Definitive global law guides offering comparative analysis from top-ranked lawyers
INTRODUCTION | 6 |
Contributed by Christian Schröder and Odey Hardan, Orrick | 6 |
BELGIUM | 11 |
Law and Practice | 11 |
Contributed by Osborne Clarke | 11 |
Trends and Developments | 30 |
Contributed by Osborne Clarke | 30 |
BRAZIL | 39 |
Law and Practice | 39 |
Contributed by Lopes Pinto, Nagasse Advogados | 39 |
CHILE | 55 |
Law and Practice | 55 |
Contributed by Magliona Abogados | 55 |
CHINA | 72 |
Law and Practice | 72 |
Contributed by Zhong Lun Law Firm | 72 |
Trends and Developments | 89 |
Contributed by Global Law Office | 89 |
EGYPT | 99 |
Law and Practice | 99 |
Contributed by Shehata & Partners | 99 |
FRANCE | 122 |
Law and Practice | 122 |
Contributed by Jeantet | 122 |
Trends and Developments | 140 |
Contributed by LPA Law | 140 |
GREECE | 148 |
Law and Practice | 148 |
Contributed by Psarras, Georgountzou, Gavrilis - GKP Law Firm | 148 |
HUNGARY | 163 |
Law and Practice | 163 |
Contributed by PROVARIS Varga & Partners | 163 |
Trends and Developments | 178 |
Contributed by PROVARIS Varga & Partners | 178 |
INDIA | 185 |
Law and Practice | 185 |
Contributed by Saikrishna & Associates | 185 |
Trends and Developments | 206 |
Contributed by BTG Advaya | 206 |
INDONESIA | 211 |
Trends and Developments | 211 |
Contributed by ABNR Counsellors at Law | 211 |
ITALY | 221 |
Law and Practice | 221 |
Contributed by ICT Legal Consulting | 221 |
Trends and Developments | 238 |
Contributed by ICT Legal Consulting | 238 |
JAPAN | 246 |
Law and Practice | 246 |
Contributed by Mori Hamada & Matsumoto | 246 |
Trends and Developments | 261 |
Contributed by Oh-Ebashi LPC & Partners | 261 |
KUWAIT | 270 |
Law and Practice | 270 |
Contributed by GLA & Company | 270 |
MACAU SAR, CHINA | 284 |
Law and Practice | 284 |
Contributed by Lektou, Advogados e Notários | 284 |
Trends and Developments | 295 |
Contributed by Lektou, Advogados e Notários | 295 |
MALTA | 300 |
Law and Practice | 300 |
Contributed by Fenech & Fenech Advocates | 300 |
Trends and Developments | 315 |
Contributed by Fenech & Fenech Advocates | 315 |
MEXICO | 321 |
Law and Practice | 321 |
Contributed by Nader Hayaux & Goebel | 321 |
PAKISTAN | 333 |
Law and Practice | 333 |
Contributed by S.U.Khan Associates | 333 |
QATAR | 342 |
Law and Practice | 342 |
Contributed by GLA & Company | 342 |
SAUDI ARABIA | 355 |
Law and Practice | 355 |
Contributed by GLA & Company | 355 |
SERBIA | 370 |
Law and Practice | 370 |
Contributed by Mikijelj, Janković & Bogdanović | 370 |
Trends and Developments | 382 |
Contributed by Mikijelj, Janković & Bogdanović | 382 |
SOUTH KOREA | 387 |
Law and Practice | 387 |
Contributed by Kim & Chang | 387 |
SPAIN | 401 |
Trends and Developments | 401 |
Contributed by Broseta Abogados | 401 |
SWEDEN | 408 |
Trends and Developments | 408 |
Contributed by Gernandt & Danielsson | 408 |
SWITZERLAND | 416 |
Law and Practice | 416 |
Contributed by Walder Wyss Ltd | 416 |
Trends and Developments | 434 |
Contributed by Walder Wyss Ltd | 434 |
TAIWAN | 441 |
Law and Practice | 441 |
Contributed by Chen & Lin Attorneys-at-Law | 441 |
THAILAND | 458 |
Law and Practice | 458 |
Contributed by Chandler Mori Hamada | 458 |
Trends and Developments | 468 |
Contributed by Chandler Mori Hamada | 468 |
TÜRKIYE | 474 |
Law and Practice | 474 |
Contributed by YAZICIOGLU Legal | 474 |
UAE | 495 |
Law and Practice | 495 |
Contributed by Bizilance Legal Consultants | 495 |
Trends and Developments | 505 |
Contributed by Karm Legal Consultants | 505 |
UK | 515 |
Trends and Developments | 515 |
Contributed by Charles Russell Speechlys | 515 |
USA | 520 |
Law and Practice | 520 |
Contributed by Davis Wright Tremaine LLP | 520 |
Trends and Developments | 545 |
Contributed by Fieldfisher | 545 |
USA – GEORGIA | 551 |
Trends and Developments | 551 |
Contributed by Hilgers Graben PLLC | 551 |
USA – ILLINOIS | 558 |
Trends and Developments | 558 |
Contributed by Seyfarth Shaw LLP | 558 |
1. Legal and Regulatory Framework | 13 |
1.1 Overview of Data and Privacy-Related Laws | 13 |
1.2 Regulators | 14 |
1.3 Enforcement Proceedings and Fines | 14 |
1.4 Data Protection Fines in Practice | 15 |
1.5 AI Regulation | 16 |
1.6 Interplay Between AI and Data Protection Regulations | 17 |
2. Privacy Litigation | 18 |
2.1 General Overview | 18 |
