Your quarterly privacy & cybersecurity update

Welcome to the sixth edition of Updata! Updata is an international update produced by Eversheds Sutherland’s dedicated Privacy and Cybersecurity team – it provides you with a compilation of key privacy and cybersecurity regulatory and legal developments from the past quarter. This edition covers October to December 2019 and is full of newsworthy items from our team members around the globe, including:

• updates from our team in the United States on the CCPA and efforts towards a federal privacy law;
• in Europe, our round-up of the status of the EU’s proposed ePrivacy Regulation, the third annual review of the EU-US Privacy Shield, a new report on how member states have identified their NIS operators of essential services, an evaluation paper on the application of the GDPR and an update on Switzerland’s data protection act;
• reports of various regulatory fines issued across the EU, including in Austria, France, Hungary, the Netherlands and a number in Germany;
• new guidance such as in the UK on special category personal data and AI, in Italy on data protection roles in the insurance sector and in Lithuania on security measures;
• interesting commentary in Germany regarding the sharing of special category personal data in the e-health sector as well as guidance on data subject access requests;
• the much talked about guidance in the Netherlands on the use of the legitimate interests lawful basis and an interesting court ruling on the application of time limits in an Article 21 GDPR request;
• updates in Asia, such as on China’s recently enacted Cryptography Law, interpretation guidance on criminal use of information networks and rules in relation to illegal use of personal information, and Hong Kong’s guidance on the use of external data storage providers and efforts to combat doxxing; and
• increased liability risks for breaches of Russia’s localization laws.

Learn more.