jacobs (time.lex) Date of publication: 19/12/2017 On October 3rd 2017, the EU’s Article 29 Working Party (WP29) adopted its draft of ‘Guidelines on Personal data breach notification under Regulation 2016/679 [General Data Protection Regulation]’. Even though the document is still open for comments by stakeholders until November 28th,