2.2 Recent Case Law | 18 |
2.3 Collective Redress Mechanisms | 20 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 21 |
3.1 Objectives and Scope of Data Regulation | 21 |
3.2 Interaction of Data Regulation and Data Protection | 22 |
3.3 Rights and Obligations Under Applicable Data Regulation | 22 |
3.4 Regulators and Enforcement | 23 |
4. Sectoral Issues | 23 |
4.1 Use of Cookies | 23 |
4.2 Personalised Advertising and Other Online Marketing Practices | 24 |
4.3 Employment Privacy Law | 24 |
4.4 Transfer of Personal Data in Asset Deals | 26 |
5. International Considerations | 27 |
5.1 Restrictions on International Data Transfers | 27 |
5.2 Government Notifications and Approvals | 28 |
5.3 Data Localisation Requirements | 28 |
5.4 Blocking Statutes | 28 |
5.5 Recent Developments | 29 |
1. Legal and Regulatory Framework | 41 |
1.1 Overview of Data and Privacy-Related Laws | 41 |
1.2 Regulators | 42 |
1.3 Enforcement Proceedings and Fines | 42 |
1.4 Data Protection Fines in Practice | 43 |
1.5 AI Regulation | 43 |
1.6 Interplay Between AI and Data Protection Regulations | 43 |
2. Privacy Litigation | 44 |
2.1 General Overview | 44 |
2.2 Recent Case Law | 45 |
2.3 Collective Redress Mechanisms | 45 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 46 |
3.1 Objectives and Scope of Data Regulation | 46 |
3.2 Interaction of Data Regulation and Data Protection | 47 |
3.3 Rights and Obligations Under Applicable Data Regulation | 47 |
3.4 Regulators and Enforcement | 48 |
4. Sectoral Issues | 48 |
4.1 Use of Cookies | 48 |
4.2 Personalised Advertising and Other Online Marketing Practices | 49 |
4.3 Employment Privacy Law | 49 |
4.4 Transfer of Personal Data in Asset Deals | 50 |
5. International Considerations | 51 |
5.1 Restrictions on International Data Transfers | 51 |
5.2 Government Notifications and Approvals | 52 |
5.3 Data Localisation Requirements | 52 |
5.4 Blocking Statutes | 53 |
5.5 Recent Developments | 53 |
1. Legal and Regulatory Framework | 57 |
1.1 Overview of Data and Privacy-Related Laws | 57 |
1.2 Regulators | 58 |
1.3 Enforcement Proceedings and Fines | 59 |
1.4 Data Protection Fines in Practice | 59 |
1.5 AI Regulation | 60 |
1.6 Interplay Between AI and Data Protection Regulations | 62 |
2. Privacy Litigation | 63 |
2.1 General Overview | 63 |
2.2 Recent Case Law | 63 |
2.3 Collective Redress Mechanisms | 64 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 64 |
3.1 Objectives and Scope of Data Regulation | 64 |
3.2 Interaction of Data Regulation and Data Protection | 65 |
3.3 Rights and Obligations Under Applicable Data Regulation | 65 |
3.4 Regulators and Enforcement | 67 |
4. Sectoral Issues | 67 |
4.1 Use of Cookies | 67 |
4.2 Personalised Advertising and Other Online Marketing Practices | 67 |
4.3 Employment Privacy Law | 68 |
4.4 Transfer of Personal Data in Asset Deals | 68 |
5. International Considerations | 69 |
5.1 Restrictions on International Data Transfers | 69 |
5.2 Government Notifications and Approvals | 69 |
5.3 Data Localisation Requirements | 70 |
5.4 Blocking Statutes | 70 |
5.5 Recent Developments | 70 |
1. Legal and Regulatory Framework | 74 |
1.1 Overview of Data and Privacy-Related Laws | 74 |
1.2 Regulators | 74 |
1.3 Enforcement Proceedings and Fines | 75 |
1.4 Data Protection Fines in Practice | 77 |
1.5 AI Regulation | 77 |
1.6 Interplay Between AI and Data Protection Regulations | 78 |
2. Privacy Litigation | 80 |
2.1 General Overview | 80 |
2.2 Recent Case Law | 80 |
2.3 Collective Redress Mechanisms | 80 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 81 |
3.1 Objectives and Scope of Data Regulation | 81 |
3.2 Interaction of Data Regulation and Data Protection | 82 |
3.3 Rights and Obligations Under Applicable Data Regulation | 82 |
3.4 Regulators and Enforcement | 83 |
4. Sectoral Issues | 83 |
4.1 Use of Cookies | 83 |
4.2 Personalised Advertising and Other Online Marketing Practices | 84 |
4.3 Employment Privacy Law | 84 |
4.4 Transfer of Personal Data in Asset Deals | 86 |
5. International Considerations | 86 |
5.1 Restrictions on International Data Transfers | 86 |
5.2 Government Notifications and Approvals | 87 |
5.3 Data Localisation Requirements | 87 |
5.4 Blocking Statutes | 88 |
5.5 Recent Developments | 88 |
1. Legal and Regulatory Framework | 102 |
