The GDPR affects all businesses and was enacted on 25 May 2018. It has introduced substantial changes to data protection law, and businesses should ensure they have taken the necessary steps to comply with the new rules.
Contact UsThe European Commission has published its draft e-Privacy Regulation which, if adopted, will replace the existing e-Privacy Directive.
GDPRThe General Data Protection Regulations (GDPR) will come into force on 25 May 2018. All Hospitals, Healthcare Organisations (HCOs) and Healthcare Practitioners (HCPs), as data controllers and processors must comply with the new law by this date. Cliona Christle, joint Head of the Firm’s Life Sciences and Healthcare Group highlights,, some of the main changes and obligations for organisations as da
GDPRThe Article 29 Working Party has issued a press release and three sets of guidelines and FAQs on implementation of some key issues under the GDPR.
GDPRThis article examines the concept of "personal data", in light of the recent ruling of the European Court of Justice in Breyer (C-582/14), the Irish Data Protection Commissioner’s Guidance on Pseudonymous and Anonymous Data, and the incoming GDPR.
GDPRThe ODPC has published guidance, The GDPR and You - Preparing for 2018, to help organisations prepare for the GDPR.
TechnologyOn 5 October 2016, our IP & Technology team hosted a seminar on the new EU General Data Regulation (GDPR), which takes effect from 25 May 2018. The Data Protection Commissioner, Helen Dixon, gave a keynote address at the event, which was followed by commentary from our IP and Technology Partners, John Whelan, John Cahir, Mark Rasdale and Claire Morrissey.
TechnologyThe European Commission has today adopted the Privacy Shield. The Privacy Shield is intended to provide a framework for EU-US data transfers.
GDPRThe judgment runs to 28 pages and it contains some far-reaching pronouncements on the citizen's right to privacy and the limits to state interference with that right. These aspects of the CJEU's judgment will have reverberations for years to come. However, the CJEU has made just two findings that have immediate legal consequences, namely:
TechnologyThe Court of Justice of the European Union (CJEU) has declared that the Commission's US Safe Harbour Decision 200/520 is invalid
GDPRRecent high profile security incidents illustrate that no institution or business is immune from cyber attack. A cyber attack on the White House in 2014 resulted in a partial shutdown of its email system.
TechnologyThis article examines a recent English High Court decision, which highlights the diverging approaches of the English and Irish Courts to Data Subject Access Requests.
GDPRThe High Court, in In the Matter for Mount Carmel Medical Group (South Dublin) Ltd (In Liquidation) [2015] IEHC 450 considered the issue of who is a data controller under data protection law in respect of data held by a company in liquidation.
GDPR
