data protection Archives - ComplexDiscovery

What is ComplexDiscovery?

ComplexDiscovery is an online publication that highlights data and legal discovery insight and intelligence ranging from original research to aggregated news for use by business, information technology, and legal professionals. The highly targeted publication seeks to increase the collective understanding of readers regarding data and legal discovery information and issues and to provide an objective resource for considering trends, technologies, and services related to electronically stored information.

ComplexDiscovery OÜ is a technology marketing firm providing strategic planning and tactical execution expertise in support of data and legal discovery organizations. Registered as a private limited company in the European Union country of Estonia, one of the most digitally advanced countries in the world, ComplexDiscovery OÜ operates virtually worldwide to deliver marketing consulting and services.

Contact us today to learn more.

The Age of Consent? European Data Protection Board Guidance on Consent Under the GDPR

The European Data Protection Board (EDPB) is an independent European body that contributes to the consistent application of data protection rules throughout the European Union and promotes cooperation between the EU’s data protection authorities. The following update shares an overview of recent EDPB guidance on the concept of consent under the EU General Data Protection Regulation (GDPR).

May 12, 2020
4 minute read

From De-Identification to Re-Identification: Considering Personal Data Protection

The recently published research paper “Estimating the Success of Re-identifications in Incomplete Datasets Using Generative Models” shows how the likelihood of a specific individual to have been correctly re-identified can be estimated with high accuracy even when an anonymized dataset is heavily incomplete. The presented results reject the claims that, first, re-identification is not a practical risk and, second, sampling or releasing partial datasets provide plausible deniability. Moving forward, the results also question whether current de-identification practices satisfy the anonymization standards of modern data protection laws such as GDPR and CCPA and emphasize the need to move, from a legal and regulatory perspective, beyond the de-identification release-and-forget model.

August 6, 2019
5 minute read

The SHIELD is Now Up: New Legislation To Protect New Yorkers Against Data Security Breaches

“As technology seeps into practically every aspect of our daily lives, it is increasingly critical that we do everything we can to ensure the information that companies are trusted with is secure,” Governor Cuomo said. “The stark reality is security breaches are becoming more frequent and with this legislation New York is taking steps to increase protections for consumers and holding these companies accountable when they mishandle sensitive data.”

August 2, 2019
4 minute read

EU Data Protection and Policy: Considering Artificial Intelligence

As AI gains strategic importance, it is essential to shape global rules for its development and use. In promoting the development and uptake of AI, the European Commission has opted for a human-centric approach, meaning that AI applications must comply with fundamental rights. In this context, the rules laid down in the GDPR provide a general framework and contain specific obligations and rights that are particularly relevant for the processing of personal data in AI.

July 27, 2019
3 minute read

FCC Proposes New Privacy Rules for Internet Service Providers

The FCC proposes that ISPs obtain affirmative opt-in consent for the use and sharing of customer data that has not been specifically collected for the purpose of providing broadband Internet related services.

March 18, 2016
1 minute read

Privacy Shield Released – How Employers Can Take Advantage of the New European Data Transfer Framework

The EU Data Protection Directive 95/46/EC (the “Directive”) creates the legal framework for national data-protection laws in each EU member state.

March 17, 2016
1 minute read

New Restrictions on Disclosures of Personal Data to Non-EU Courts Will Not Apply in the UK

One of the more controversial portions of the EU’s forthcoming General Data Protection Regulation is a provision restricting the ability of EU businesses to comply with demands from non-EU courts for the production of documents containing personal data. However, following a recent announcement by the UK government, these restrictions will not apply to businesses in the UK.

February 18, 2016
1 minute read

How Can That Not Be Covered? I Have Cyber Insurance!

Many companies purchase cyber liability insurance to help cover their risk of computer fraud or attack. However, if not properly negotiated, some cyber insurance policies may not fully protect against all risks.

January 18, 2016
1 minute read

Germany’s Christmas Present: Data-Protection Class Actions

To strengthen data protection enforcement, the German legislature recently passed a law that permits registered consumer-protection organizations (called Verbände) to bring suits on behalf of consumers to enjoin data-protection violations.

January 7, 2016
1 minute read

Revisions and Decisions? New Considerations for eDiscovery Secure Remote Reviews

One of the key revision and decision areas that business, legal, and IT professionals in the eDiscovery ecosystem are currently having to consider is how they plan for and execute the core eDiscovery task of review in today’s new world. From review market sizing to remote review decisions, the following update provides context and considerations that may be helpful for eDiscovery decision-makers as they consider the critical eDiscovery task of review during 2020.