1.1 Overview of Data and Privacy-Related Laws | 102 |
1.2 Regulators | 105 |
1.3 Enforcement Proceedings and Fines | 106 |
1.4 Data Protection Fines in Practice | 107 |
1.5 AI Regulation | 107 |
1.6 Interplay Between AI and Data Protection Regulations | 108 |
2. Privacy Litigation | 109 |
2.1 General Overview | 109 |
2.2 Recent Case Law | 110 |
2.3 Collective Redress Mechanisms | 111 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 112 |
3.1 Objectives and Scope of Data Regulation | 112 |
3.2 Interaction of Data Regulation and Data Protection | 113 |
3.3 Rights and Obligations Under Applicable Data Regulation | 114 |
3.4 Regulators and Enforcement | 115 |
4. Sectoral Issues | 116 |
4.1 Use of Cookies | 116 |
4.2 Personalised Advertising and Other Online Marketing Practices | 117 |
4.3 Employment Privacy Law | 118 |
4.4 Transfer of Personal Data in Asset Deals | 118 |
5. International Considerations | 119 |
5.1 Restrictions on International Data Transfers | 119 |
5.2 Government Notifications and Approvals | 120 |
5.3 Data Localisation Requirements | 120 |
5.4 Blocking Statutes | 121 |
5.5 Recent Developments | 121 |
1. Legal and Regulatory Framework | 124 |
1.1 Overview of Data and Privacy-Related Laws | 124 |
1.2 Regulators | 124 |
1.3 Enforcement Proceedings and Fines | 125 |
1.4 Data Protection Fines in Practice | 126 |
1.5 AI Regulation | 127 |
1.6 Interplay Between AI and Data Protection Regulations | 128 |
2. Privacy Litigation | 129 |
2.1 General Overview | 129 |
2.2 Recent Case Law | 130 |
2.3 Collective Redress Mechanisms | 131 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 131 |
3.1 Objectives and Scope of Data Regulation | 131 |
3.2 Interaction of Data Regulation and Data Protection | 132 |
3.3 Rights and Obligations Under Applicable Data Regulation | 132 |
3.4 Regulators and Enforcement | 133 |
4. Sectoral Issues | 134 |
4.1 Use of Cookies | 134 |
4.2 Personalised Advertising and Other Online Marketing Practices | 135 |
4.3 Employment Privacy Law | 135 |
4.4 Transfer of Personal Data in Asset Deals | 136 |
5. International Considerations | 136 |
5.1 Restrictions on International Data Transfers | 136 |
5.2 Government Notifications and Approvals | 137 |
5.3 Data Localisation Requirements | 138 |
5.4 Blocking Statutes | 138 |
5.5 Recent Developments | 139 |
1. Legal and Regulatory Framework | 151 |
1.1 Overview of Data and Privacy-Related Laws | 151 |
1.2 Regulators | 152 |
1.3 Enforcement Proceedings and Fines | 153 |
1.4 Data Protection Fines in Practice | 153 |
1.5 AI Regulation | 154 |
1.6 Interplay Between AI and Data Protection Regulations | 154 |
2. Privacy Litigation | 154 |
2.1 General Overview | 154 |
2.2 Recent Case Law | 155 |
2.3 Collective Redress Mechanisms | 155 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 155 |
3.1 Objectives and Scope of Data Regulation | 155 |
3.2 Interaction of Data Regulation and Data Protection | 155 |
3.3 Rights and Obligations Under Applicable Data Regulation | 156 |
3.4 Regulators and Enforcement | 157 |
4. Sectoral Issues | 157 |
4.1 Use of Cookies | 157 |
4.2 Personalised Advertising and Other Online Marketing Practices | 158 |
4.3 Employment Privacy Law | 159 |
4.4 Transfer of Personal Data in Asset Deals | 159 |
5. International Considerations | 160 |
5.1 Restrictions on International Data Transfers | 160 |
5.2 Government Notifications and Approvals | 161 |
5.3 Data Localisation Requirements | 162 |
5.4 Blocking Statutes | 162 |
5.5 Recent Developments | 162 |
1. Legal and Regulatory Framework | 165 |
1.1 Overview of Data and Privacy-Related Laws | 165 |
1.2 Regulators | 167 |
1.3 Enforcement Proceedings and Fines | 167 |
1.4 Data Protection Fines in Practice | 168 |
1.5 AI Regulation | 169 |
1.6 Interplay Between AI and Data Protection Regulations | 170 |
2. Privacy Litigation | 170 |
2.1 General Overview | 170 |
2.2 Recent Case Law | 170 |
2.3 Collective Redress Mechanisms | 171 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 171 |
3.1 Objectives and Scope of Data Regulation | 171 |
3.2 Interaction of Data Regulation and Data Protection | 171 |
3.3 Rights and Obligations Under Applicable Data Regulation | 172 |
3.4 Regulators and Enforcement | 172 |
4. Sectoral Issues | 172 |
4.1 Use of Cookies | 172 |
4.2 Personalised Advertising and Other Online Marketing Practices | 173 |
