Privacy Shield is an EU-instigated unilateral agreement that obliges the US to protect the personal data of US citizens that came into force on 1 Aug 2016. It’s fair to say that since then, Privacy Shield has not been considered the lighthouse of data privacy law. The history of US corporate observance is far less…
Data privacy in the UK has hardly been a quiet topic in recent months, but there have been two news stories from the last few weeks of particular note. They are each remarkable individually. Put side by side, they show a trend that is more thought-provoking than the sum of their parts. It was announced…
Back in August, Brazil approved its General Data Protection Law (or the LGPD, standing for the Lei Geral de Proteção de Dados Pessoais in Portugese). It will come into effect in early 2020, echoing the approximate timeframe of the GDPR’s implementation period. In short, the LGPD is very similar to the GDPR. Not because of…
The launch of the Data Privacy Periodic Table earlier this month was a roaring success. We’ve received some excellent feedback, and some people are even printing it off for their office walls! Some of the comments we’ve received: “Not seen anything like this before.” “Very useful for the project I am working on right now.”…
Calligo is delighted to announce that it has passed two fundamental compliance audit requirements for the provision of its IT and Business Cloud Services: ISO 9001:2015 – Quality Management System ISO/IEC 27001:2013 – Information Security Management System What this means for our customers ISO 9001:2015 – Quality Management System Aligning our processes with ISO…
Today we’re launching our Data Privacy Periodic Table – the first ever collection of the key “elements” of the data privacy world. As with the real periodic table, the elements are ordered into suitable categories, and it will be regularly updated as new elements come to light. We have categorised the elements mimicking the traits of…
Data privacy is naturally fast-moving and ever-changing and the last few weeks have been no exception. Following our blogs about Japan and India recently, another pair of key data privacy announcements were made – one on the frustrating delays to the EU’s ePrivacy Regulation, and a remarkable declaration of intent from Bahrain. ePrivacy Regulation…
India has just passed draft language for its first ever separate data privacy law: The Personal Data Protection Bill 2018. Data privacy is not an entirely new subject for India’s legislators – there were some data privacy provisions in the Information Technology Act of 2000, though strictly speaking, these were information security recommendations rather than…
On Tuesday this week, the EU and Japan successfully concluded their talks on reciprocal adequacy. What does this mean? Generally speaking, it means that the two nations recognise each other’s data protection systems as “equivalent”, and therefore agree that data can flow between them as of the implementation date later this year. The announcement also…
The International Association of Privacy Professionals (IAPP), the world’s largest information privacy organization, recently asked us to pen an article on the recently-passed CLOUD Act. This new legislation’s intention was simple: to facilitate the process for the US government to gain access to potentially vital data in the interest of national security when held on…