PrivacyRules local expert, Sergey Medvedev from Gorodissky & Partners, elaborates on the risks related to the non-compliance with the Russian data privacy law in these complex times.
You may wonder if the Russian data protection law must be complied with even during the Covid-19 times, the answer is yes! Beware that the Russian data protection law has been recently amended giving higher powers to the Russian IT Regulator (Roskomnadzor) which can now impose truly heavy fines against non-compliant companies. Worth noting, the Roskomnadzor can now start random inspections and, if the inspection reveals that a company is non-compliant, the Regulator can initiate an administrative proceeding before the competent Court without the need of a prosecutor.
The sanctions can be of civil, administrative or criminal nature. An example of a heavy sanction is the blockage of the website for an online business or an e-commerce company (which is what happened in the LinkedIn case). Furthermore, in certain cases fines are imposed on the basis of the number of the employees the sanctioned company has.
To know more about the risks related to the complexity of the Russian privacy regulations, watch this video and contact Sergey for guidance and advice!
The President of Indonesia, Joko Widodo, issued a Presidential Decree No. 12/2020 declaring Covid-19 pandemic as a Public Health Emergency situation. Then, the Government has released Regulation No. 21 of 2020 on Massive Social Restrictions (“GR 21/2020) allowing the Regional Government to implement Massive Social Restrictions.
On April 09, 2020, the Governor of DKI Jakarta has issued Regulation No. 33/2020 on Implementation of Massive Social Restrictions in Jakarta.
In this pandemic situation many business activities are disrupted and stop operating. For this reason, they are assessing their existing contracts to determine whether the pandemic of Covid-19 can be considered as force majeure or not.
Our Indonesian expert from SIP Law Firm , R. Yudha T. W., elaborates on the recent updates of its country and explains how Indonesia is handling the concept of force majeure.
Listen to this flash news to know more about this interesting topic!
The Morrisons case: When is an employer liable for data breaches by its employees?
❗Flash Briefing from the UK❗
⚡Kim Walker of Shakespeare Martineau discusses the UK Supreme Court’s important recent judgement clarifying the scope of the principle of “vicarious liability”: when is an employer strictly liable for the wrongdoings of its employees even though the employer is entirely blameless?
➡️ The case is of particular interest to anyone advising on dataprotection, because the employee, in this case, had maliciously and wrongfully uploaded payroll data of 100,000 employees to the internet, potentially exposing Morrisons to huge claims for compensation from the employees involved.
➡️ The High Court and the Court of Appeal in the UK had previously found Morrisons vicariously liable for the rogue employee’s actions.
The discussion includes:
❓How do you decide what an employee’s “field of activities” are?
❓When is the wrongful action “closely connected” to the field of activities?
❓Are the employee’s motives relevant?
❓Why was the previous leading case (Mohamud v Morrisons) different?
❓What are the practical implications in the field of data protection?
La Crisis generada por el COVID 19 ha puesto en jaque a Autoridades nacionales y locales, a las empresas, y en general a todos los ciudadanos. Muchos temas han surgido, varios riesgos han aflorado, y es a partir de estos que queremos hoy compartir con todas las personas del común, no solamente con los especialistas en privacidad lo que ha venido sucediendo con el manejo de la información personal relacionada con este virus.
En esta serie discutiremos con nuestros expertos Stella Sofía Vanegas & Angela Maria Noguera Moreno (Colombia), Yamil Yuivar Carneiro (Chile) and Luis Marimón Prats (Spain) sobre:
▶️ Episodio 1: Medidas legales adoptadas
▶️ Episodio 2: Recolección y usos de datos
▶️ Episodio 3: Casos prácticos de implicaciones laborales y riesgo de uso de datos personales
In this third and last episode of the miniseries our local expert, Yudha Triarianto from SIP Law Firm, discuss the relevance and advantages of cooperating with specialized law firms as in the PrivacyRules Alliance and provide some tips on why to do business in Indonesia
Find the Podcast version here!
Stay updated with Privacy worldwide, follow PrivacyRules!