4.3 Employment Privacy Law | 174 |
4.4 Transfer of Personal Data in Asset Deals | 175 |
5. International Considerations | 176 |
5.1 Restrictions on International Data Transfers | 176 |
5.2 Government Notifications and Approvals | 176 |
5.3 Data Localisation Requirements | 177 |
5.4 Blocking Statutes | 177 |
5.5 Recent Developments | 177 |
1. Legal and Regulatory Framework | 187 |
1.1 Overview of Data and Privacy-Related Laws | 187 |
1.2 Regulators | 191 |
1.3 Enforcement Proceedings and Fines | 191 |
1.4 Data Protection Fines in Practice | 192 |
1.5 AI Regulation | 192 |
1.6 Interplay Between AI and Data Protection Regulations | 194 |
2. Privacy Litigation | 194 |
2.1 General Overview | 194 |
2.2 Recent Case Law | 196 |
2.3 Collective Redress Mechanisms | 196 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 197 |
3.1 Objectives and Scope of Data Regulation | 197 |
3.2 Interaction of Data Regulation and Data Protection | 199 |
3.3 Rights and Obligations Under Applicable Data Regulation | 199 |
3.4 Regulators and Enforcement | 200 |
4. Sectoral Issues | 200 |
4.1 Use of Cookies | 200 |
4.2 Personalised Advertising and Other Online Marketing Practices | 200 |
4.3 Employment Privacy Law | 201 |
4.4 Transfer of Personal Data in Asset Deals | 201 |
5. International Considerations | 202 |
5.1 Restrictions on International Data Transfers | 202 |
5.2 Government Notifications and Approvals | 202 |
5.3 Data Localisation Requirements | 203 |
5.4 Blocking Statutes | 204 |
5.5 Recent Developments | 204 |
1. Legal and Regulatory Framework | 224 |
1.1 Overview of Data and Privacy-Related Laws | 224 |
1.2 Regulators | 224 |
1.3 Enforcement Proceedings and Fines | 224 |
1.4 Data Protection Fines in Practice | 226 |
1.5 AI Regulation | 227 |
1.6 Interplay Between AI and Data Protection Regulations | 227 |
2. Privacy Litigation | 227 |
2.1 General Overview | 227 |
2.2 Recent Case Law | 227 |
2.3 Collective Redress Mechanisms | 227 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 228 |
3.1 Objectives and Scope of Data Regulation | 228 |
3.2 Interaction of Data Regulation and Data Protection | 228 |
3.3 Rights and Obligations Under Applicable Data Regulation | 228 |
3.4 Regulators and Enforcement | 234 |
4. Sectoral Issues | 234 |
4.1 Use of Cookies | 234 |
4.2 Personalised Advertising and Other Online Marketing Practices | 234 |
4.3 Employment Privacy Law | 235 |
4.4 Transfer of Personal Data in Asset Deals | 236 |
5. International Considerations | 236 |
5.1 Restrictions on International Data Transfers | 236 |
5.2 Government Notifications and Approvals | 237 |
5.3 Data Localisation Requirements | 237 |
5.4 Blocking Statutes | 237 |
5.5 Recent Developments | 237 |
1. Legal and Regulatory Framework | 249 |
1.1 Overview of Data and Privacy-Related Laws | 249 |
1.2 Regulators | 250 |
1.3 Enforcement Proceedings and Fines | 251 |
1.4 Data Protection Fines in Practice | 251 |
1.5 AI Regulation | 252 |
1.6 Interplay Between AI and Data Protection Regulations | 252 |
2. Privacy Litigation | 252 |
2.1 General Overview | 252 |
2.2 Recent Case Law | 252 |
2.3 Collective Redress Mechanisms | 253 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 253 |
3.1 Objectives and Scope of Data Regulation | 253 |
3.2 Interaction of Data Regulation and Data Protection | 257 |
3.3 Rights and Obligations Under Applicable Data Regulation | 257 |
3.4 Regulators and Enforcement | 257 |
4. Sectoral Issues | 257 |
4.1 Use of Cookies | 257 |
4.2 Personalised Advertising and Other Online Marketing Practices | 257 |
4.3 Employment Privacy Law | 258 |
4.4 Transfer of Personal Data in Asset Deals | 259 |
5. International Considerations | 259 |
5.1 Restrictions on International Data Transfers | 259 |
5.2 Government Notifications and Approvals | 260 |
5.3 Data Localisation Requirements | 260 |
5.4 Blocking Statutes | 260 |
5.5 Recent Developments | 260 |
1. Legal and Regulatory Framework | 273 |
1.1 Overview of Data and Privacy-Related Laws | 273 |
1.2 Regulators | 274 |
1.3 Enforcement Proceedings and Fines | 274 |
1.4 Data Protection Fines in Practice | 276 |
1.5 AI Regulation | 276 |
1.6 Interplay Between AI and Data Protection Regulations | 276 |
2. Privacy Litigation | 276 |
2.1 General Overview | 276 |
2.2 Recent Case Law | 276 |
2.3 Collective Redress Mechanisms | 276 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 276 |
