Gramm-Leach-Bliley Act

Gramm-Leach-Bliley Act

The US Gramm-Leach-Bliley Act (GLBA), also known as the Financial Services Modernization Act of 1999, requires US-based financial institutions – companies that offer consumers financial products or services like loans, financial or investment advice, or insurance – to explain their information-sharing practices to their customers and to safeguard sensitive personal data. The GLBA primarily seeks to “modernize” financial services by […]

What is HIPAA Compliance?

What is HIPAA Compliance?

HIPAA, the US Health Insurance Portability and Accountability Act 1996, establishes the standard for protecting sensitive patient data. Any organisation that deals with protected health information (PHI) must ensure that all the required physical, network, and process security measures are in place and followed. This includes covered entities, anyone who provides treatment, payment and operations […]

Brazil’s Internet Bill of Rights

Brazil’s Internet Bill of Rights

In April 2014 Brazil passed the world’s first Internet Bill of Rights. The Marco Civil da Internet guarantees basic protections for Internet users, and is considered a major step forward for online law. Dubbed Brazil’s ‘Internet Constitution’ the Bill of Rights has catapulted Brazil to a progressive position in digital policymaking, potentially serving as a model for other countries trying to balance user rights against interests of […]

European Court Declares Data Retention Directive Invalid

European Court Declares Data Retention Directive Invalid

On 8 April 2014 the European Court of Justice ruled that the Data Retention Directive 2006/24/EC interferes in a particularly serious manner with the fundamental rights to respect for private life and to the protection of personal data. The Directive is declared invalid. Today’s guest post by Sylvie Rousseau and Matthias Vierstraete explains what the court decided […]

No legal certainty for SMEs with Data Protection Reform

No legal certainty for SMEs with Data Protection Reform

The proposed General Data Protection Regulation (GDPR) continues to cause controversy, despite the political agreement reached this week on a compromise text in the European Parliament’s Committee on Civil Liberties, Justice and Home Affairs (LIBE). Despite over 4,000 tabled amendments made to date, the GDPR won’t provide a single framework for Data Protection in Europe. This will […]