The European Data Protection Board (EDPB) recently adopted its final guidelines on the territorial scope of the EU General Data Protection Regulation (GDPR). In principle, the EDPB's guidelines are not binding for companies. Nevertheless, they play an important role in the interpretation of the GDPR by the courts and data protection authorities.
A shift in Guernsey's corporate and individual attitude towards the misuse of data is now central to the Office of the Data Protection Authority's (ODPA's) future approach to governance and enforcement in Guernsey. This article rounds up the key issues which the ODPA has communicated and which will dictate its approach, including changes in workplace culture and the delayed introduction of the self-funded charging system.
As the economy becomes increasingly data focused, telecoms markets across the Middle East are changing considerably. The policy framework has not always kept pace with this rapid change, and aspects of telecoms regulations are now outdated. However, personal data protection and public-private partnership (PPP) laws are starting to affect telecoms contracts and investments. Specifically, PPP laws are enabling recourse to alternative dispute resolution methods, including arbitration.
The Irish media merger regime has a long history and remains a complex part of Irish regulatory law and politics. Given the recent sharp increase in mergers of Irish and global media businesses – reflecting dramatic levels of decline in 'traditional' media consumption and 'e-substitution' leading to pressure to consolidate – the Irish media merger regime is affecting all corners of the global industry.
The Israeli Securities Authority (ISA) recently published a position statement, according to which, in cases of significant cyberattack, public companies must examine the need to issue an immediate report to their investors notifying them of the attack. While the position statement was meant only to clarify the ISA's view regarding the law and not to change the legal situation, it highlights the challenges involved in dealing with cyber events.