3.1 Objectives and Scope of Data Regulation | 276 |
3.2 Interaction of Data Regulation and Data Protection | 277 |
3.3 Rights and Obligations Under Applicable Data Regulation | 277 |
3.4 Regulators and Enforcement | 280 |
4. Sectoral Issues | 280 |
4.1 Use of Cookies | 280 |
4.2 Personalised Advertising and Other Online Marketing Practices | 281 |
4.3 Employment Privacy Law | 281 |
4.4 Transfer of Personal Data in Asset Deals | 281 |
5. International Considerations | 282 |
5.1 Restrictions on International Data Transfers | 282 |
5.2 Government Notifications and Approvals | 282 |
5.3 Data Localisation Requirements | 282 |
5.4 Blocking Statutes | 283 |
5.5 Recent Developments | 283 |
1. Legal and Regulatory Framework | 286 |
1.1 Overview of Data and Privacy-Related Laws | 286 |
1.2 Regulators | 287 |
1.3 Enforcement Proceedings and Fines | 287 |
1.4 Data Protection Fines in Practice | 290 |
1.5 AI Regulation | 290 |
1.6 Interplay Between AI and Data Protection Regulations | 290 |
2. Privacy Litigation | 290 |
2.1 General Overview | 290 |
2.2 Recent Case Law | 291 |
2.3 Collective Redress Mechanisms | 291 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 291 |
3.1 Objectives and Scope of Data Regulation | 291 |
3.2 Interaction of Data Regulation and Data Protection | 291 |
3.3 Rights and Obligations Under Applicable Data Regulation | 291 |
3.4 Regulators and Enforcement | 291 |
4. Sectoral Issues | 292 |
4.1 Use of Cookies | 292 |
4.2 Personalised Advertising and Other Online Marketing Practices | 292 |
4.3 Employment Privacy Law | 292 |
4.4 Transfer of Personal Data in Asset Deals | 293 |
5. International Considerations | 293 |
5.1 Restrictions on International Data Transfers | 293 |
5.2 Government Notifications and Approvals | 294 |
5.3 Data Localisation Requirements | 294 |
5.4 Blocking Statutes | 294 |
5.5 Recent Developments | 294 |
1. Legal and Regulatory Framework | 303 |
1.1 Overview of Data and Privacy-Related Laws | 303 |
1.2 Regulators | 306 |
1.3 Enforcement Proceedings and Fines | 307 |
1.4 Data Protection Fines in Practice | 308 |
1.5 AI Regulation | 308 |
1.6 Interplay Between AI and Data Protection Regulations | 309 |
2. Privacy Litigation | 309 |
2.1 General Overview | 309 |
2.2 Recent Case Law | 309 |
2.3 Collective Redress Mechanisms | 310 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 311 |
3.1 Objectives and Scope of Data Regulation | 311 |
3.2 Interaction of Data Regulation and Data Protection | 311 |
3.3 Rights and Obligations Under Applicable Data Regulation | 311 |
3.4 Regulators and Enforcement | 311 |
4. Sectoral Issues | 311 |
4.1 Use of Cookies | 311 |
4.2 Personalised Advertising and Other Online Marketing Practices | 312 |
4.3 Employment Privacy Law | 312 |
4.4 Transfer of Personal Data in Asset Deals | 312 |
5. International Considerations | 313 |
5.1 Restrictions on International Data Transfers | 313 |
5.2 Government Notifications and Approvals | 313 |
5.3 Data Localisation Requirements | 313 |
5.4 Blocking Statutes | 313 |
5.5 Recent Developments | 314 |
1. Legal and Regulatory Framework | 324 |
1.1 Overview of Data and Privacy-Related Laws | 324 |
1.2 Regulators | 324 |
1.3 Enforcement Proceedings and Fines | 325 |
1.4 Data Protection Fines in Practice | 326 |
1.5 AI Regulation | 326 |
1.6 Interplay Between AI and Data Protection Regulations | 327 |
2. Privacy Litigation | 327 |
2.1 General Overview | 327 |
2.2 Recent Case Law | 327 |
2.3 Collective Redress Mechanisms | 328 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 328 |
3.1 Objectives and Scope of Data Regulation | 328 |
3.2 Interaction of Data Regulation and Data Protection | 328 |
3.3 Rights and Obligations Under Applicable Data Regulation | 328 |
3.4 Regulators and Enforcement | 329 |
4. Sectoral Issues | 329 |
4.1 Use of Cookies | 329 |
4.2 Personalised Advertising and Other Online Marketing Practices | 329 |
4.3 Employment Privacy Law | 329 |
4.4 Transfer of Personal Data in Asset Deals | 330 |
5. International Considerations | 331 |
5.1 Restrictions on International Data Transfers | 331 |
5.2 Government Notifications and Approvals | 331 |
5.3 Data Localisation Requirements | 331 |
5.4 Blocking Statutes | 332 |
5.5 Recent Developments | 332 |
1. Legal and Regulatory Framework | 335 |
