Passed by China’s Standing Committee of the National People’s Congress on August 20, 2021, and effective beginning November 1, 2021, China’s long-awaited Personal Information Protection Law (PIPL) provides comprehensive guidance and considerations on the processing of personal information in China.
According to Harsh Behl, Director of Product Management at Exterro, “This newest version of the FTK product family highlights our commitment to innovation as well as our deep understanding of the needs of investigation teams worldwide. It allows our clients to perform Mac investigations like never before. We are the first in the market to clearly reconstruct and display the native Apple Mail and Outlook for Mac email formats, as well as associate all of the email attachments – even as our competitors continue to struggle bringing these features to market.”
According to Ralph Nickl, CEO and Founder of Canopy, “The entire premise of corporate privacy is to mitigate the potential for or the impact of a data breach. But up until now, companies didn’t have deep insight into how much PII was in their data until after a breach occurred, when it’s too late to mitigate. Privacy Audit flips this by proactively giving IT, security, and privacy professionals the powerful AI-driven PII detection that is used in breach response.”
According to the Morgan Lewis update on China’s Personal Information Protection Law (PIPL), the impact on foreign companies and overseas parent companies of Chinese subsidiaries that process personal information collected from the Chinese market will be significant, as the data collected in China will now be subject to the various personal information protection requirements under the PIPL.
The European Commission has carefully analyzed the law and practice of the United Kingdom (UK). Based on the findings the Commission concludes that the UK ensures an adequate level of protection for personal data transferred within the scope of Regulation (EU) 2016/679 from the European Union to the UK. Additionally, the Commission concludes that the UK ensures an adequate level of protection for personal data transferred from competent authorities in the Union, falling within the scope of Directive (EU) 2016/680, to competent authorities in the UK falling within the scope of Part 3 of the Data Protection Act 2018 (DPA 2018).
According to EDPB Chair Andrea Jelinek, “The impact of Schrems II cannot be underestimated: already international data flows are subject to much closer scrutiny from the supervisory authorities who are conducting investigations at their respective levels. The goal of the EDPB Recommendations is to guide exporters in lawfully transferring personal data to third countries while guaranteeing that the data transferred is afforded a level of protection essentially equivalent to that guaranteed within the European Economic Area.”
According to European Commission Vice-President for Values and Transparency, Vera Jourová, “In Europe, we want to remain open and allow data to flow, provided that the protection flows with it. The modernised Standard Contractual Clauses will help to achieve this objective: they offer businesses a useful tool to ensure they comply with data protection laws, both for their activities within the EU and for international transfers. This is a needed solution in the interconnected digital world where transferring data takes a click or two.”
According to EDPB Chair, Andrea Jelinek, “2020 and the COVID-19 pandemic significantly altered how we live and work. Given the increasing presence of data-driven technologies in addressing the pandemic, the awareness of data protection rights among individuals and organizations has never been more critical.”
X-Road® is open-source software and ecosystem solution that provides unified and secure data exchange between organizations. This standardized, cohesive, collaborative, interoperable, secure data exchange gives service providers an entirely new opportunity to make themselves visible in services directed at citizens, businesses, and civil servants. It also may be a key enabler of enterprise interoperability and innovation for legal, business, and information technology professionals operating in the legal technology sector.
Complex information governance challenges require a comprehensive and complete approach to understanding an organization’s data profile through the lenses of compliance, privacy, and litigation. Data mapping is a critical component of this understanding. The practices, protocols, and processes around this vital component can make the difference between an organization’s comfort or concern regarding its data profile.