DataGuidance

California: Act on data breaches: customer notification Act takes effect

Ensure timely compliance: Businesses should review their data breach notification procedures to comply with the new 30-day requirement and the 15-day submission to the Attorney General. Frequently ...
DataGuidance

NPC Advisory No. 2024-01: Model Contractual Clauses for Cross-Border Transfers of Personal Data

Continue Your Research. Join Now. Get 7 days of unlimited articles and feature access. No credit card necessary.
DataGuidance

NPC Circular No. 2020-03 on Data Sharing Agreements

Continue Your Research. Join Now. Get 7 days of unlimited articles and feature access. No credit card necessary.
DataGuidance

EU: C-413/23 P (EDPS v SRB): What CJEU's ruling means for anonymization, pseudonymization, and transparency

Review and Update Privacy Practices: Organizations should review and update their privacy practices, including transparency obligations and privacy notices, to comply ...
DataGuidance

Poland: UODO publishes statement on the interpretation of Article 82 of GDPR

Review national laws: Organizations should review their national laws to understand the remedies available for preventive court orders and ensure compliance with GDPR regarding non-material damage ...
DataGuidance

Spain: AEPD fines unknown entity €1,000 for lack of CCTV information notice

The Spanish data protection authority, AEPD, fined an unnamed entity €1,000 for failing to provide a CCTV information notice, violating Article 13 of the GDPR. The investigation followed a complaint ...
DataGuidance

Italy: ACN and Università degli Studi G. d’Annunzio di Chieti-Pescara sign MoU on technology transfer and training

Why is the development of specialized courses in cybersecurity important? The development of specialized courses in cybersecurity is important to align educational offerings with labor market demand ...
DataGuidance

China: MLPS 2.0 - An introduction to the 2019 Implementation Guide

The 2019 Implementation Guide, released by SAMR and SAC, provides guidance for implementing the Multi-layered Protection Scheme (MLPS) in cybersecurity, effective from March 2020. MLPS 2.0, revealed ...
DataGuidance

Italy: ACN and Security Intelligence Organizations sign MoU on collaboration and information exchange

On November 13, 2025, the Italian National Cybersecurity Agency (ACN) announced that it had signed a Memorandum of Understanding (MoU) with the Security Intelligence Organizations. The MoU aims to ...
DataGuidance

Vietnam: Decree on Protection of Personal Data enters into force

The Decree No. 13/2023/ND-CP on the Protection of Personal Data (PDPD) in Vietnam, effective July 1, 2023, mandates personal data protection responsibilities for Vietnamese and foreign entities ...
DataGuidance

China: CAC announces the release of registered information on generative AI services

The Cyberspace Administration of China (CAC) announced the release of registered information on generative AI services, requiring entities to register with local cyberspace departments. The ...
DataGuidance

UK: ICO launches consultation on draft guidance on distributed ledger technologies

Evaluate DLT Suitability: Organizations should assess if blockchain is the right solution for their needs, considering data protection compliance challenges. Frequently Asked Questions What roles and ...