Is it legal to use American Cloud Services in Europe?
Martha presentation at Barcelona V Consultants day. about legal aspets of the business in the cloud since american perspective
Is it legal or illegal to use american cloud services in Europe?
Patricia Ayojedi presentation about the controversial between USA an Europe regarding cloud business.
What does the Proposed EU General Data Protection Regulation (GDPR) mean for ...TrustArc
We outline the proposed changes in the EU General Data Protection Regulation (GDPR) and its effect on the privacy of US-EU Data transfers.
Access the complete webinar on how the EU GDPR will affect your business https://info.truste.com/lp/truste/On-Demand-Webinar-Reg-Page.html?asset=J68IQUDK-565
EU US Privacy Shield vs. GDPR Infographic from TRUSTeTrustArc
Infographic that compares the timelines and compliance of EU-US Privacy Shield and EU General Data Protection Regulation (GDPR) framework.
Visit https://www.truste.com/business-products/eu-privacy-shield/ to make your business EU US privacy shield regulation compliant.
EU Privacy Shield - Understanding the New Framework from TRUSTeTrustArc
Webinar to understand the new EU-US Privacy Shield Framework which replaces the EU-US Safe harbor framework followed by a demo of the TRUSTe EU data privacy transfer assessment.
Visit https://info.truste.com/WB-2016-02-10-Insight-Series-Privacy-Shield_RegPage-On-Demand_Recording.html to view the complete webinar.
[Privacy Webinar Slides] Global Enforcement PrioritiesTrustArc
To watch the full on-demand webinar recording please visit: https://info.truste.com/WB-2016-05-19-Insight-Series-Global-Privacy-Enforcement-Priorities_RegPage-OnDemand.html
As the scope of EU law extends its reach globally, we are also seeing greater international regulatory co-operation. Whether it’s the FTC, the FCC or European DPAs - global privacy regulators are taking steps to prioritize and address top concerns that affect everyone on a global scale.
In this on-demand webinar the speakers will:
• Review the latest case law and enforcement actions from the last 12 months
• Address the impact of the rise of activism and the role of individuals like Max Schrems who have forced legal changes
• Provide their perspectives on future outcomes and how to keep your company out of the regulatory spotlight
Register to watch this on-demand webinar now to to learn how to keep your company out of the regulatory spotlight: https://info.truste.com/WB-2016-05-19-Insight-Series-Global-Privacy-Enforcement-Priorities_RegPage-OnDemand.html
Is it legal or illegal to use american cloud services in Europe?
Patricia Ayojedi presentation about the controversial between USA an Europe regarding cloud business.
What does the Proposed EU General Data Protection Regulation (GDPR) mean for ...TrustArc
We outline the proposed changes in the EU General Data Protection Regulation (GDPR) and its effect on the privacy of US-EU Data transfers.
Access the complete webinar on how the EU GDPR will affect your business https://info.truste.com/lp/truste/On-Demand-Webinar-Reg-Page.html?asset=J68IQUDK-565
EU US Privacy Shield vs. GDPR Infographic from TRUSTeTrustArc
Infographic that compares the timelines and compliance of EU-US Privacy Shield and EU General Data Protection Regulation (GDPR) framework.
Visit https://www.truste.com/business-products/eu-privacy-shield/ to make your business EU US privacy shield regulation compliant.
EU Privacy Shield - Understanding the New Framework from TRUSTeTrustArc
Webinar to understand the new EU-US Privacy Shield Framework which replaces the EU-US Safe harbor framework followed by a demo of the TRUSTe EU data privacy transfer assessment.
Visit https://info.truste.com/WB-2016-02-10-Insight-Series-Privacy-Shield_RegPage-On-Demand_Recording.html to view the complete webinar.
[Privacy Webinar Slides] Global Enforcement PrioritiesTrustArc
To watch the full on-demand webinar recording please visit: https://info.truste.com/WB-2016-05-19-Insight-Series-Global-Privacy-Enforcement-Priorities_RegPage-OnDemand.html
As the scope of EU law extends its reach globally, we are also seeing greater international regulatory co-operation. Whether it’s the FTC, the FCC or European DPAs - global privacy regulators are taking steps to prioritize and address top concerns that affect everyone on a global scale.
