White paper on EU-U.S. Privacy Shield

It is still uncertain when and whether at all EU-U.S. Privacy Shield will be adopted and enter into force. In mean time, Bloomberg BNA has prepared and published a white paper which examines “the challenges that U.S. and EU regulators encountered in reaching the Privacy Shield agreement, the additional privacy protections companies will be required to commit to under the agreement, and those aspects of the Privacy Shield framework that might cause a company previously self-certified under the Safe Harbor to consider alternative mechanisms”.

Download BNA Privacy Shield white paper

This white paper will let you better understand what Privacy Shield would require of companies if approved by the European Commission. (Free registration is required to access report.)

Access White Paper

Free GDPR app


Free EU General Data Protection Regulation (GDPR) app is now available for iPhone and iPad users (unfortunately there is no Android version). With this app you always will have instant access to all the articles and recitals of GDPR. GDPR app is created by DPOrganizer in collaboration with the Swedish Data Protection Forum.

Download free GDPR iPhone and iPad App

Download free GDPR app

Autonomous cars and data protection


Gowling WLG recently published whitepaper “Are you data driven?” on autonomous and connected vehicles. It was prepared for UK Autodrive – leading technology and automotive businesses consortium – and explores how data protection issues – particularly the newly published General Data Protection Regulation – will affect innovation in autonomous and connected vehicles sector.

Continue reading »

EDPS annual report (2015)


Today European Data Protection Supervisor (EDPS) released annual report for year 2015, reviewing what has been achieved and what will be focus further.

The EDPS focused considerable efforts in 2015 on ensuring the successful adoption of new and effective data protection rules, providing legislators with detailed recommendations in the form of an app. He now turns his attention to the successful implementation of these rules and the reform of the current Regulation, which will apply to the work of the EDPS and the other EU institutions and bodies.


UNCTAD report on data flows and international trade


Recently United Nations Conference on Trade and Development (UNCTAD ) published a report on privacy and personal data protection law, trans-border data flow and their implications on international trade and development. The in-depth and substantive report also places a focus on developing nations.

UNCTAD report on Data protection

This study is a timely contribution to our understanding of how data protection regulations and international data fl ows affect international trade. It reviews the experience in different parts of the world and of different stakeholders. The study identifi es key concerns that data protection and privacy legislation need to address. It also examines the present patchwork of global, regional and national frameworks to seek common ground and identify areas where different approaches tend to diverge. The last part of the study considers possible future policy options, taking the concerns of all stakeholders into account.

Download report

Dynamic IP addresses as personal data


Question about IP addresses as personal data is bit tricky.

IP address (short for Internet Protocol address) is a unique numerical label assigned to an information technology device (e.g., a computer or smartphone) participating in a network using the Internet Protocol system to identify itself and communicate with other devices. IP addresses can be static or dynamic. Static IP addresses are assigned to device permanently while dynamic IP addresses is reassigned every time every time the device is booted. Today IP addresses are mostly assigned dynamically.

Continue reading »

Privacy in cloud – findings

Privacy and services in cloud is a hot topic now. With GDPR now adopted some are afraid that new privacy regulation in Europe will kill the cloud quickly. Although it is doubtful cloud services will cease to exist because of regulation nevertheless compliance with privacy and data protection regulation will leave an impact. Therefore it is no surprise two big law firms – Eversheds and Baker & Mckenzie – recently published their reports on cloud services.

Continue reading »

Cryptopolitik and the Darknet

An essay about encryption, regulation, their past and future.

Encryption policy is becoming a crucial test of the values of liberal democracy in the twenty-first century. The trigger is a dilemma: the power of ciphers protects citizens when they read, bank and shop online – and the power of ciphers protects foreign spies, terrorists and criminals when they pry, plot and steal. Encryption bears directly on today’s two top threats, militant extremism and computer-network breaches – yet it enables prosperity and privacy. Should the state limit and regulate the fast-growing use of cryptography? If so, how?

Read full essay here: Cryptopolitik and the Darknet

EY Privacy trends 2016

Ernst & Young made global survey on the privacy issues facing organizations today.

In this GISS 2015 privacy questionnaire, 38% of respondents admit that they address security in new business processes and technologies, but not privacy specifically.

However, more telling, and perhaps more concerning for organizations and individuals alike when it comes to managing privacy, is that for nearly half (46%) of survey respondents, their number one or two concern is not having a clear picture of where personal information is stored or processed outside of their main systems and servers. This is exacerbated by the fact that for 40% of respondents, their number one or two concern is that there are simply not enough people to support their privacy program.

You can download EY Privacy trends 2016 as PDF or or read online.