LONDON -- How companies handle people's "digital remains" is one of the most pressing privacy issues of this century, Carl Ohman, Uppsala University (Sweden) political science professor, said Wednesday at the IAPP Data Protection Intensive UK conference.
The General Data Protection Regulation shouldn't become a tiered, risk-based entity, though the European Commission should have more centralized power to enforce it, Charly Helleputte, Squire Patton Boggs EU data privacy attorney, emailed. His comments responded to Axel Voss' recent tiered GDPR proposal. Voss is a German Member of the European Parliament from the European People's Party Group. He discussed his proposal during a March 3-4 Centre for European Policy Studies Ideas Lab panel.
The European Commission is "studying the impact" of President Donald Trump's executive order that requires independent agencies and executive branch bodies to submit regulatory actions to the White House before they're finalized (see 2502180069). The order could influence the EU-U.S. Data Privacy Framework, an EC spokesperson emailed Friday.
French data protection regulator CNIL's guidelines on AI models "illustrate a more pragmatic approach than other regulatory positions addressing multiple issues raised by AI," Hogan Lovells privacy attorneys argued in a Feb. 18 post. For example, CNIL's position differs from that of Garante, the data protection authority (DPA) in Italy. Meanwhile, DPAs in other EU countries are waiting to see if the European Data Protection Board (EDPB) can craft a consensus, Etienne Drouard, a co-author of the post, said in an interview Thursday.
The European Data Protection Board's (EDPB's) Dec. 18 opinion on processing personal data for AI models has "sparked intense debate" because "the more you reflect on it, the more it resembles a Rorschach test -- everyone seems to see what they want to see," civil and human rights group European Digital Rights (EDRi) posted Wednesday.
Thirty years after the idea of restricting international data transfers was conceived, companies find themselves facing a greater level of "dogmatism" than ever and geopolitical tensions could take restrictions to an even higher level, Hogan Lovells privacy and cybersecurity attorneys said during a podcast. Driven by U.S. rules hampering some data flows to China and several other countries, personal data protection is morphing into national security protection. One way to navigate the maze could be a greater focus on binding corporate rules (BCRs), they said.
Privacy and data protection laws are mushrooming, with nearly 150 countries adopting such regulations, speakers said during a Thursday IAPP webinar. There are 144 nations with national data protection measures, covering nearly 82% of the world's population, IAPP said in an updated report.
The European Commission withdrew two controversial pieces of legislation from its 2025 work program, bringing cheers Wednesday from the tech sector as a consumer group jeered.
The European Commission and U.K. Information Commissioner's Office (ICO) are responding cautiously to questions about the implications for trans-Atlantic data flows of reports that Elon Musk is accessing the personal data of millions of Americans. However, the Danish Data Protection Authority (DPA) recently warned businesses that the activities of the Trump Administration could threaten the EU-U.S. Data Privacy Framework (DPF).
The European Commission hasn't taken formal steps under the AI Act (AIA) concerning the DeepSeek AI chatbot, an EC spokesperson told us. However, several EU data protection authorities (DPAs) are probing whether DeepSeek has complied with the General Data Protection Regulation (GDPR).