In this on-demand webinar the speakers will:
• Review the latest case law and enforcement actions from the last 12 months
• Address the impact of the rise of activism and the role of individuals like Max Schrems who have forced legal changes
• Provide their perspectives on future outcomes and how to keep your company out of the regulatory spotlight
Register to watch this on-demand webinar now to to learn how to keep your company out of the regulatory spotlight: https://info.truste.com/WB-2016-05-19-Insight-Series-Global-Privacy-Enforcement-Priorities_RegPage-OnDemand.html
Kevin Haley Esq. of Brann and Isaacson explains some of the important issues with changes to the "Safe Harbor" laws in the EU.
What is Safe Harbor?
In early October, in a case involving Facebook, the European Court of Justice invalidated a 15 year old international agreement that permitted US companies to avoid compliance with the letter of European privacy law. Under the so-called “Safe Harbor” at issue in the Facebook case, US companies were permitted to self-certify that they provided a level of protection comparable to that in the EU to personal data stored on their servers located in the US. The ECJ’s ruling at least in part was based on an allegation that US government electronic surveillance-exposed by Edward Snowden-renders personal data housed on US servers unsafe. The rejection of the so-called EU “Safe Harbor” has at least some American companies scrambling to find a way to comply with EU privacy laws. What does this case mean for US catalogers, and more broadly, what are US catalogers doing to comply with the patchwork of international privacy regulations?
Will it matter to your company?
This Pub Talk was a good discussion of this potentially far-reaching topic. While the law is still unfolding there are still plenty of things you can get ahead on right now. Kevin explain what may happen, what it will impact and what you should be doing to make sure you aren't surprised later.
Everything you need to know about the GDPRSpoon London
The frequency of data-related incidents could change with the impending General Data Protection Regulation (GDPR) – the EU’s law that comes into effect in May. The major update to the previous EU data protection law aims to regulate the use and treatment of an individual’s personal data.
A new regulation means organisations that use data will need to be more careful and explicit with gaining consent. After May, companies that maintain poor data protection practices will not only be breaking the law, but could face a hefty €20 million fine or four per cent of a company’s annual turnover.
Needless to say, the GDPR is a pretty big deal with even bigger consequences. Still, no need to panic. Here's everything you need to know about the GDPR.
Privacy shield: What You Need To Know About Storing EU DataSchellman & Company
A new transatlantic data transfer framework is changing the way U.S. companies handle, transfer and store data from EU citizens.
Now, American companies face stronger obligations to protect this data, and if your company handles or wants to handle personal data from the EU, it will have to prove it meets the requirements of Privacy Shield.
If the idea of understanding and complying with Privacy Shield seems overwhelming, or you just want to learn more about it, we’re here to help.
In this deck we cover:
• How Privacy Shield differs from Safe Harbor
• The 2 options you have to prove you’re compliant
• The principles of Privacy Shield, and more
Data Privacy & Compliance Considerations on Using Cloud ServicesAmazon Web Services
Learn about the factors organization should consider when hosting data in Cloud. What are the risks, benefits and implications for data protection and privacy when moving to the business data and applications to cloud?
EU General Data Protection: Implications for Smart Meteringnuances
This presentation provides the reader with an insight into the politics of EU Data protection as well as an overview of the key stakeholders. We focus on the implication for the smart metering industry.
This is a slightly modified version of a presentation that I gave to fellow lawyers last week. It explains what GDPR is, the policy of data protection and the evolution of data protection legislation from the OECD Guidelines and Council of Europe Convention to the GDPR. It explores the regulation focusing on the data protection principles and, in particular, the lawfulness requirement and the validity of consent. The presentation mentions the Law enforcement data protection directive, the Data Protection Bill and the arrangements post Brexit. Finally, it considers the preparations recommended by the Information Commissioner for small busiesses
The EU Data Protection Reform's Impact on Cross Border E-discovery; updated h...AltheimPrivacy
Check out this link for the latest version: http://www.slideshare.net/EDiscoveryMap/the-eu-data-protection-reforms-impact-on-cross-border-ediscovery-27629797
The European Commission's proposal for a new General Data Protection Regulation (GDPR), represents the most significant global development in data protection law since Directive 95/46. It will considerably impact cross-border e-discovery in the EU.