How the Australian Government is facing the Covid-19 spread? Which are the key restrictions that companies and individuals are facing and which are the future perspective?
Know more on this topic with Kelly Dickson, our expert lawyer from Macpherson Kelley in Australia, we will discuss:
- Which are the main consequences of the restrictions
- The top priorities that companies should consider
- How MK lawyers can help
- The use of Health information
- The use of tracking systems
In Uruguay, the new Decree 64 / 2020 introducing new measures in relation to privacy matters has been published recently.
The main changes it contains are:
· The creation of the figure of the DPO
· Certain changes in relation to the data incident
· Certain changes in relation to security measures
Learn more about it with our local experts Sofía Anza and Jonathan Clovin from Guyer & Regules, find the complete review of the Decree here: https://bit.ly/3dYDOl5
In these webinars, we analyze how the privacy regulators of Belgium, Germany, and Switzerland addressed the spread of Covid-19. Our experts Geert Somers, Bernd Fiten, Volker Wodianka and Gabriel Avigdor assess the main challenges related to the coronavirus emergency and explain the details of their respective DPAs' positions.
In this fourth episode, our experts try to share their advice on how the issue may/should be addressed in the future.
In these webinars, we analyze how the privacy regulators of Belgium, Germany, and Switzerland addressed the spread of Covid-19. Our experts Geert Somers, Bernd Fiten, Volker Wodianka and Gabriel Avigdor assess the main challenges related to the coronavirus emergency and explain the details of their respective DPAs' positions.
In this third episode, our experts provide some suggestions to companies and private organizations on how to better handle the Covid-19 related difficulties.
In these webinars, we analyze how the privacy regulators of Belgium, Germany, and Switzerland addressed the spread of Covid-19. Our experts Geert Somers, Bernd Fiten, Volker Wodianka and Gabriel Avigdor assess the main challenges related to the coronavirus emergency and explain the details of their respective DPAs' positions.
In this second episode, our experts discuss the challenges that the Covid-19 is bringing to companies and private organizations and viable solutions proposed in their respective countries.
This webinar is available in a podcast version also
In these webinars, we analyze how the privacy regulators of Belgium, Germany, and Switzerland addressed the spread of Covid-19. Our experts Geert Somers, Bernd Fiten, Volker Wodianka and Gabriel Avigdor assess the main challenges related to the coronavirus emergency and explain the details of their respective DPAs' positions.
The first episode offers an overview on what each DPA issued and thoughts on the related matters.
This webinar is available in a podcast version also
The spread of the Covid-19 has sparked discussions on the balance of interests between the protection of an individual’s personal data privacy, and the interest and greater good of the public. Country frameworks differ significantly, and the reaction of data protection authorities have differed.
We, at PrivacyRules, are well placed to bring your perspectives from many locations. This webinar focuses on the main issues faced by companies in Asian countries.
In this webinar our experts, Ruth Ng, Akira Matsuda, José Leitão, Hyunjee Kim and Pádraig Walsh, compare the Covid-19 response of the regulators in their respective countries: Singapore, Japan, Macau, South Korea and Hong Kong. Our experts also provide guidance and help on how to deal with legal issues arising from Covid-19 in the context of personal data privacy and more generally.
WRITE DOWN YOUR QUESTIONS AND WE WILL ANSWER YOU WITH NEW TAILORED MATERIALS!
Data Breach Notification regulations are among the most debated issues of the data privacy framework of every country. Related country frameworks differ greatly: which are the most effective ones?
Our experts: Lyndsay Wasser and Kristen Pennington from McMillan (Canada), Agnieszka Wiercińska-Krużewska from WKB (Poland) and Pádraig Walsh from Tanner De Witt (Hong Kong) compare their Data Breach Notification and Fines regulations and assess what are the best practices for regulators and businesses to adopt in this area.
Jodi Daniels from Red Clover Advisors, explains the recent updates to the Washington Privacy Act and its differences and similarities with the CCPA and the GDPR in just 3 minutes!!
Stay tuned with data protection worldwide, follow PrivacyRules!
