Skip to content

White Label

Our Blog

Global
Data Protection

Processing Retrospective Data in Clinical Research

One of the most demanding challenges in clinical research is to establish a clear framework for the lawful and ethical use of retrospective data. Retrospective data represents a valuable source of information for research projects; however, it is typically collected for purposes unrelated to the research’s objectives. This gives rise to concerns such as the potential for unlawful repurposing of

Read More »
Governance
Cookies

Increasing enforcement with regard to the cookie banners

Cookies have been at the center of data protection discussions for a long time, but recently the focus on the implementation of cookies has increased significantly. This blog post provides some insight into the most recent changes with regard to data protection authorities’ opinion on the implementation of cookie banners since the European Data Protection Board’s Cookie Banner Taskforce report.

Read More »
Governance Program
Compliance

KSA Takes on Personal Data Protection

As Saudi Arabia introduces its Personal Data Protection Law (PDPL), organizations based in the region should be aware of its data protection requirements, and those operating internationally must be able to comply with the diverse legal regimes.  Drawing from the principles of the GDPR, the PDPL shares many similarities. Yet, it brings its unique characteristics, affecting procedures, legal bases, and

Read More »
Data Protection Officer

THE ROLE OF THE DPO IN GCC COUNTRIES

The Data Protection Officer (DPO) role has become a global profession. Although the practice of appointing a DPO previously existed in several countries around the globe, recently, there have been major developments in Gulf Cooperation Council (GCC) countries. Organizations should evaluate whether these new requirements apply to them and whether they should appoint a DPO.   In this white paper, we explain

Read More »
Governance
Data Protection

Major Updates on Privacy Reforms in Australia

Over the last three years, the Attorney-General’s Department has conducted a Review of the Privacy Act 1988 (Cth). On 28 September, the Government Response to the Privacy Act Review Report was published. This Government Response comes eight months after the Attorney-General’s Department published the Privacy Act Review Report 2022, a 320-page document outlining 116 recommendations and proposals resulting from extensive

Read More »
Data Transfers

The EU Commission has signed the EU-US Data Privacy Framework. What should companies do now?

On July 10, 2023, the European Commission (EC) adopted an Adequacy Decision regarding the EU-U.S. Data Privacy Framework (DPF). The decision taken by the EC regarding the EU-U.S. DPF enables organisations to certify their compliance with the EU-U.S. DPF, simplifying the process of transferring personal data from the EU to the U.S. The EU-U.S. DPF represents a significant step in

Read More »

Navigating the Risks of Large Language Models

White Label Navigating the Risks of Large Language Models The emergence of powerful Large Language Models (LLM) led businesses to consider the implementation of these technologies in their daily activities. LLMs have the potential to improve business productivity and efficiency, but they can also be an additional risk factor that should be evaluated to ensure compliance with legal obligations. At

Read More »
Puzzle
controller

Privacy basics: The relationship between controllers

This is the first post of the new series “Privacy basics”. As a privacy and data protection consultancy, we know the challenges of this field can be highly complex, but the first step to efficiently tackle them is to understand the core concepts.  The purpose of this blog series is to explain in a simple and engaging manner the most important privacy concepts. Stay tuned: we will continue to publish more bite size articles in due course.    “Am I a controller?”   How many times do we hear this question? As mentioned by our Partner

Read More »
Governance

Learning from the EU lawmakers – is GDPR a show-stopper or an enabler?

In November 2020, the European Commission (“EC”) put forward a proposal for a regulation on data governance (“Act” or “Proposal”). As part of the process, EC asked the EDPB (European Data Protection Body) and the EDPS (European Data Protection Supervisor) for their comments to the Proposal. On 9 March, the EU data protection bodies reverted with their comments.  The draft Proposal and the

Read More »
AI and Machine Learning in the DPIA
Artificial Intelligence

Artificial Intelligence and the GDPR: incompatible realities?

Introduction This article explores one of the ongoing criticisms made of the GDPR and seeks to explain why one specific emerging technology – Artificial Intelligence (AI) – is causing so much fuss in the field of data protection. Is regulatory reform the only answer to the never-ending technological progress?  When the father begins to doubt his own son  Axel Voss, one of the fathers of the GDPR, believes the GDPR is already out of date and needs to be revised. Voss suggested to the Financial Times the GDPR

Read More »