Security, data leaks, and ransomware: attacks to be taken seriously. Legal Watch No. 32 – February 2021 Security, data leaks, and ransomware: attacks to be taken seriously. The press reported at the end of February about a massive data leak in the medical sector. Sensitive information concerning more than 500 […]

Regulatory News: Celebrations and Supervision Legal Watch No. 31 – January 2021 Regulatory News: Celebrations and Supervision. The last few days have been an opportunity to (virtually) celebrate several anniversaries. On January 28, privacy stakeholders in Europe, Africa, the Americas, and […]

What control strategy for 2020? In 2020, in addition to controls following complaints, issues revealed in the news or corrective measures, the CNIL will focus its control action on 3 priority themes linked to the daily concerns of the French: As every year, in addition […]

New year, review and outlook. New year, review and outlook. After a year that some are calling an annus horribilis, 2021 is being welcomed by many as a hope for change. It is true that recent months have tested the resilience of our societies in unprecedented ways. The impact of the pandemic on our health but […]

GDPR: Case law is becoming clearer! GDPR: Case law is becoming clearer! The CNIL had already distinguished itself by imposing a record fine of 50 million euros on Google last January for failing to inform its customers when using Android, a fine confirmed in June by the Council of State. […]

GDPR Compliance in Times of Crisis. GDPR Compliance in Times of Crisis. What are the priorities of supervisory authorities, and what controls can businesses expect in the current health and economic context? While the CNIL is clearly focusing its activities on data processing […]

Employee Health Data: How to Manage It in Times of COVID-19? Employee Health Data: How to Manage It in Times of COVID-19? Among the challenges our societies are facing during the health crisis, the one facing employers is not the least. In addition to working conditions […]

SCHREMS II, an expected and feared finale SCHREMS II, an expected and feared finale. On July 16, 2020, the Court of Justice of the European Union invalidated the Privacy Shield, a key agreement that formed the legal basis for transfers of personal data between Europe and the United States. More than 5,300 American companies […]

A tense anniversary Legal Watch No. 24 – May 2020 A tense anniversary. The GDPR is celebrating its second anniversary in a particularly turbulent context for fundamental rights. How resilient will the European data protection system be in the face of current health challenges? Already put to the test in the context of the […]

STOPCOVID: The Journey of a Controversial Application STOPCOVID: The Journey of a Controversial Application. Not a day goes by without the issue of "deconfinement" of the population being addressed, in France as elsewhere, in connection with the tracing of the virus and the individuals who transmit it. Recent developments mention the creation of a file […]