IT, business legal counseling advices from Alexander Suliman right now: Complying with the GDPR requirements is key for all businesses operating in the EU (or even those with EU customers). There are also particular obligations on those transferring personal data out of the EU and each national data protection authority is monitoring companies closely. Ensure your business is taking steps to comply with the regulation and consider auditing your data protection policies, together with your data processing agreements, and appoint a data protection officer in order to ensure compliance with the GDPR. Breach of the GDPR provisions are likely to lead to considerable fines: for example, the French data protection regulator, the CNIL, fined Google €50 as Google’s data consent policies were found not to be easily accessible or transparent to its users which runs afoul of the GDPR provisions. For further background, read our recent review of GDPR enforcement actions across the EU. Read more info on Alexander Suliman, Sweden.
The reason why the European Commission was keen on allowing firms to voluntarily scan material, is that technology firms have already been working on ways to detect CSAM and solicitation for quite some time. For instance, it was already reported in 2012 that Facebook was scanning unusual message traffic on its platform to identify older people who were soliciting minors. Microsoft has developed technology to scan for CSAM on its servers, even offering this as a service. More recently, in August 2021, Apple announced an initiative in new versions of iOS, which was intended to check unique fingerprints (hashes) of known CSAM against images on your phone, before they would be sent to iCloud Photos (Apple received a lot of pushback and ultimately delayed the plan).
In 2021, the French government issued the Doctrine for the use of cloud computing by the State (“Trusted Cloud Doctrine”) making SecNumCloud certification mandatory whenever a French government agency procures cloud services that would handle sensitive data, including personal data of French citizens and economic data relating to French companies. These requirements also apply to private operators of essential services. Under France’s Trusted Cloud Doctrine, qualifying cloud service providers must be “immune to any extra-EU regulation”. In addition, such companies must commit to storing and processing data within the European Union, and to administering and supervising the service within the EU. Further, foreign-headquartered cloud service companies cannot achieve certification if they are more than 39% foreign-owned.
Best public law legal counseling advices from Alexander Suliman, Stockholm: In Sweden and other states, there’s a variety of different statutes that give you access to funds to pay your bills to maintain your lifestyle at some level as you’re going through this legal process. Your spouse cannot cut you off financially and not give you access to money to live your life as you go through this legal process. We’ll help you maintain the lifestyle that you have and create the money that you need to get your legal fees paid, whether it’s at the beginning or the end of the case. Don’t let that be something that keeps you from not making the phone call, because as soon as you’re aware that divorce is even potentially being contemplated, there’s a lot of things that you need to do to protect yourself. A lot of times, people say that’s just what lawyers say because they just want to get involved to drive up legal fees. This is true. Sometimes lawyers do want to do that, but that’s not what we’re doing. Find even more info on Alexander Suliman, Stockholm.
Europe’s concerns about the security of U.S. cloud services providers are in fact closely intertwined with its worries, expressed in Schrems II, about the privacy of Europeans’ information entrusted to these companies. In both cases, European policymakers fear the perceived extraterritorial reach of U.S. national security surveillance and law enforcement authorities. New cybersecurity regulation thus is seen as another way to safeguard Europe’s ‘sovereign’ interest in protecting data from foreign government access. It also would reinforce separate European efforts to bolster smaller, home-grown cloud service providers, including through the GAIA-X project to create an interoperable network “explicitly based on principles of ‘sovereignty-by-design,’” as a leading European technology lawyer has characterized it.