The EU Data Protection Reform's Impact on Cross Border e-Discovery: new Devel...AltheimPrivacy
This is a new set of slides, adapted after the 10/21/2013 LIBE Committee vote on the proposed amendments to the Regulation. Quite a few of the original GDPR rules have changed so far.
The new EU-US Privacy Shield, covering transatlantic exchanges of personal data for commercial purposes, went into effect in July 2016. Although this is a critical issue, many companies are not aware of the implications it has for them. What steps do companies need to take when transferring data from Europe to the US?
Kawser Hamid : ICO and Data Protection in the CloudGurbir Singh
Kawser Hamid Lead Policy Officer at the Information Commissioner's Office talks about the challenges of Cloud Computing and complying with Data Protection Act
A recording of the Northwest Regional meeting of the Institute of Information Security Professionals in Manchester on 23rd May 2013. Copyright of this presentation is held by the author, Kawser Hamid.
Kevin Haley Esq. of Brann and Isaacson explains some of the important issues with changes to the "Safe Harbor" laws in the EU.
What is Safe Harbor?
In early October, in a case involving Facebook, the European Court of Justice invalidated a 15 year old international agreement that permitted US companies to avoid compliance with the letter of European privacy law. Under the so-called “Safe Harbor” at issue in the Facebook case, US companies were permitted to self-certify that they provided a level of protection comparable to that in the EU to personal data stored on their servers located in the US. The ECJ’s ruling at least in part was based on an allegation that US government electronic surveillance-exposed by Edward Snowden-renders personal data housed on US servers unsafe. The rejection of the so-called EU “Safe Harbor” has at least some American companies scrambling to find a way to comply with EU privacy laws. What does this case mean for US catalogers, and more broadly, what are US catalogers doing to comply with the patchwork of international privacy regulations?
Will it matter to your company?
This Pub Talk was a good discussion of this potentially far-reaching topic. While the law is still unfolding there are still plenty of things you can get ahead on right now. Kevin explain what may happen, what it will impact and what you should be doing to make sure you aren't surprised later.
Everything you need to know about the GDPRSpoon London
The frequency of data-related incidents could change with the impending General Data Protection Regulation (GDPR) – the EU’s law that comes into effect in May. The major update to the previous EU data protection law aims to regulate the use and treatment of an individual’s personal data.
A new regulation means organisations that use data will need to be more careful and explicit with gaining consent. After May, companies that maintain poor data protection practices will not only be breaking the law, but could face a hefty €20 million fine or four per cent of a company’s annual turnover.
Needless to say, the GDPR is a pretty big deal with even bigger consequences. Still, no need to panic. Here's everything you need to know about the GDPR.
Privacy shield: What You Need To Know About Storing EU DataSchellman & Company
A new transatlantic data transfer framework is changing the way U.S. companies handle, transfer and store data from EU citizens.
Now, American companies face stronger obligations to protect this data, and if your company handles or wants to handle personal data from the EU, it will have to prove it meets the requirements of Privacy Shield.
If the idea of understanding and complying with Privacy Shield seems overwhelming, or you just want to learn more about it, we’re here to help.
In this deck we cover:
• How Privacy Shield differs from Safe Harbor
• The 2 options you have to prove you’re compliant
• The principles of Privacy Shield, and more
Data Privacy & Compliance Considerations on Using Cloud ServicesAmazon Web Services
Learn about the factors organization should consider when hosting data in Cloud. What are the risks, benefits and implications for data protection and privacy when moving to the business data and applications to cloud?
