Privacy Law Blog

Category Archives: GDPR

Subscribe to GDPR RSS Feed

French DPA Issues Robust Model Regulation for Biometric Access Controls in the Workplace

In late March, the French Data Protection Authority, Commission Nationale de l’Informatique et des Libertés (“CNIL”) released a model regulation (the “Model Regulation”) governing the use of biometric access controls in the workplace.  Unlike many items of personal information, biometric data (such as a person’s face or fingerprints) is unique and, if stolen or otherwise … Continue Reading

How Can Data Privacy Regulations Limit the Ability to Present Evidence in a Litigation?

The French Supreme Court sanctions a company for having produced complete employee pay slips in a litigation. It is not news that the rules of evidence and data privacy laws may be conflicting. A recent decision of the French Supreme Court[1] illustrates this tension and highlights the need for litigators to take into account data … Continue Reading

Is Blockchain Technology Compatible with GDPR? French Data Protection Regulator Provides Guidance

Uncertainty regarding the compatibility of blockchain technology and the European Union’s General Data Protection Regulation (GDPR) has often been highlighted as a potential obstacle to the development and widespread implementation of blockchain systems involving personal data. To address tensions between blockchain technology and the GDPR, Commission Nationale de l’Informatique et des Libertés (CNIL), the French … Continue Reading

Blockchain, Personal Data and the GDPR Right to be Forgotten

The effective date of the EU’s General Data Protection Regulation (GDPR) is fast approaching (May 25, 2018), and its impacts are already being felt across various industries. Specifically, the conflicts between the GDPR and the technical realities of blockchains raise important legal considerations for companies seeking to implement blockchain solutions that involve the personal data … Continue Reading
LexBlog