1.1 Overview of Data and Privacy-Related Laws | 335 |
1.2 Regulators | 336 |
1.3 Enforcement Proceedings and Fines | 336 |
1.4 Data Protection Fines in Practice | 337 |
1.5 AI Regulation | 337 |
1.6 Interplay Between AI and Data Protection Regulations | 337 |
2. Privacy Litigation | 338 |
2.1 General Overview | 338 |
2.2 Recent Case Law | 338 |
2.3 Collective Redress Mechanisms | 338 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 338 |
3.1 Objectives and Scope of Data Regulation | 338 |
3.2 Interaction of Data Regulation and Data Protection | 339 |
3.3 Rights and Obligations Under Applicable Data Regulation | 339 |
3.4 Regulators and Enforcement | 339 |
4. Sectoral Issues | 339 |
4.1 Use of Cookies | 339 |
4.2 Personalised Advertising and Other Online Marketing Practices | 339 |
4.3 Employment Privacy Law | 340 |
4.4 Transfer of Personal Data in Asset Deals | 340 |
5. International Considerations | 341 |
5.1 Restrictions on International Data Transfers | 341 |
5.2 Government Notifications and Approvals | 341 |
5.3 Data Localisation Requirements | 341 |
5.4 Blocking Statutes | 341 |
5.5 Recent Developments | 341 |
1. Legal and Regulatory Framework | 345 |
1.1 Overview of Data and Privacy-Related Laws | 345 |
1.2 Regulators | 345 |
1.3 Enforcement Proceedings and Fines | 346 |
1.4 Data Protection Fines in Practice | 346 |
1.5 AI Regulation | 346 |
1.6 Interplay Between AI and Data Protection Regulations | 347 |
2. Privacy Litigation | 347 |
2.1 General Overview | 347 |
2.2 Recent Case Law | 351 |
2.3 Collective Redress Mechanisms | 351 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 351 |
3.1 Objectives and Scope of Data Regulation | 351 |
3.2 Interaction of Data Regulation and Data Protection | 351 |
3.3 Rights and Obligations Under Applicable Data Regulation | 352 |
3.4 Regulators and Enforcement | 352 |
4. Sectoral Issues | 352 |
4.1 Use of Cookies | 352 |
4.2 Personalised Advertising and Other Online Marketing Practices | 352 |
4.3 Employment Privacy Law | 352 |
4.4 Transfer of Personal Data in Asset Deals | 353 |
5. International Considerations | 353 |
5.1 Restrictions on International Data Transfers | 353 |
5.2 Government Notifications and Approvals | 353 |
5.3 Data Localisation Requirements | 353 |
5.4 Blocking Statutes | 354 |
5.5 Recent Developments | 354 |
1. Legal and Regulatory Framework | 358 |
1.1 Overview of Data and Privacy-Related Laws | 358 |
1.2 Regulators | 359 |
1.3 Enforcement Proceedings and Fines | 359 |
1.4 Data Protection Fines in Practice | 359 |
1.5 AI Regulation | 360 |
1.6 Interplay Between AI and Data Protection Regulations | 361 |
2. Privacy Litigation | 361 |
2.1 General Overview | 361 |
2.2 Recent Case Law | 361 |
2.3 Collective Redress Mechanisms | 362 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 362 |
3.1 Objectives and Scope of Data Regulation | 362 |
3.2 Interaction of Data Regulation and Data Protection | 363 |
3.3 Rights and Obligations Under Applicable Data Regulation | 363 |
3.4 Regulators and Enforcement | 365 |
4. Sectoral Issues | 365 |
4.1 Use of Cookies | 365 |
4.2 Personalised Advertising and Other Online Marketing Practices | 365 |
4.3 Employment Privacy Law | 366 |
4.4 Transfer of Personal Data in Asset Deals | 366 |
5. International Considerations | 366 |
5.1 Restrictions on International Data Transfers | 366 |
5.2 Government Notifications and Approvals | 367 |
5.3 Data Localisation Requirements | 368 |
5.4 Blocking Statutes | 368 |
5.5 Recent Developments | 369 |
1. Legal and Regulatory Framework | 372 |
1.1 Overview of Data and Privacy-Related Laws | 372 |
1.2 Regulators | 373 |
1.3 Enforcement Proceedings and Fines | 374 |
1.4 Data Protection Fines in Practice | 375 |
1.5 AI Regulation | 376 |
1.6 Interplay Between AI and Data Protection Regulations | 377 |
2. Privacy Litigation | 377 |
2.1 General Overview | 377 |
2.2 Recent Case Law | 377 |
2.3 Collective Redress Mechanisms | 378 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 378 |
3.1 Objectives and Scope of Data Regulation | 378 |
3.2 Interaction of Data Regulation and Data Protection | 378 |
3.3 Rights and Obligations Under Applicable Data Regulation | 378 |
3.4 Regulators and Enforcement | 378 |
4. Sectoral Issues | 378 |
4.1 Use of Cookies | 378 |
4.2 Personalised Advertising and Other Online Marketing Practices | 378 |