EU General Data Protection: Implications for Smart Meteringnuances
This presentation provides the reader with an insight into the politics of EU Data protection as well as an overview of the key stakeholders. We focus on the implication for the smart metering industry.
This is a slightly modified version of a presentation that I gave to fellow lawyers last week. It explains what GDPR is, the policy of data protection and the evolution of data protection legislation from the OECD Guidelines and Council of Europe Convention to the GDPR. It explores the regulation focusing on the data protection principles and, in particular, the lawfulness requirement and the validity of consent. The presentation mentions the Law enforcement data protection directive, the Data Protection Bill and the arrangements post Brexit. Finally, it considers the preparations recommended by the Information Commissioner for small busiesses
The EU Data Protection Reform's Impact on Cross Border E-discovery; updated h...AltheimPrivacy
Check out this link for the latest version: http://www.slideshare.net/EDiscoveryMap/the-eu-data-protection-reforms-impact-on-cross-border-ediscovery-27629797
The European Commission's proposal for a new General Data Protection Regulation (GDPR), represents the most significant global development in data protection law since Directive 95/46. It will considerably impact cross-border e-discovery in the EU.
The EU Data Protection Reform's Impact on Cross Border e-Discovery: new Devel...AltheimPrivacy
This is a new set of slides, adapted after the 10/21/2013 LIBE Committee vote on the proposed amendments to the Regulation. Quite a few of the original GDPR rules have changed so far.
The new EU-US Privacy Shield, covering transatlantic exchanges of personal data for commercial purposes, went into effect in July 2016. Although this is a critical issue, many companies are not aware of the implications it has for them. What steps do companies need to take when transferring data from Europe to the US?
Kawser Hamid : ICO and Data Protection in the CloudGurbir Singh
Kawser Hamid Lead Policy Officer at the Information Commissioner's Office talks about the challenges of Cloud Computing and complying with Data Protection Act
A recording of the Northwest Regional meeting of the Institute of Information Security Professionals in Manchester on 23rd May 2013. Copyright of this presentation is held by the author, Kawser Hamid.
Mind Your Business: Why Privacy Matters to the Successful EnterpriseEric Kavanagh
The Briefing Room with Dr. Robin Bloor and HPE Security
There's no such thing as bad publicity? In the era of data breaches, that's not really true. Time and again in recent years, the mighty have fallen. And as sensitive data reaches the hands of bad guys the world over, so go the fates of customers and companies alike. That's why security is the fastest growing sector of enterprise IT today, with privacy issues front and center.
Register for this episode of The Briefing Room to hear veteran Analyst Dr. Robin Bloor explain why companies need to pay serious attention to the ever-growing importance of privacy, not just security. He'll be briefed by Jay Irwin of Teradata and Carole Murphy of HPE Security, who will demonstrate how their technologies can be combined to create a robust privacy infrastructure that allows organizations to avoid data breaches, or at least keep the data encrypted, thus avoiding the damage of a breach.
Data Privacy vs. National Security post Safe HarborGayle Gorvett
Recent Developments in Transatlantic Data Privacy regulation including adoption of Privacy Shield, GDPR and increasing requests for data access for National Security
Her finder du præsentation fra Microsoft Danmarks advokat Anne Ermose: ’Databeskyttelse og sikker drift i skyen’ samt et dokument med oversigt over ’Nyttige links fra Microsoft vedr Cloud og Jura’
How To Do Data Transfers Between EU-US in 2023TrustArc
Since March 2022, businesses in the EU and U.S. have been waiting for an adequacy decision on the revamped Privacy Shield data transfer agreement, the U.S.-EU Data Transfer Framework Executive Order. The agreement would allow Europeans’ data to flow to the U.S. once again, after a long two years since Schrems II overturned Privacy Shield.
Yet the European Data Protection Board (EDPB) and European Parliament announced that the U.S.-EU Data Transfer Framework Executive Order is insufficient and does not provide adequate safeguards in March 2023.
What does this mean for businesses that have been in cross-border data transfer limbo since Schrems II? Is it possible to do data transfers between the EU and the US?
