-
May 2, 2024 | 
mondaq.com | Livia Crepaldi Wolf |Ana Hadnes Bruder |Ondrej Hajda |Ellen Hepworth
The Information Commissioner's Office (the
"ICO") has clarified the methods it will
use to calculate the fines it will issue for breaches of data
privacy law in the UK by publishing its latest Data Protection
Fining Guidance (the "Guidance") on 18
March 2024.
-
Apr 26, 2024 | 
jdsupra.com | Livia Crepaldi Wolf |Ana Hadnes Bruder |Ondrej Hajda
[co-author: Aleksander Larski]*The Information Commissioner's Office (the "ICO") has clarified the methods it will use to calculate the fines it will issue for breaches of data privacy law in the UK by publishing its latest Data Protection Fining Guidance (the "Guidance") on 18 March 2024.
-
Mar 20, 2024 | 
mondaq.com | Ana Hadnes Bruder |Benjamin Beck |Livia Crepaldi Wolf |Sarah Wilks
CYBERSECURITY
NETWORK AND
INFORMATION SECURITY 2 DIRECTIVE (NIS2)
DIGITAL
OPERATIONAL RESILIENCE ACT (DORA)
DRAFT CYBER
RESILIENCE ACT (CRA)*
WHO WILL
BE IN SCOPE?
Operators of essential and important services
across various sectors including energy, transport, banking,
health, medical devices, chemicals and digital.
-
Mar 18, 2024 | 
mondaq.com | Ana Hadnes Bruder |Benjamin Beck |Livia Crepaldi Wolf |Ondrej Hajda
The EU Data Act came into force on January 11, 2024. The Data
Act is part of the European Commission's data strategy released in February 2020 and
obliges manufacturers of connected products to make use-related
data available in certain circumstances. It also requires providers
of data processing services (such as cloud services) to facilitate
customers switching to a different provider, for instance, by
providing minimal transitional services.
-
Mar 15, 2024 | 
mondaq.com | Ana Hadnes Bruder |Benjamin Beck |Livia Crepaldi Wolf
Governments around the world are tightening cybersecurity
requirements, with a plethora of new laws and pending legislative
proposals. The EU is no exception. Two of the most prominent EU
cyber laws that will soon come into effect are the Digital Operational Resilience Act
("DORA") and the Network and Information Systems 2
("NIS2") Directive. DORA
establishes uniform cybersecurity requirements for institutions
operating in the financial sector.
-
Mar 14, 2024 | 
jdsupra.com | Benjamin Beck |Livia Crepaldi Wolf |Ana Hadnes Bruder
March 14, 2024
Benjamin Beck, Livia Crepaldi Wolf, Ana Hadnes Bruder, Sarah Wilks, Oliver Yaros
Mayer Brown
+ Follow
x Following
x Following
- Unfollow
Contact
To embed, copy and paste the code into your website or blog:
NETWORK AND INFORMATION SECURITY 2 DIRECTIVE (NIS2) -
WHO WILL BE IN SCOPE?
-
Mar 13, 2024 | 
lexology.com | Ana Hadnes Bruder |Ulrich Worm |Aymeric de Moncuit |Oliver Yaros |Mark A. Prinsley |Konstantin von Werder | +3 more
Find out more about Lexology or get in touch by visiting our About page. RegisterTo view this article you need a PDF viewer such as Adobe Reader. If you can't read this PDF, you can view its text here. Go back to the PDF.
-
Mar 12, 2024 | 
jdsupra.com | Benjamin Beck |Livia Crepaldi Wolf |Aymeric de Moncuit
The EU Data Act came into force on January 11, 2024. The Data Act is part of the European Commission’s data strategy released in February 2020 and obliges manufacturers of connected products to make use-related data available in certain circumstances. It also requires providers of data processing services (such as cloud services) to facilitate customers switching to a different provider, for instance, by providing minimal transitional services.
-
Mar 8, 2024 | 
jdsupra.com | Benjamin Beck |Livia Crepaldi Wolf |Ana Hadnes Bruder
What is a Management Body? Under both DORA and NIS2, a management body can be a body with managerial and/or supervisory functions. The powers and structure of management bodies vary within the EU Member State, and managerial and supervisory functions may be assigned to different bodies within an organization. In EU Member States where management bodies have a one-tier structure, a single board usually performs both management and supervisory functions.
-
Mar 8, 2024 | 
mondaq.com | Ana Hadnes Bruder |Ulrich Worm |Benjamin Beck |Livia Crepaldi Wolf
On February 13 2024, the European Data Protection Board
("EDPB") adopted an opinion on the concept of a data
controller's main establishment under Article 4(16)(a) of the
General Data Protection Regulation
("GDPR") and whether the one-stop-shop
mechanism can be relied upon by organisations to communicate with
just one European supervisory data protection authority
("SA") about GDPR compliance rather than
multiple SAs in up to twenty-seven countries across the European
Union.