4.3 Employment Privacy Law | 378 |
4.4 Transfer of Personal Data in Asset Deals | 379 |
5. International Considerations | 379 |
5.1 Restrictions on International Data Transfers | 379 |
5.2 Government Notifications and Approvals | 381 |
5.3 Data Localisation Requirements | 381 |
5.4 Blocking Statutes | 381 |
5.5 Recent Developments | 381 |
1. Legal and Regulatory Framework | 389 |
1.1 Overview of Data and Privacy-Related Laws | 389 |
1.2 Regulators | 389 |
1.3 Enforcement Proceedings and Fines | 390 |
1.4 Data Protection Fines in Practice | 390 |
1.5 AI Regulation | 391 |
1.6 Interplay Between AI and Data Protection Regulations | 392 |
2. Privacy Litigation | 393 |
2.1 General Overview | 393 |
2.2 Recent Case Law | 393 |
2.3 Collective Redress Mechanisms | 394 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 394 |
3.1 Objectives and Scope of Data Regulation | 394 |
3.2 Interaction of Data Regulation and Data Protection | 395 |
3.3 Rights and Obligations Under Applicable Data Regulation | 396 |
3.4 Regulators and Enforcement | 396 |
4. Sectoral Issues | 396 |
4.1 Use of Cookies | 396 |
4.2 Personalised Advertising and Other Online Marketing Practices | 397 |
4.3 Employment Privacy Law | 397 |
4.4 Transfer of Personal Data in Asset Deals | 398 |
5. International Considerations | 399 |
5.1 Restrictions on International Data Transfers | 399 |
5.2 Government Notifications and Approvals | 400 |
5.3 Data Localisation Requirements | 400 |
5.4 Blocking Statutes | 400 |
5.5 Recent Developments | 400 |
1. Legal and Regulatory Framework | 418 |
1.1 Overview of Data and Privacy-Related Laws | 418 |
1.2 Regulators | 420 |
1.3 Enforcement Proceedings and Fines | 421 |
1.4 Data Protection Fines in Practice | 422 |
1.5 AI Regulation | 422 |
1.6 Interplay Between AI and Data Protection Regulations | 424 |
2. Privacy Litigation | 424 |
2.1 General Overview | 424 |
2.2 Recent Case Law | 426 |
2.3 Collective Redress Mechanisms | 426 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 427 |
3.1 Objectives and Scope of Data Regulation | 427 |
3.2 Interaction of Data Regulation and Data Protection | 427 |
3.3 Rights and Obligations Under Applicable Data Regulation | 427 |
3.4 Regulators and Enforcement | 427 |
4. Sectoral Issues | 427 |
4.1 Use of Cookies | 427 |
4.2 Personalised Advertising and Other Online Marketing Practices | 428 |
4.3 Employment Privacy Law | 428 |
4.4 Transfer of Personal Data in Asset Deals | 429 |
5. International Considerations | 429 |
5.1 Restrictions on International Data Transfers | 429 |
5.2 Government Notifications and Approvals | 431 |
5.3 Data Localisation Requirements | 431 |
5.4 Blocking Statutes | 431 |
5.5 Recent Developments | 432 |
1. Legal and Regulatory Framework | 444 |
1.1 Overview of Data and Privacy-Related Laws | 444 |
1.2 Regulators | 445 |
1.3 Enforcement Proceedings and Fines | 446 |
1.4 Data Protection Fines in Practice | 447 |
1.5 AI Regulation | 449 |
1.6 Interplay Between AI and Data Protection Regulations | 449 |
2. Privacy Litigation | 449 |
2.1 General Overview | 449 |
2.2 Recent Case Law | 450 |
2.3 Collective Redress Mechanisms | 451 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 452 |
3.1 Objectives and Scope of Data Regulation | 452 |
3.2 Interaction of Data Regulation and Data Protection | 453 |
3.3 Rights and Obligations Under Applicable Data Regulation | 453 |
3.4 Regulators and Enforcement | 453 |
4. Sectoral Issues | 453 |
4.1 Use of Cookies | 453 |
4.2 Personalised Advertising and Other Online Marketing Practices | 454 |
4.3 Employment Privacy Law | 454 |
4.4 Transfer of Personal Data in Asset Deals | 456 |
5. International Considerations | 456 |
5.1 Restrictions on International Data Transfers | 456 |
5.2 Government Notifications and Approvals | 457 |
5.3 Data Localisation Requirements | 457 |
5.4 Blocking Statutes | 457 |
5.5 Recent Developments | 457 |
1. Legal and Regulatory Framework | 460 |
1.1 Overview of Data and Privacy-Related Laws | 460 |
1.2 Regulators | 461 |
1.3 Enforcement Proceedings and Fines | 461 |
1.4 Data Protection Fines in Practice | 462 |
1.5 AI Regulation | 462 |
1.6 Interplay Between AI and Data Protection Regulations | 462 |
2. Privacy Litigation | 462 |
2.1 General Overview | 462 |
2.2 Recent Case Law | 463 |
2.3 Collective Redress Mechanisms | 463 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 463 |
