Laura Clark Fey, CIPP/US, CIPP/E, CIPM, FIP, Principal of Fey LLC, will speak at the IAPP Denver KnowledgeNet on “Third-Party Vendor Selection and Contracting: Limiting Risk under the Privacy Shield, GDPR, and Privacy Regulations Worldwide.” She will co-present with Jennifer Mullins, CIPP/E, General Counsel of SafeGuard World International. We have inserted more information on this…
Laura Clark Fey, CIPP/US, CIPP/E, CIPM, FIP, Principal of Fey LLC, will speak to senior information security leaders at the 2017 Alliance Leadership Summit on “Overcoming EU GDPR Challenges at the Intersection of Privacy and Security.” She will co-present with Leon Ravenna, CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPM, FIP, PMP, Chief Information Security Officer of KAR…
Next week, Laura Clark Fey, CIPP/US, CIPP/E, CIPM, FIP, Principal of Fey LLC, will moderate a panel at the DRI Cybersecurity and Data Privacy Seminar that will provide seminar participants with an opportunity to not only listen to two regulators and a prosecutor talk about important privacy and cybersecurity issues—but also to interact directly with…
It is now less than one year before the EU General Data Protection Regulation (“GDPR”) takes effect—bringing with it increased compliance obligations, penalties (as high as 20 million euros or 4% annual worldwide turnover), and enforcement. EU regulators have already advised organizations that there will be no grace period for compliance after May 25, 2018. …
If your company plans to join the Privacy Shield, if possible, you should try to self-certify by September 30, 2016. By doing so, you will be able to take advantage of a nine-month grace period to bring existing third-party relationships in conformance with the Accountability for Onward Transfer Principle. Why is this nine-month grace period…
Our August 9 blog post addressed how current privacy and security regulatory developments were making the case for implementing processes for the prompt and defensible disposition of your company’s records and information. Before there can be defensible disposition, however, it is first necessary for a company to develop and implement an actionable, right-sized records retention…
There is a strong business case for defensible disposition, which is the process of disposing of company information when it is no longer needed for business or legal purposes. Key business benefits for defensible disposition include saving costs for storage; improving operational efficiency by better enabling employees to access needed information without having to wade…
Yesterday, the Article 29 Working Party (“Working Party”) released a statement concerning the final version of the EU-U.S. Privacy Shield. Yesterday’s statement from the Working Party is generally more favorable than its April opinion on the previous draft Privacy Shield. Here are our key takeaways from yesterday’s press release: The Working Party Considers the Privacy…
In the midst of uncertainty over the future of standard contractual clauses (“SCCs”) and other mechanisms for legitimizing transfers of personal data from the EU to the U.S., the Irish High Court shed some light today on the schedule for the challenge of SCCs currently pending in Facebook v. Schrems. The Irish High Court will…
Laura Fey is quoted in a Super Lawyers® feature story, “Is Privacy Dead?: Navigating the Digital Age with Top Privacy and Technology Lawyers.” In the piece, Laura shares her thoughts on what she calls the “Internet-of-Everything,” the increasing prevalence of devices that track the movements, health conditions, habits, etc. of human beings. Laura also shared…
Today, we celebrate Global Information Governance Day, established in 2013 as an international celebration of information governance, which is the practice of putting in place the people, processes, and technologies that allow entities to maximize the value of their information, while minimizing business and legal risks and costs. In honor of this fourth annual Global…
Today, the long-awaited amendments to Rules 1, 4, 16, 26, 30, 31, 33, 34, 37, and 55 of the Federal Rules of Civil Procedure became effective. The amended rules, particularly the amendments to Rules 26 and 37, have the potential to improve eDiscovery practice in a way that promotes the just, speedy, and inexpensive resolution…
(913)948-6300 