This webinar reviews:
- Where does the EU-U.S. Data Transfer Framework stand today?
- What adequate safeguards are currently missing from the framework in the eyes of the EDPB and European Parliament?
- How SCCs can be used for cross-border data transfers
- Risk mitigation for international data transfers
Protecting Data Privacy in Analytics and Machine LearningUlf Mattsson
In this session, we will discuss a range of new emerging technologies for privacy and confidentiality in machine learning and data analytics. We will discuss how to use open source tools to put these technologies to work for databases and other data sources.
When we think about developing AI responsibly, there’s many different activities that we need to think about. In this session, we will discuss technologies that help protect people, preserve privacy, and enable you to do machine learning confidentially.
This session discusses industry standards and emerging privacy-enhanced computation techniques, secure multiparty computation, and trusted execution environments. We will discuss Zero Trust philosophy fundamentally changes the way we approach security since trust is a vulnerability that can be exploited particularly when working remotely and increasingly using cloud models. We will also discuss the “why, what, and how” of techniques for privacy preserving computing.
We will review how different industries are taking opportunity of these privacy preserving techniques. A retail company used secure multi-party computation to be able to respect user privacy and specific regulations and allow the retailer to gain insights while protecting the organization’s IP. Secure data-sharing is used by a healthcare organization to protect the privacy of individuals and they also store and search on encrypted medical data in cloud.
We will also review the benefits of secure data-sharing for financial institutions including a large bank that wanted to broaden access to its data lake without compromising data privacy but preserving the data’s analytical quality for machine learning purposes.
Data Protection Rules are Changing: What Can You Do to Prepare?Lumension
The European Union’s proposed new data protection regulation aims to update Europe’s data protection laws and to provide a more consistent data protection framework across the Continent.
But the new regulation, which replaces the EU’s existing data protection directive and member states’ data protection laws, will put some new demands on organisations holding personal data. Breach disclosure and “the right to be forgotten” will force businesses to update their data protection and retention policies.
This presentation will:
- Review the current EU laws, and contrast them with laws in other parts of the world;
- Examine the arguments for strengthening data protection in Europe, and the likely outcomes;
- Look at what security teams should already be doing to put themselves ahead of legislative changes;
- Outline strategies and technologies organisations need to meet current and future data protection requirements
- Help infosecurity teams to explain the changes – and their consequences – to their boards
Introduction to EU General Data Protection Regulation: Planning, Implementat...Financial Poise
The GDPR changed the way the world collects, stores, and sends personal data. The GDPR is a broad EU regulation that requires businesses to protect the personal data of EU citizens, whether the business itself is in the EU or elsewhere. Since its implementation in 2018, companies that collect data on EU citizens must comply with strict rules for the protection of personal data or face heavy fines for non-compliance. This webinar will provide an overview of GDPR’s applicability and requirements, as well as how your organization may meet those standards.
The GDPR: What About Data Stored or Transmitted Outside the EU?TAG Alliances
The General Data Protection Regulation (GDPR): What About Data Stored or Transmitted Outside the EU? Written by: Rutger Ketting of Nysingh advocaten-notarissen N.V. (Apeldoorn, The Netherlands - TAGLaw).
Similar to Martha Buyer V SCTC day conference 24 feb16 (20)
AIRESS is a portable, autonomous, easy-to-use, and economical medical device class IIb (Europe) to replace mouth-to-mouth resuscitation techniques, which are absolutely advised against by COVID-19. This medical device will remain very useful and necessary in the post-pandemic era because it improves cardiorespiratory resuscitation procedures. Using AIRESS, a unique rescuer can attend to a patient by focusing on providing cardiac massage to the patient.
AIRESS has an amazing market because is the right complement to a defibrillator (DEA). 300 units per 100K inhabitants is the ratio of DEAS deployed, for example, in Japan and US
Help us to save lives by improving cardiorespiratory resuscitation techniques forever.
Cristal clear concepts to sucessfully face energy transformation for a greener future.
