China adopts new cybersecurity law

Posted on by Federica Romanelli
On November 7, 2016, China adopted a new cyber-security law that will come into force in June 2017. The new legislation has received some criticism. According to James Zimmerman, Chairman of the American Chamber of Commerce in China, “this is a step backwards for innovation in China that won’t do much to improve security.”The law sets “broad restrictions on cross-border data flows” and cybernationalism will not provide “security benefits but will create barriers to Chinese as well Read more [...]

European cloud providers’ association issues data protection code of conduct

Posted on by Federica Romanelli
On September 27, 2016, the Cloud Infrastructure Services Providers of Europe (CISPE) announced the publication of the Data Protection Code of Conduct for Cloud Infrastructures Services. The CISPE comprises several major European cloud infrastructure providers. The code of conduct provides that the certified cloud infrastructure providers: will process and store data exclusively within the EU/EEA territories. The processing and storage will comply with the new General Data Protection Regulation Read more [...]

A German DPA to carry out 500 company audits on international data transfers

Posted on by Federica Romanelli
On November 3, 2016, the Bavarian Data Protection Authority (BayLDA) informed that it will carry out a privacy audit on the international data transfers of more than 500 companies. The Authority has decided to carry out such audits because of the suspicion that companies may transfer data abroad without even being aware of it. Indeed, many small and medium-sized German businesses outsource its data processing – for example through cloud computing – and the service providers transfer Read more [...]