Category: GDPR

How Big-Tech Barons Smash Innovation

Posted on 30 October 20228 December 2022 by Ian Brown

I enjoyed listening to Ariel Ezrachi and Maurice Stucke’s new book on competition policy and innovation more than I expected. How Big-Tech Barons Smash Innovation—and How to Strike Back is beautifully written and full of zingers.

Competition, DMA, GDPR, Interoperability, Policy, Regulation

Leave a comment

Laptop showing EU flag containing padlock

The proposed new UK data protection regime & the continuing UK surveillance regime

Posted on 28 October 202228 October 2022 by Douwe Korff

If the Data Protection and Digital Information Bill is adopted as proposed, the UK data protection regime will be significantly less strict than – i.e., not “essentially equivalent” to – the EU GDPR regime, and undermine the EU regime.

Adequacy, GDPR, Surveillance

Leave a comment

Statue of Benjamin Franklin in front of Washington DC’s Old Post Office building

Will the EU-US Privacy Framework succeed where the Privacy Shield and Safe Harbour failed?

Posted on 11 April 202211 April 2022 by Ian Brown

The EU and US announced on 25 March they have “agreed in principle on a new Trans-Atlantic Data Privacy Framework”. But there is little in the announcement of the “political”/“in principle” agreement suggesting the EU Court of Justice’s high standards will be met.

Adequacy, CFR, GDPR, Surveillance

Leave a comment

European Commission responds to Parliament’s resolution on UK adequacy

Posted on 30 September 2021 by Douwe Korff

A Brussels friend shared this response from the European Commission to the Parliament, regarding its resolution on UK adequacy. My comments are interspersed.

Adequacy, GDPR, Surveillance

Leave a comment

Comments on Tene’s quick notes on UK GDPR consultation

Posted on 25 September 202125 September 2021 by Douwe Korff

Comments on Omer Tene’s quick notes on the UK GDPR reform consultation, focusing mainly on the implications for data transfers and more in particular for onward transfers of personal data first transferred from the EU/EEA to the UK under the recently adopted EU Commission GDPR adequacy decision on the UK.

Adequacy, Brexit, GDPR

Leave a comment

Amid the spying by EU Member States’ intelligence agencies, is EU law silent?

Posted on 27 August 202127 August 2021 by Douwe Korff

I have been thinking further about the implications in terms of the GDPR of undue access to personal data on EU persons (and others) by EU Member States’ intelligence agencies. I believe that the Court’s recognition of the regrettable “hole” in the Treaties need not be the end in this regard. In this draft paper, I discuss my line of reasoning.

GDPR, Human rights, Surveillance

Leave a comment

Personal data transfers from the EU/EEA to Israel & the Occupied Territories

Posted on 15 July 202115 July 2021 by Douwe Korff

This opinion, prepared for the European Middle East Project, seeks to contribute to discussions about the future of personal data flows between the EU and Israel and the Occupied Territories (OTs).

Adequacy, GDPR, Surveillance

Leave a comment

Exchanges of personal data after the Schrems II judgment

Posted on 12 July 202112 July 2021 by Ian Brown

Delighted to see the European Parliament has published our new study on exchanges of personal data after the Schrems II judgment after several months of research. Our key findings are below, but there is a wealth of information in the 120 pages of the report!

Adequacy, GDPR, Human rights, Surveillance

One comment

Did Lisbon’s mayor break the GDPR by handing data of anti-Kremlin activists to the Russian Embassy?

Posted on 17 June 202117 June 2021 by Douwe Korff

Lisbon’s mayor, Fernando Medina, has faced severe criticism since his officials sent information about organisers of an anti-Kremlin demonstration to the Russian embassy in Lisbon. Did the Lisbon council break the GDPR by doing so?

GDPR, Surveillance

Leave a comment