Showing Posts In "France" Category





NEW INVESTIGATION PROGRAM OF THE FRENCH CNIL FOR 2018

The French data protection authority (CNIL) has published its annual investigation program for 2018, and the report indicates that the CNIL intends to conduct more than 300 investigations and will focus on verifying GDPR compliance. It will investigate whether organizations are in compliance with the new obligations of the GDPR, including the right to portability […]


DRAFT DATA PROTECTION LAW ONE STEP CLOSER TO A FINAL VERSION

The French National Assembly has adopted a draft law to ensure compliance with the GDPR. The draft law includes amendments such as the consent age of 15 years for the processing of personal data of children; a new right to information in criminal matters; and the new right to claim damages in a data protection […]


CNIL NEW SECURITY GUIDELINES

The French data protection authority has published new guidelines on the security of personal data, with practical recommendations to help businesses implement appropriate measures to protect personal data in compliance with the GDPR. Although the GDPR provides some guidance, the CNIL acknowledges that determination may be difficult for businesses that are unfamiliar with risk management […]


ACCELERATED GDPR BILL LIMITED IN SCOPE

The Ministry of Justice has published a draft law to amend Act No. 78-17 on Data Processing, Data Files and Individual Liberties in light of the General Data Protection Regulation (GDPR) as well as the Data Protection Directive with Respect to Law Enforcement (Directive (EU). Marc Lemprire, Partner at Almain Avocats, noted that the draft […]


France Adopts Class Action Regime for Data Protection Violations

In November, the French government enacted a bill that establishes a general class action regime and includes specific provisions regarding data protection violations that go beyond those already in place for consumers. The provisions add a right to class actions for data protection violations regardless of industry sector. The class actions now can be initiated […]


CLASS ACTION ALLOWED IN FRANCE FOR DATA BREACHES

Citizens in France can now take class action when their data protection has been violated. The new Act allows for class actions for discriminations, health, environment and data protection. The Act has a limited list of organizations that will be able to take actions on behalf of individuals, provided that individuals suffer damage as a […]


France Adopts Digital Republic Law

On 7th October, the French Digital Republic Act (“Loi n°2016-1321 pour une République numérique“) came into. This law introduces new provisions that will regulate the digital economy as a whole. For privacy professionals, this law is important as it introduces several key amendments under the French Data Protection Act of 1978 and other laws, prior to […]


CNIL Exempts Foreign Based Companies From Filing Notifications With Respect to Certain Processing

A “Deliberation” of the CNIL (French Data Protection Authority) published in the February 16, 2011 Official Journal of the Republic of France as “Deliberation No. 2011-023” should ease the burden on companies that have no operations in France, and engage France-based subcontractors (or cloud service providers) in order to process their data on the French […]


French Data Protection Authority Simplifies Formalities For Non-EU Companies Using Data Processors

In a decision published on 2 March 2011, the French data protection authority (the “CNIL”) announced a simplification of the formalities regarding data processing in France done on behalf of non-EU entities. In consideration of the development of such services in the fields of human resources or client and prospect management, the CNIL, using its […]




SUBSCRIBE TO OUR NEWSLETTERS

the global background screener
the background buzz