Our Alessandro meets Jordan Fischer, the Managing Partner of the New York boutique firm XPan Law Group, in this special Podcast (audio version here) on the New York Shield Act.
Watch it and learn more about the content and challenges of the Act, which are its main features and which are its similarities/differences with other regulations such as the CCPA and the GDPR.
Stay updated with privacy, follow PrivacyRules on LinkedIn, Twitter, SoundCloud and YouTube!
Jodi Daniels from RedClover Advisors, US Data Privacy service provider of PrivacyRules, explains how her 2020 Privacy Compliance Checklist and her other tools can help you dealing with CCPA and other data-privacy regulations!
Stay tuned with data protection worldwide, follow PrivacyRules!
In this second episode of the miniseries our local expert, Yudha Triarianto from SIP Law Firm, compares the Indonesian regulation with the GDPR in order to check the main differences and similarities between the two frameworks.
In the previous episode we discussed:
- Who is Yudha Triarianto and what SIP Law Firm does
- The complex patchwork of regulations touching data privacy in Indonesia and the contents of the recent proposal for a new Personal Data Protection Bill
In the next episode we will:
- Discuss why it is important for SIP Law Firm to be part of the PrivacyRules Alliance
- Receive some tips on why to do business in Indonesia Follow PrivacyRules to stay updated with privacy worldwide.
Find the Podcast version here!
Stay updated with Privacy worldwide, follow PrivacyRules!
Kelly Dickson (Australia), Ruth Ng (Singapore), Peter Szanislai (Hungary) and Pádraig Walsh (Hong Kong) address the recent Hong Kong proposal to update its data privacy regulations, and compare and contrast those proposals to other countries’ frameworks.
The webinar explains:
- The main features of the proposals in Hong Kong, and how they compare to the different frameworks.
- What is not addressed in the Hong Kong proposals, but is already a feature in other jurisdictions.
This webinar demonstrates the capability of PrivacyRules to offer different perspectives on the same issue across different locations, and to provide the best resource and solution to clients on data-privacy cases.
Michael Nitardy, member of the Privacy & Data Security team of Frost Brown Todd LLP, analyzes with us the new CCPA in this PrivacyRules Miniseries!
In this second episode of the mini-series, Michael explains what companies have to do to comply with the CCPA.
Follow us to stay updated and to know more about this very current topic!
In this first episode of the miniseries our local expert, Yudha Triarianto from SIP Law Firm, introduces himself and his firm, explain the complex patchwork of regulations touching data privacy in Indonesia and the contents of the recent proposal for a new Personal Data Protection Bill!
In the next episodes we will:
- Compare the indonesian regulation to the GDPR
- Learn the main practical issues Yudha have faces as a data privacy expert
- Discuss why it is important for SIP Law Firm to be part of the PrivacyRules Alliance
- Receive some tips on why to do business in Indonesia Follow PrivacyRules to know more on this and many other topics!
Find the Podcast version here!
Stay updated with Privacy worldwide, follow PrivacyRules!
Michael Nitardy, member of the Privacy & Data Security team of Frost Brown Todd LLP, analyzes with us the new CCPA from all its different corners in this PrivacyRules Miniseries!
In this first episode of this mini-series of webinars, Michael gives us an overview of what should people from all over the world know, and take into consideration, about the CCPA.
Follow us to stay updated and to know more about this very current topic!
In Part 1 of this two-part Briefing, Kim Walker from Shakespeare Martineau explains what Brexit means for the processing of personal data in the UK during the Transition Period which is due to last until 31 December 2020, including the laws that apply during Transition and the changing role of the UK’s supervisory body, the ICO, during and after this period. Part 2 will cover transfers of data between the UK and EU during and after Transition and what happens to EU data stranded in the UK when the Transition Period comes to an end.
Find out more on Kim and Shakespeare Martineau by following them on LinkedIn
Kelly Dickson from Macpherson Kelley Law Firm explains the case raising the first data privacy class action in Australia and it's main implications for the future!
