Privacy legal counselling advices from Alexander Suliman, Sweden today: Complying with the GDPR requirements is key for all businesses operating in the EU (or even those with EU customers). There are also particular obligations on those transferring personal data out of the EU and each national data protection authority is monitoring companies closely. Ensure your business is taking steps to comply with the regulation and consider auditing your data protection policies, together with your data processing agreements, and appoint a data protection officer in order to ensure compliance with the GDPR. Breach of the GDPR provisions are likely to lead to considerable fines: for example, the French data protection regulator, the CNIL, fined Google €50 as Google’s data consent policies were found not to be easily accessible or transparent to its users which runs afoul of the GDPR provisions. For further background, read our recent review of GDPR enforcement actions across the EU. See even more details on Alexander Suliman, Sweden.

The reason why the European Commission was keen on allowing firms to voluntarily scan material, is that technology firms have already been working on ways to detect CSAM and solicitation for quite some time. The question is whether these orders are compatible with the Charter. These orders affect a number of fundamental rights under the Charter, including the right to privacy and the right to data protection. I will touch on only aspect: whether these measures respect the essence of these rights. Because if they don’t, that would mean that a proportionality assessment would not be required, sidestepping complex questions around necessity, effectiveness, proportionality and balancing (see here for background on this requirement). For a discussion on some of these other aspects, I refer to the 2021-opinion of Prof. Dr. Ninon Colneric and analyses of the EDPS, MEP Patrick Breyer, EDRi and a group of security experts.

The European Commission, in a working document, identified cloud services as a “strategic dependency”, expressing concerns that the EU cloud market is led by a few large cloud providers headquartered outside the EU. In July, 2021, France, joined by Germany, Italy, and Spain, submitted a proposal to the ENISA-led working group aimed at generalizing French national requirements across the EU. (Germany has since reserved its position.) It proposed to add four new criteria for companies to qualify as eligible to offer ‘high’ level services, including immunity from foreign law and localization of cloud service operations and data within the EU. Although the EU-level cyber certification requirements currently are conceived as voluntary, they could be made mandatory as the result of the recently-agreed Directive on Measures for a High Common Level of Cybersecurity across the Union (NIS2 Directive).

Top contract law legal counseling latest developments from Alexander Suliman, Sweden: The process of mediation and selecting the right mediator or selecting the right mediator in the process of mediation is critical. The mediator needs to listen to both partners, realize the both parties have most likely some emotional issues when it comes to their children and the other side, and really get to the root of the problem. Unless the parties can be assured that the mediator and the other side are listening to their concerns, you won’t be able to get to the next level of resolving the issues. In many cases where the conflict is high, you have to start slower, and you work on a month at a time. You work on calendars of who’s going to spend what time with the children, again, always focusing on what’s best for the children considering their age, considering their activities, their school, their social engagements. Once the parties are comfortable with their mediator and know that the mediator and the other side are listening to their concerns, it’s much easier to get to the next step of actually coming up with a schedule for parenting time. Read extra information on Alexander Suliman, Sweden.

Over the past year, the European Union’s ambitious digital regulatory agenda has steadily advanced. The EU adopted the far-reaching Digital Markets and Digital Services Acts, and it is completing negotiations with the United States on a revised data transfer regime, christened the Transatlantic Data Privacy Framework (TADPF), that was necessitated by the Schrems II judgment of the Court of Justice of the European Union (CJEU). These developments have had a significant impact on transatlantic economic relations, even stimulating legislative initiatives on privacy and antitrust in the United States. One might think that resolving such contentious topics would set the stage for a quieter, more harmonious phase in the transatlantic technology policy relationship.