Since the EU’s General Data Protection Regulation (GDPR) went into effect, we have been anxiously awaiting enforcement activities that would indicate regulator priorities. The waiting is over. It was recently reported that the UK Information Commissioner’s Office (ICO) issued an Enforcement Notice to AggregateIQ Data Services (AIQ) on July 6, 2018. Although the Enforcement Notice … Continue Reading
We’ve all read dozens of articles, blog posts, and tweets about how GDPR is coming. Unlike Game of Thrones’ much-promised winter, GDPR arrived relatively quickly. With all this lead up, the message has essentially been that the General Data Protection Regulation (the long and rarely used origin of the term GDPR): (a) originates from the … Continue Reading
Who: United States businesses that process (i.e., collect, store, or transmit) the personal information of EU residents in connection with offering goods or services in the EU (online or otherwise) are subject to the GDPR, regardless of whether the business has any physical presence in the EU or any payment is made by the EU … Continue Reading