Summary of the ideas exposed in the panel Transformation for a Greener Future at Smart Cities Summit and Expo at Taipei (Taiwán) on March, 20, 2024
David Steen presentation at Abat Oliba University about the evolution of the telecom technology and the telecom industry.
VII Society of Communications Technology Consultants International conference at Barcelona during MWC24
Slides of my presentation Healthcare digital transformation - How to lead it at the prestigious Official College of Physicians of Barcelona on May, 10th 2023
Healthcare digital transformation is a must worldwide. Learn the best practices to lead such a challenging process. Understand the key success factors.
The demographic changes and the lack of human resources, doctors, and nurses, only can be faced using digital technologies.
Agustin Argelich's presentation at Abat Oliba University in Barcelona about the 5+1 indicators of the methodology of the think tank Intelligent Community Forum to build prosperous societies.
Creative ideas to build prosperous, innovative, and resilient societies.
6 indicators: Technology, talent, innovation, sustainability, social awareness, continuous improvement, equity, leadership.
Watch the video of the event at: https://youtu.be/sye_pPsbm50
Innovation represents changing, therefore, difficulty. In consequence, a successful innovation needs brilliant leadership. Which are the 5 key factors to lead it successfully?
This is my presentation at Global Emerging Innovation Summit (EIS’22) Melbourne, Australia 29-31 August 2022
Digital transformation: what does it mean for Vietnam, and how to lead it to ...Agustin Argelich Casals
Given the social, sanitary, demographic, economic, and technological changes occurring worldwide, a community can only respond by innovating and efficiently using the right technology. We name this process Digital Transformation. Digital transformation allows a country to improve its citizens' quality of life very quickly. Let's see how.
But, innovation represents changing, therefore, difficulty. In consequence, a successful digital transformation needs brilliant leadership. Which are the best practices to lead it?
Agustin Argelich presentation at Barcelona World Jurist Association Congress in May 2016
The lemma of the congress was: Internet: Challenges to Peace and Freedom
The new role of Governments in deregulated telecom markets. Who is responsibl...Agustin Argelich Casals
Conference of Mr. Georges Mokhbat at 14th Diada de les Telecomunicacions de Catalunya
The new role of Governments in deregulated telecom markets. Who is responsible for “Digital Highways”
My conference at ICF 2021 Conference at Marple Ridge and Langley, British Columbia - Canada.
Digital infrastructures are key not only to survive a crisis but to fuel recovery and prosperity
COVID crisis confirms the strongness of ICF methodology
TEBIOM has launched a fundraising round for TBIOM a disruptive and much-needed project of an emergency ventilator ("resuscitator"). AIRESS is a portable, autonomous, easy to use, and economical medical device to replace mouth-to-mouth resuscitation techniques, absolutely advised against by COVID-19
AIRESS is a portable, autonomous, easy to use, and economical medical device to replace mouth-to-mouth resuscitation techniques, absolutely advised against by COVID-19.
Presentación de cuales son la razones por las que Taiwan ha gestionado con éxito en la crisis de Coronavirus con solo 440 infectados y 7 difuntos. Qué estrategia ha aplicado y en que se fundamenta su éxito.
X desayuno de economía y empresa de Societat Civil Catalana
ER(Entity Relationship) Diagram for online shopping - TAEHimani415946
https://bit.ly/3KACoyV
The ER diagram for the project is the foundation for the building of the database of the project. The properties, datatypes, and attributes are defined by the ER diagram.
This 7-second Brain Wave Ritual Attracts Money To You.!nirahealhty
Discover the power of a simple 7-second brain wave ritual that can attract wealth and abundance into your life. By tapping into specific brain frequencies, this technique helps you manifest financial success effortlessly. Ready to transform your financial future? Try this powerful ritual and start attracting money today!
Multi-cluster Kubernetes Networking- Patterns, Projects and GuidelinesSanjeev Rampal
Talk presented at Kubernetes Community Day, New York, May 2024.
Technical summary of Multi-Cluster Kubernetes Networking architectures with focus on 4 key topics.
