The central objection raised is a predictable one, and one that some analysts believe will inevitably cause the EU-US data transfer proposal to fail yet another court challenge if it makes it to implementation: the lack of a federal-level data privacy law in the US.
DLA Piper Annual GDPR and Data Breach Report: 2022 a Record Year for GDPR Fines Despite Drop in Breach Count
With a total of €2.92 billion levied throughout the bloc in 2022, GDPR fines are up in spite of a small drop in the overall data breach count as the bloc eyes stronger regulation for AI.
The European Commission has released its proposal for a comprehensive framework of cybersecurity requirements for products with digital elements in the EU – the EU Cyber Resilience Act. This is an important step towards a more robust harmonized set of cybersecurity rules.
New EU anti-money laundering regulations currently under discussion would include a ban on privacy coins such as Dash, Monero and Zcash that add further layers of anonymity to the standard blockchain transaction.
Smart Devices Adding Security Updates to Combat Vulnerabilities, but EU Consumers Remain Unimpressed
Research finds that a number of manufacturers are not providing security updates for smart devices for nearly as long as their expected life cycles. In addition, manufacturers often do not specify exactly how long they plan to support security updates.
Long the weakest link in networks, smart devices and similar connected devices could soon be forced to bolster their defenses by the EU Cyber Resilience Act, requiring design-level security and ongoing patching.
The EU Digital Markets Act (DMA) appears headed for adoption in May. Companies providing “core platform services”, as well as those potentially receiving data from such companies, should understand not only what the DMA requires, but also its impact on existing obligations under the GDPR.
EU Digital Markets Act Is GDPR-like in Scope, Focuses on Big Tech “Gatekeeper” Platforms and Messaging Interoperability
The Digital Markets Act focuses on Big Tech, and its requirements would force message interoperability among other terms that Facebook and similar services are unlikely to be happy about.
The EU and US have reached an agreement in principle on a Privacy Shield replacement, but details of the data transfer deal are not yet available to the public.