BCRS (Binding Corporate Rules) and CBPRs (cross-border privacy rules) are both data transfer mechanisms companies may achieve for international data transfers – BCRs as a European standard and CBPRs as an APEC-based standard. Now, an EU/APEC working group has approved a plan to make it easier for companies to comply with both mechanisms.
The European general data protection regulation has been an issue for data privacy specialists all over the world for quite some time now. But what is the current status and when will the regulation come into effect? And what will companies have to consider when handling personal data in the future? A short up-date.
At the end of last year the Court of Justice of the European Union (“CJEU”) decided in František Ryneš the issue whether the “personal or household” exclusion from data protection law applies to the use of home surveillance devices.
The court found that a person who uses closed-circuit television (CCTV) cameras for the purpose of home security but at the same time also records a public sidewalk which is located outside of a private home may be governed by EU data protection law.
Max Schrems, a privacy activist and lawyer, who is already well known for his “fight against facebook”, filed a class action suit again – together with 25.000 other people - against facebooks Irish subsidiary in Vienna. Now, the court ruled that the company must respond to the privacy complaints against it.