Asian AI developers looking to do business in the U.S., EU or U.K. face several key compliance challenges, Finnegan lawyers said Wednesday at the law firm's webinar.
GDPR
The General Data Protection Regulation (GDPR) is the European Union’s landmark privacy law governing how organizations collect, process and protect personal data. In effect since 2018 it applies to any entity handling EU residents’ information regardless of where the company is based and imposes strict requirements around consent, transparency, data minimization and user rights. GDPR enforcement has led to billions in fines against global companies setting a high bar for compliance frameworks worldwide and influencing privacy legislation in the U.S. and other regions.
Bulgaria's data protection authority provided schools with guidance Monday about protecting themselves from General Data Protection Regulation (GDPR) violations when sharing video surveillance footage with parents of children involved in school-related incidents.
Data protection officers (DPOs) often bring economic benefits to companies, especially organizations with a positive approach to General Data Protection Regulation (GDPR) compliance, French data authority CNIL said Wednesday, commenting on results of a survey. In addition, DPOs offer a host of other returns, including leverage to win contract tenders, avoidance of sanctions and data leakage and streamlined data management, it said.
With substantive data-protection provisions of the U.K. Data Use (and Access) Act 2025 (DUAA) beginning to apply near year's end, organizations should start monitoring new guidance from the Information Commissioner's Office (ICO), Robin Edwards, a member of the government's Department for Science, Innovation and Technology, said Wednesday during an IAPP webinar.
The U.K. is providing adequate protection for personal data transferred from the EU, the European Commission said Tuesday, initiating the process to adopt a new adequacy decision.
Companies operating in Latin America should be aware that data protection authorities (DPAs) there are increasing guidance and enforcement, said panelists during a webinar Tuesday sponsored by TrustArc, a privacy compliance vendor.
Wikipedia's operator will argue in London's High Court of Justice this week that upcoming provisions of the U.K. Online Safety Act (OSA) could classify the site incorrectly and hence threaten the privacy of those Wikipedia contributors who choose to remain anonymous.
Chinese tech company WeChat complies with local laws and regulations in the markets in which it operates and "is committed to protecting user privacy and data security," a spokesperson for parent company Tencent emailed us Friday.
Ireland's first mass-litigation case could have major implications for tech companies that process data under the General Data Protection Regulation, Pinsent Masons commercial litigation attorney Zara West blogged Thursday.
TikTok transferred European Economic Area (EEA) users' personal data to servers in China, the Irish Data Protection Commission said Thursday as it launched a probe into the social media platform's activities.