The EU-U.S. Privacy Shield, the GDPR and the recent CCPA are not frameworks for lawyers only... Listen to Jodi Daniels from RedCloverAdvisors (US) and Volker Wodianka from Schlutius (Germany) explaining why their specific services are important to help companies dealing with data across continents!
Don't miss the opportunity to know more about this case that is going to raise one of the most interesting debates of 2020. Our Swiss expert, Gabriel Avigdor from datalex llc, explains the contents and main issues raised by the Norwegian Consumer Council (“NCC”) through its 186 pages study report called “OUT OF CONTROL. The document, supported by a 93 pages technical report, explains how the industry of digital advertising (“AdTech” industry) is exploiting personal data of consumers through dating mobile applications to use and monetize such data for their business interest and the ones of “shadow companies”. Find also a deeper analysis of the case in the latest Gabriel's article here.
Pádraig from the Hong Kong Law Firm Tanner De Witt explains the implications of a recent cybersecurity incident affecting secondary schools in Hong Kong.
In November 2019 the Education Bureau detected some strange activity in respect of its WebSAMS web application management system for secondary schools. Even if, the Education Bureau had developed an upgrade to the system and notified all schools within 5 days, four schools were affected and the personal information of teachers and some students have been lost. This data breach incident is interesting for three main reasons, listen to Pádraig and discover witch are them!
This Podcast is also available in its video version on our YouTube Channel!
Our new expert from Macau, José Leitão from MdME Lawyers, discusses the complex framework of this jurisdiction during a very practical interview.
Learn more about how this country is facing the development of the Data Privacy sector with very strict and unique rules and hear its comparison to the GDPR and other international frameworks!
Our Chinese and Russian experts compare the complex patchworks of their respective data protection frameworks with an interesting focus on their countries' data localization requirements and the necessary elements for cross border data flows.
Thanks to this webinar you will be able to understand the activities you need to put in practice if you are using, sending data or simply starting a new business in Russia or China.
Lyndsay Wasser of Canadian law firm McMillan and Kim Walker of UK law firm Shakespeare Martineau discuss the recent decision by the Privacy Commissioners in Canada that Canadian data analytics company AggregateIQ used voter personal data to target political advertising in breach of Canadian federal and provincial data protection laws. The UK's Information Commissioner's Office (ICO) ruled in 2018 that AggregateIQ failed to comply with the GDPR in several respects when it provided data analytics services to political parties during the UK's EU referendum in 2016. The decisions are evidence of global privacy regulators' continuing concern about the way in which personal information can be used for voter manipulation.
Lyndsay discusses the Commissioners' clarification of the requirement for service providers to ensure that customers who provide personal data for them to process have received consents from individuals as required by Canadian law and the steps that they are required to take in order to verify that adequate consents have in fact been obtained. Kim discusses the different approach taken by the ICO under the GDPR where consent is only one of several lawful bases for processing data and discusses the ICO's particular focus on AggregateIQ's failure to process the data fairly and transparently, so the individuals had no knowledge or expectation of how their data would be used.
Lyndsay and Kim then draw conclusions from the two decisions and propose practical steps for businesses to take, particularly those involved in digital marketing and the adtech industry.
The consciousness of the broadness and complexity of the Data Privacy sector has brought the PrivacyRules Swiss experts, Gabriel Avigdor and Ludovic Tirelli, to create a new way to conceive the lawyers' work through their platforms: datalex and penalex.
These digital platforms provide transparent, easily accessible and reliable 24/7 information on data privacy, new technologies, healthcare and cybercrime in the Swiss context. Learn more about Gabriel and Ludovic, their activities and the Swiss framework in this very interesting Webcast and watch their previous participations on our activities:
- PrivacyRules Webinar on Libra, Blockchains and Cryptocurrencies
- PrivacyRules-Zhong Lun Conference, datalex llc presentation
Watch the video of the recording here!
Meet Volker Wodianka of SKW Schwarz & SCHLUTIUS, the brand new German expert of PrivacyRules, in this fascinating discussion on his activities and the main differences of the German framework making it unique even under GDPR.
