Data breaches are serious issues. Australian and global in-house counsel need to prepare in advance for malicious attacks on their customers' data.
The role of in-house counsel around the world, and particularly in Asia, is becoming more and more difficult with each passing year. Technology is constantly evolving, while data volumes are increasing, and data sources are becoming more complex with cross-border cloud-based platforms and the prevalence of mobile devices in the everyday corporate environment.
A selection of resources regarding the new standard contractual clauses adopted by the European Commission on June 4, 2021, regarding the transfer of personal data under the European Union's General Data Protection Regulation (GDPR).
This resource is a report published by the Coalition for Integrity, which summarizes how machine learning can be utilized in anti-bribery case and corruption compliance programs. It provides analyses of the advantages of the challenges of machine learning in these cases and makes subsequent recommendations for companies to consider as well.
Hong Kong’s Privacy Commissioner for Personal Data (PCPD) has issued Guidance Notes for (1) organizations, (2) employees, and (3) users of video conference software, with a view to enhance measures for data security and data privacy in the use, storage, and handling of personal data when employees work from home. In this article, the three Guidance Notes published by PCPD and key takeaways for employers are briefly summarized.
This piece provides invaluable insight and advice into the steps one should take in order to prevent online scams, hacks and identity/financial theft. It highlights an overview of the right safety strategies to take, which focus namely on verifying the identities of people being interacted with and confirming the authenticity of e-mails and transfer requests.
Under new policies enacted by the government, fewer small and medium-sized enterprises (SME) in Germany will be required to appoint a data protection officer (DPO). The new plans now mean that SME that have under 50 employees involved in automated processing of personal data will no longer have to appoint the DPO (the previous threshold was 20 employees).
Over the past couple of years Egypt has witnessed rapid legislative developments and a reformative wave in the spheres of cyberspace, information technology and regulation of internet activities. This new Data Protection law specifically focuses on safeguarding the personal data of individuals, which are being stored, processed or controlled electronically through online platforms.
In-house counsel working for businesses that hold consumer data should consider the impact of the new regime regarding Consumer Data Rights (CDR) on their business operations and how they should prepare for the new data privacy landscape.
The new Data Protection Law, DIFC No. 5 of 2020 (the "DP Law"), became effective 1 July 2020 and replaces DIFC Law No.1 of 2007. Businesses caught by the legislation have a grace period of three months to bring their organisations into compliance with the new requirements.
The new DP Law has been aligned with data protection regimes elsewhere in the world such as the European GDPR and the California Consumer Privacy Act. Adoption of international data privacy concepts means we're hopeful that such reform will see other territories recognising the DIFC as providing sufficient regulatory protection to allow data transfers in and out of the DIFC with relative ease.