K&L Gates ranked “Highly Recommended – Band 1” with Claude-Etienne Armingaud.

Source: Leaders League

K&L Gates ranked “Recommended” with Claude-Etienne Armingaud.

Source: Leaders League

K&L Gates ranked “Highly Recommended” with Claude-Etienne Armingaud.

Source: Leaders League

(more…)

K&L Gates ranked “Recommended” with Claude-Etienne Armingaud.

Source: Leaders League

This article names K&L Gates among Global Data Review’s inaugural GDR 100, a ranking of the world’s best data law firms. The GDR 100 is the only global ranking that captures the capabilities, track record, and market reputation of the leading firms in the field. The ranking is based on in-depth submissions submitted by hundreds of law firms around the world, and profiles K&L Gates lawyers including Melbourne partner Cameron Abbott and Paris partner Claude-Etienne Armingaud. Read the article here (subscription required). 

We are currently experiencing an interesting time in our economy around the future of work. In describing the future of work, there are four main aspects that come into play: (i) People will be able to work remotely and with flexible schedules; (ii) New industries and jobs will be created complementary to technology; (iii) There will be more entrepreneurship and self-employment; and (iv) Due to technology advancements, there will be fewer jobs that require humans.

Against this backdrop, the COVID-19 outbreak pointed out that these new working norms are going to become the future. In fact, more and more companies wonder whether people can work effectively and achieve a level of work-life balance in light of these new working conditions. At the same time, there is considerable research showing that diversity can be the answer to these considerations, leading to a significant performance advantage.

As law firms around the world have been forced into an unplanned experiment with remote and flexible working, the webinar will aim to explore what the new COVID-19 reality means for the workforce and how can they embrace the pandemic’s opportunities for learning and thriving in the workplace.

K&L Gates ranked “Highly Recommended” with Claude-Etienne Armingaud.

Source: Leaders League

(more…)

On 4 July 2019, the French Data Protection (CNIL) published its Guidelines on Cookies and Other Tracking Technologies (the Guidelines, available in French here). The Guidelines further detailed the nature of the interplay between the General Data Protection Regulation (GDPR) which reinforced expectations towards obtaining consent to data processing operations when such consent is required), and the ePrivacy Directive which more specifically addresses the privacy requirements on cookies and other tracking technologies. Indeed, while the ePrivacy Directive was expected to be updated through an ePrivacy Regulation (latest draft proposal available here), on or before GDPR entered into force, it remains under discussion at the European level to this day, and subject to intense lobbying by all stakeholders.

Further to the publication of the Guidelines, several French professional associations in the online marketing, distance selling and online media activities initiated legal action against the CNIL, before the French Administrative Supreme Court (the Conseil d’État), on the grounds that the CNIL acted above and beyond its authority in adopting the Guidelines, notably by (i) generally prohibiting “cookie walls”, (ii) recognizing a right of data subjects to refuse cookies, (iii) requiring the identification of the data controller for the cookies, (iv) mandating an exhaustive and up-to-date information of the data subjects on the cookies, regardless of their involvement in data processing operations, (v) requiring that the users’ agreement must be expressed by a separate action for each of the distinct purposes brought to their knowledge with a view to the storage of information or access to information already stored in their terminal equipment, and (vi) imposing maximum data retention periods for cookies.

(more…)

France’s top administrative court has overruled the country’s data authority regarding “cookie walls”, stating that as an agency that only offers guidelines – so-called flexible laws – the authority cannot prohibit their use.

Cookie walls prevent internet users from accessing websites unless they consent to the use of tracking cookies, which often gather data used by advertisers.

(more…)

Following its press release on the development of a new third country transfer module, the EU Data Protection Code of Conduct for Cloud Service Providers is proud to welcome internationally renowned law firm K&L Gates LLP as Supporter.

Brussels, 06. October 2020 – Pending the approval of its Code of Conduct under Europe’s General Data Protection Regulation (GDPR), the EU Cloud Code of Conduct (EU Cloud CoC) initiated the development of an on-top module to tackle the recent decision from the Court of Justice of the European Union (CJEU) “Schrems II”. Post-Schrems II, such an additional module is considered extremely helpful by the industry. GDPR explicitly refers to codes of conduct as an appropriate safeguard in its Article 46.2.(e). Provided that approved codes of conduct require independent oversight by an accredited monitoring body, codes of conduct may be the missing link how to create “supplementary measures” as called-for by the CJEU.

“Addressing Schrems II surely will be demanding. Therefore, the General Assembly highly welcomes the addition of this well-known international law firm. This adds to our large pool of subject matter experts and experience that will be necessary in developing an additional module for third party data transfers.”, said Jonathan Sage, Government and Regulatory Affairs Executive at IBM and Chairman of the EU Cloud CoC General Assembly.

The EU Cloud CoC, in its core version, addresses requirements pursuant to Article 28 GDPR for processors. Consequently, the Code focuses on establishing best practices to address relevant legal requirements. Drafting a third country transfer mechanism will require close negotiations with different stakeholders, as such a mechanism easily corelates with non-GDPR related aspects, such as political and societal.

“Our clients are in dire need of stable, yet flexible solutions. The Schrems II ruling created massive turbulence not just for service providers but also, and especially, for customers, who are lacking any foreseeability on the compliance of internationally provided services. We are willing to contribute to this upcoming future standard with our distinct expertise in finding practical solutions for all of our clients, and thus inherently balancing interests of providers and customers alike, through such self-regulation mechanism for the whole ecosystem. Our involvement in the EU Cloud CoC will be led by Dr. Thomas Nietsch from our Berlin Office.” said Claude-Etienne Armingaud, CIPP/E and Practice Group Coordinator for Data Protection, Privacy, and Security at K&L Gates LLP.

Considering the press conference announcing this development, one may note that European Supervisory Authorities and also the European Commission are welcoming initiatives like the one as of the EU Cloud CoC. The EU Cloud CoC General Assembly is looking forward to a cooperative dialogue with relevant stakeholders, inviting interested parties to join, to make sure that the upcoming module is meeting legal requirements, but also data subjects and industry needs, as this will be key for broad market adoption and effectiveness.

Background

The EU Cloud Code of Conduct is a sector-specific Code pursuant to GDPR Article 40, currently pending the endorsement and official approval by supervisory authorities. Among the key benefits of the Code is its applicability to the full spectrum of cloud services, as all services types (SaaS, PaaS, IaaS) can be declared adherent against the Code.

The Code’s General Assembly members are eligible to declare their services adherent and make them subject to the robust monitoring and assessment of the Code’s Monitoring Body, thereby underpinning GDPR compliance. The General Assembly has recently announced the next evolution of its Code by drafting a dedicated module for third country transfers. Find out more about the Code , the Third Country Transfer Initiative and learn how easy it is to join the General Assembly of the EU Cloud Code of Conduct.

First publication : EU CoC Cloud