Hear how the Federal structure helped him to anticipate the scenario of conflicts among different Data Protection Authorities and how their DPO compliance regime is different and stricter than the one of the GDPR!
Watch the PrivacyRules video-session entitled "Privacy and Data Protection in Africa, Rights and Opportunities" at the AFBA 2019 Conference in Monrovia Liberia.
Our speakers are:
- Janet Othero (Kenya) Kenya: Government Digital Transformation and Data Protection
- Juan Carlos Manriquez Rosales (Chile) Rule of law 4.0: how the public and private sectors shall adapt to fully respect the hr into the digital economy
- Kenneth Morris (USA) Data Protection Best Practices: Inadequate for Privacy and Regulatory Compliance - Time for a 21st Century Model
Watch this Podcast with Sergey Medvedev, Partner at Gorodissky & Partners updates us on the latest news from the Russian Federation where the Parliament is currently amending the Code of Administrative Offences and the new provisions related to the Localization Requirement. The matter is particularly sensitive since the provision is flanked with a series of new control and fines capabilities of the Russian Data Protection Authority.
Don't miss this interview to understand how international companies can ensure /demonstrate compliance and avoid fines in Russia!
The Podcast audio is available here.
Watch the video-podcast on our YouTube channel
After the recent webinar on the "first year implementation of the GDPR", our Alessandro and Péter Szanislai, data privacy and GDPR expert of the PrivacyRules' Hungarian member firm, Lakatos Koves, decided to reconnect in order to discuss the impact of the new regulation in Hungary.
In fact, the GDPR application in Hungary has affected more than 80 sectors and Peter explain us the main challenges related to the overlaps among the national legislation and the European Regulation in matters such as advertisement, employee monitoring and the use of CCTV.
Our experts from Hong Kong, Switzerland, Singapore and South Korea discuss together about the use of Blockchain and Cryptocurrencies in their respective jurisdictions with specific considerations on the new Facebook's currency, Libra. If you want to know more about this topic and to summarize the situation on each of these jurisdictions, please click on their Country Overviews below:
Even if the GDPR has harmonized the data protection regulations within the EU, there are still some differences between one country to another. Agnieszka stresses how many other Polish Laws have been influenced by the GDPR and how the local legislator has acted to avoid conflicts as much as possible.
But, of course, some problems emerged. What's happening exactly and which are the best ways to approach such issues? Agnieszka offered us her practical experience and an overview of interesting cases in Poland to help us understand what approach needs to be taken from every business in Poland.
Jodi Daniels, founder of Red Clover Advisors discuss the latest on Data Protection regimes in the US, the privacy related challenges that companies faces everyday and how to approach data privacy regulations such as CCPA.
Jodi also offers some practical advise to people interested in doing business in the US with some forecasts on the future development of privacy regulations in the country.
Our Alessandro and our expert, Léon Patrice SARR from LPS [email protected], discusses the Data Privacy issues faced by Senegalese people everyday and the main challenges for companies in Senegal regarding the local data privacy regulation and its evolution.
The interview ends with some practical advice for people interested in doing business in Senegal.
Find the YouTube video of the Podcast here
Find the Podcast's video here!
Stella Vanegas Morales, founder of Vanegas Morales Consultores and expert for the Colombian jurisdiction at PrivacyRules help us understanding the data protection regulation in her country. Learn more on the main data privacy challenges for Colombian companies, the best practices to avoid issues and how to assess the risks involved to the use of data!
The Podcast's video is available on YouTube here.
Our UK and Hong Kong experts, Kim Walker and Padraig Walsh, discuss with us on the recent data breaches involving respectively the two Airlines of Cathay Pacific (violating 9.4 million personal data) and British Airways (disclosing 500 K customers' information).
The discussion focuses on the different approach of the Hong Kong's Office of the Privacy Commissioner for Personal Data ant the UK's Information Commissioner Office resulting no fines in the first case and an intention of £183m fine in UK.
How is it possible to have so different results? Is that difference just a result of the GDPR presence in UK and absence in HK?