3.1 Objectives and Scope of Data Regulation | 463 |
3.2 Interaction of Data Regulation and Data Protection | 464 |
3.3 Rights and Obligations Under Applicable Data Regulation | 464 |
3.4 Regulators and Enforcement | 464 |
4. Sectoral Issues | 464 |
4.1 Use of Cookies | 464 |
4.2 Personalised Advertising and Other Online Marketing Practices | 465 |
4.3 Employment Privacy Law | 465 |
4.4 Transfer of Personal Data in Asset Deals | 465 |
5. International Considerations | 466 |
5.1 Restrictions on International Data Transfers | 466 |
5.2 Government Notifications and Approvals | 466 |
5.3 Data Localisation Requirements | 466 |
5.4 Blocking Statutes | 467 |
5.5 Recent Developments | 467 |
1. Legal and Regulatory Framework | 476 |
1.1 Overview of Data and Privacy-Related Laws | 476 |
1.2 Regulators | 478 |
1.3 Enforcement Proceedings and Fines | 478 |
1.4 Data Protection Fines in Practice | 479 |
1.5 AI Regulation | 480 |
1.6 Interplay Between AI and Data Protection Regulations | 481 |
2. Privacy Litigation | 481 |
2.1 General Overview | 481 |
2.2 Recent Case Law | 482 |
2.3 Collective Redress Mechanisms | 482 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 482 |
3.1 Objectives and Scope of Data Regulation | 482 |
3.2 Interaction of Data Regulation and Data Protection | 483 |
3.3 Rights and Obligations Under Applicable Data Regulation | 483 |
3.4 Regulators and Enforcement | 484 |
4. Sectoral Issues | 484 |
4.1 Use of Cookies | 484 |
4.2 Personalised Advertising and Other Online Marketing Practices | 486 |
4.3 Employment Privacy Law | 486 |
4.4 Transfer of Personal Data in Asset Deals | 489 |
5. International Considerations | 489 |
5.1 Restrictions on International Data Transfers | 489 |
5.2 Government Notifications and Approvals | 492 |
5.3 Data Localisation Requirements | 492 |
5.4 Blocking Statutes | 493 |
5.5 Recent Developments | 493 |
1. Legal and Regulatory Framework | 497 |
1.1 Overview of Data and Privacy-Related Laws | 497 |
1.2 Regulators | 498 |
1.3 Enforcement Proceedings and Fines | 498 |
1.4 Data Protection Fines in Practice | 499 |
1.5 AI Regulation | 499 |
1.6 Interplay Between AI and Data Protection Regulations | 500 |
2. Privacy Litigation | 500 |
2.1 General Overview | 500 |
2.2 Recent Case Law | 500 |
2.3 Collective Redress Mechanisms | 500 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 500 |
3.1 Objectives and Scope of Data Regulation | 500 |
3.2 Interaction of Data Regulation and Data Protection | 501 |
3.3 Rights and Obligations Under Applicable Data Regulation | 502 |
3.4 Regulators and Enforcement | 502 |
4. Sectoral Issues | 502 |
4.1 Use of Cookies | 502 |
4.2 Personalised Advertising and Other Online Marketing Practices | 502 |
4.3 Employment Privacy Law | 503 |
4.4 Transfer of Personal Data in Asset Deals | 503 |
5. International Considerations | 503 |
5.1 Restrictions on International Data Transfers | 503 |
5.2 Government Notifications and Approvals | 503 |
5.3 Data Localisation Requirements | 503 |
5.4 Blocking Statutes | 504 |
5.5 Recent Developments | 504 |
1. Legal and Regulatory Framework | 524 |
1.1 Overview of Data and Privacy-Related Laws | 524 |
1.2 Regulators | 534 |
1.3 Enforcement Proceedings and Fines | 535 |
1.4 Data Protection Fines in Practice | 535 |
1.5 AI Regulation | 536 |
1.6 Interplay Between AI and Data Protection Regulations | 536 |
2. Privacy Litigation | 537 |
2.1 General Overview | 537 |
2.2 Recent Case Law | 538 |
2.3 Collective Redress Mechanisms | 538 |
3. Data Regulation on IoT Providers, Data Holders and Data Processing Services | 539 |
3.1 Objectives and Scope of Data Regulation | 539 |
3.2 Interaction of Data Regulation and Data Protection | 540 |
3.3 Rights and Obligations Under Applicable Data Regulation | 540 |
3.4 Regulators and Enforcement | 540 |
4. Sectoral Issues | 540 |
4.1 Use of Cookies | 540 |
4.2 Personalised Advertising and Other Online Marketing Practices | 541 |
4.3 Employment Privacy Law | 541 |
4.4 Transfer of Personal Data in Asset Deals | 542 |
5. International Considerations | 543 |
5.1 Restrictions on International Data Transfers | 543 |
5.2 Government Notifications and Approvals | 544 |
5.3 Data Localisation Requirements | 544 |
5.4 Blocking Statutes | 544 |
5.5 Recent Developments | 544 |
Powered by FlippingBook