Brexit, GDPR, AND The Timeline for Data Breaches Friday, January 22, 2021
The European Union (EU) and the United Kingdom (UK) finally came to an agreement on 24 December 2020 (EU-UK Trade and Cooperation Agreement, the Agreement), less than ten days after the European Data Protection Board (EDPB) published a statement on the consequences a no-deal situation would have on the flows of personal data between the EU and the UK (for previous coverage of General Data Protection Regulation (GDPR) and Brexit, please see our alert here). This statement has since been updated on 13 January 2021.
According to this Agreement, until 30 June 2021, any transfer of personal data to the UK will be made under the current framework and will not be considered as a transfer of data to a third-party country. Nevertheless, at the end of this six-month grace period, and unless a compromise is found through an “adequacy decision,” the UK will become a third-party country in the eyes of
Friday, January 22, 2021
The European Union (EU) and the United Kingdom (UK) finally came to an agreement on 24 December 2020 (EU-UK Trade and Cooperation Agreement, the Agreement), less than ten days after the European Data Protection Board (EDPB) published a statement on the consequences a no-deal situation would have on the flows of personal data between the EU and the UK (for previous coverage of General Data Protection Regulation (GDPR) and Brexit, please see our alert here). This statement has since been updated on 13 January 2021.
According to this Agreement, until 30 June 2021, any transfer of personal data to the UK will be made under the current framework and will not be considered as a transfer of data to a third-party country. Nevertheless, at the end of this six-month grace period, and unless a compromise is found through an “adequacy decision,” the UK will become a third-party country in the eyes of the General Data Protection Regulation no.2016/67
Thursday, January 14, 2021
On January 13, 2021, Advocate General (“AG”) Michal Bobek of the Court of Justice of the European Union (“CJEU”) issued his Opinion in the Case C-645/19 of Facebook Ireland Limited, Facebook Inc., Facebook Belgium BVBA v. the Belgian Data Protection Authority (“Belgian DPA”).
Background
The Belgian DPA initiated judicial proceedings against several members of the Facebook group before the Belgian Courts in September 2015. The Belgian DPA requested that the Court order Facebook to stop placing cookies on Internet users’ devices without their consent and stop collecting data in an allegedly excessive manner when they browse a web page in the Facebook.com domain or on third parties’ websites, including via Facebook social plug-ins and pixels. The proceedings, which are currently still in progress before the Court of Appeal of Brussels, were limited to Facebook Belgium BVBA after the Court of Appeal of Brussels previously establ
¿Quién es competente para actuar ante las infracciones de protección datos en Internet? expansion.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from expansion.com Daily Mail and Mail on Sunday newspapers.
January 2021 – The Turkish Competition
Board (
the Board ) announced on its
website on 11 January that it has launched an ex-officio
investigation into the privacy practices of social media giant
Facebook and its messaging and VoIP unit, WhatsApp.
For convenience we provide a translation of the announcement
published on the Board s website: The Turkish Competition Board
( the
Board ) launched an
ex-officio investigation of Facebook and WhatsApp and stopped the
sharing of WhatsApp data with other Facebook companies
(11.1.2021)
Today (11.1.2021), with its decision dated 11.1.2021 and
numbered 21-02 / 25-M, the Board has initiated an investigation
against Facebook Inc., Facebook Ireland Ltd., WhatsApp Inc.
and WhatsApp LLC (collectively referred to as