Discover it with us in this great podcast!!
PrivacyRules launches its fourth webinar dedicated to the GDPR in its first-year implementation.
PrivacyRules gathered six of its EU experts to analyze the different approaches of their respective countries to the GDPR with particular attention to the decisions of their respective Supervisory Authorities and the related lessons learned. The participating experts were:
Click here to see the video of this Podcast on Youtube
Our Alessandro and Padraig Walsh, Partner of Tanner De Witt, and PrivacyRules expert for Hong Kong, explore the Data protection regime in Hong Kong discussing its most recent developments and some interesting cases of data breaches. The podcast also compares the framework's similarities and main differences with the GDPR, the issues related to the conclusion of the Brexit process and the particularly strong provisions of this country on direct marketing.
In the final part of the recording, Padraig also discusses the main issues related to the use of Blockchains and AI.
Disfruta nuestro webinar sobre protección de datos en Latino América en el que panelistas de Colombia, Uruguay, Chile y México proveen información general sobre las leyes de protección de datos en cada país, los retos y obstáculos que se han tenido en la implementación de las leyes de manera practica y efectiva, los pronósticos sobre el desarrollo de la jurisprudencia de protección de datos en cada país, y buenas prácticas para prevenir y reaccionar a un incidente de violación o fuga de datos.
Encuentra las diapositivas de Guillermo aquí
Enjoy our new webinar in Spanish language dealing with the data protection regimes in Latin American countries. Our panelists from Colombia, Uruguay, Chile and Mexico provides general information on the data protection laws in each country, the challenges and obstacles that have been faced in the implementation of such laws in a practical and effective way. The webinar follows discussing the potential development of the data protection laws in each country and the good practices to be respected to prevent and react to violation of data.
Our Alessandro and Ruth Ng, lawyer of Taylor Vinters Via, explore the Data protection regime in Singapore discussing its business-friendly structure and its focus on inspiring consumer confidence.
The podcast also compares the framework's similarities and main differences with other regimes such as the GDPR, dealing with the consent requirements, the data breach notification system and the incoming data portability requirements and explains the potential development of the PDPA bill in 2020. As always, the recording concludes with the main practical challenges and most interesting experiences in the everyday practice of the expert!
Steve Ahn from SEUM, South Korean member of PrivacyRules, explains the most recent development of the South Korean Data Protection framework, its relation with the Blockchain regulation and the practical issues related to those sectors. Steve also raised some interesting points on the latest on the use of Cryptocurrencies and Initial Coin Offerings.
Available also on Youtube and Youku!
PrivacyRules launch its second webinar episode to tackle some data privacy questions, such as: According to the GDPR, when do I need a DPO? When do I need an EU-Representative? What is the difference between them?
We’ve gathered two of our best and brightest GDPR experts Markus Myhrberg, Stefanos Tsimikalis and our US data privacy expert Michael Nitardy to break down and demystify these questions from the point of view of non-EU businesses.
To have a broader overview of the topic, please find attached the slides prepared for you from our members:
Markus Myhrberg, Lexia, Finland: GDPR, EU Representative and Data Protection Officer
Stefanos Tsimikalis, Tsimikalis Kalonaru, Greece: The Data Protection Officer
Kelly Dickson, Principal Lawyer at Macpherson Kelley explains the latest development and practical challenges of the Australian Data Protection Framework and its interactions with other countries!
Meet our Tech expert Chris Huntington, from Nexigen and know more about Risk Management and their new Fishing Platform!
Available also on Youtube and Youku!
PrivacyRules is proud to launch its webinar series with this Webinar. Our Panelists from Switzerland, Russia, Mexico and Japan will go through their respective Data Transfers frameworks and discuss the main practical issues they face in their countries.
Interested on a specific point? Find it here:
GDPR: 01:19
Swiss Law: 04:29
Russian Law: 11:04
Mexican Law: 14:59
Japan: 19:59
Open Discussion: 26:30
Any question? Send them through the form appearing below the video. Our speakers will answer your questions in a follow-up video!