1) Key patterns for Multi-cluster architectures
2) Architectural comparison of several OSS/ CNCF projects to address these patterns
3) Evolution trends for the APIs of these projects
4) Some design recommendations & guidelines for adopting/ deploying these solutions.
1.Wireless Communication System_Wireless communication is a broad term that i...JeyaPerumal1
Wireless communication involves the transmission of information over a distance without the help of wires, cables or any other forms of electrical conductors.
Wireless communication is a broad term that incorporates all procedures and forms of connecting and communicating between two or more devices using a wireless signal through wireless communication technologies and devices.
Features of Wireless Communication
The evolution of wireless technology has brought many advancements with its effective features.
The transmitted distance can be anywhere between a few meters (for example, a television's remote control) and thousands of kilometers (for example, radio communication).
Wireless communication can be used for cellular telephony, wireless access to the internet, wireless home networking, and so on.
4. Difference in Perception
between EU and US
• Privacy as a matter of commerce in the U.S.
• Privacy as a fundamental human right in the EU
• Right to be forgotten
www.marthabuyer.com
5. Once data crosses international borders,
where is it “safe?”
• “it depends”
• Do you know where your cloud actually is?
• Guess what? It matters.
www.marthabuyer.com
6. Schrems v. Data Protection Commissioner
(Case C-362/14)
• What the case means
• Historical context
• 2000 decision enabled U.S. companies to self-certify that company practices
ensured an adequate level of protection for personal data under the EU Data
Protection Directive, thus permitting the company to transfer data from the
EU to the United States.
• Schrems decision holds that U.S. law does not afford adequate protection to
personal data
www.marthabuyer.com
7. What’s happened since the decision
(October, 2015)
• Data transfers from the EU to the United States trigger the
provisions of the EU Data Protection Directive and may come
under scrutiny.
• Many companies utilize U.S.-based cloud services
• If personal data is kept outside of a U.S. jurisdiction
• Knowledge of compliance regs is required
• So is compliance!
www.marthabuyer.com
8. Companies can no longer rely on “safe
harbor” self-certification.
• Entities need to independently verify that company transfers of personal
data from the EU to the United States meet the level of data privacy
protection considered adequate by the EU Data Protection Directive.
• http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=celex:31995L0046
• http://ec.europa.eu/justice/data-protection/
• The European Commission recommends that entities consider using the EU-
approved standard contractual clauses, the EU-approved Binding Corporate
Rules, or the enumerated derogations under which data can be transferred.
www.marthabuyer.com
9. Use of Standard Contract Clauses
• two sets of standard contractual clauses for transfers from data
controllers to data controllers established outside the EU/EEA
• one set for the transfer to processors established outside the EU/EEA.
• http://ec.europa.eu/justice/data-protection/international-
transfers/transfer/index_en.htm
www.marthabuyer.com
10. FCPA
Foreign Corrupt Practices Act
The Foreign Corrupt Practices Act of 1977, as amended, 15 U.S.C. §§ 78dd-1, et seq.
• The anti-bribery provisions prohibit paying foreign officials to obtain or
retain business.
• Accurate accounting and adequate internal controls are REQUIRED!
• jurisdiction of the FCPA is far-reaching and hinges on the use of interstate
commerce by a U.S. or foreign person.
• Aggressive Enforcement
• compliance policies to maintain watch over company actors to avoid
inadvertently violating the FCPA.
• http://www.justice.gov/criminal-fraud/foreign-corrupt-practices-act
www.marthabuyer.com
11. More FCPA
• Department of Justice is happy to offer opinions on
compliance:
U.S. Department of Justice
Criminal Division, Fraud Section
Attn: FCPA Coordinator
Bond Building, 4th Floor
10th and Constitution Ave., NW
Washington, DC 20530-0001
Fax: 202-514-7021
Email - FCPA.Fraud@usdoj.gov
www.marthabuyer.com
12. Protecting the Jewels
• WISP
• Protecting data within a company’s control
• Protecting data beyond the company’s walls
www.marthabuyer.com