Thirty years after the idea of restricting international data transfers was conceived, companies find themselves facing a greater level of "dogmatism" than ever and geopolitical tensions could take restrictions to an even higher level, Hogan Lovells privacy and cybersecurity attorneys said during a podcast. Driven by U.S. rules hampering some data flows to China and several other countries, personal data protection is morphing into national security protection. One way to navigate the maze could be a greater focus on binding corporate rules (BCRs), they said.
Privacy and data protection laws are mushrooming, with nearly 150 countries adopting such regulations, speakers said during a Thursday IAPP webinar. There are 144 nations with national data protection measures, covering nearly 82% of the world's population, IAPP said in an updated report.
“Data autarky,” a scenario where all economies fully restrict data flows, would prompt gross domestic product (GDP) losses of 4.5%, the Organisation for Economic Co-operation and Development said in a report Monday. Exports would decline 8.5%, added the OECD.
The European Commission and U.K. Information Commissioner's Office (ICO) are responding cautiously to questions about the implications for trans-Atlantic data flows of reports that Elon Musk is accessing the personal data of millions of Americans. However, the Danish Data Protection Authority (DPA) recently warned businesses that the activities of the Trump Administration could threaten the EU-U.S. Data Privacy Framework (DPF).
Life science companies should be aware of data-sharing restrictions under DOJ’s new rule banning cross-border data transfers to adversarial countries (see 2501070056), compliance attorneys said Monday.
The European Commission hasn't taken formal steps under the AI Act (AIA) concerning the DeepSeek AI chatbot, an EC spokesperson told us. However, several EU data protection authorities (DPAs) are probing whether DeepSeek has complied with the General Data Protection Regulation (GDPR).
French data protection authority CNIL Friday published the final version of its guide on impact assessment of data transfers. The guide aims to ensure that companies ensure the same level of protection as the General Data Protection Regulation (GDPR) in their data flows.
It’s unclear whether replacements will be named for the recently dismissed members of the Privacy and Civil Liberties Oversight Board, or if President Donald Trump’s decision to fire them will go unchecked, senators told us in interviews this week (see 2501280044).
Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching on the title or by clicking on the hyperlinked reference number.
European collaboration with the U.S. on privacy issues is going to be tough, representatives from the European Commission and European Parliament said Tuesday at a Data Protection Day conference in Brussels.