Home / Insight / GDPR

GDPR

The EU General Data Protection Regulation came into force on 25 May 2018 and introduced some of the most strict data protection laws in the world. The CMS data protection team offers clients legal advice on all aspects of the GDPR and aims to help you understand where to focus your GDPR compliance efforts.

Please select one of the jurisdictions from the list below to find out more about GDPR in your country.

Data Law Nav­ig­at­or
Use the Data Law Nav­ig­at­or for a quick look at data pro­tec­tion laws in...
CMS Breach As­sist­ant app
A head start dur­ing the first crit­ic­al hours of a data breach
GDPR En­force­ment Track­er Re­port 2022
What a year for GDPR en­force­ment: 2021/2022 saw vari­ous land­mark cases...

Feed

01/06/2022
CMS Next
What’s next? In a world of ever-ac­cel­er­at­ing change, stay­ing ahead of the curve and know­ing what’s next for your busi­ness or sec­tor is es­sen­tial.At CMS, we see ourselves not only as your leg­al ad­visers but also as your busi­ness part­ners. We work to­geth­er with you to not only re­solve cur­rent is­sues but to an­ti­cip­ate fu­ture chal­lenges and in­nov­ate to meet them.With our latest pub­lic­a­tion, CMS Next, our ex­perts will reg­u­larly of­fer you in­sights in­to and fresh per­spect­ives on a range of is­sues that busi­nesses have to deal with – from ESG agen­das to re­struc­tur­ing after the pan­dem­ic or fa­cing the di­git­al trans­form­a­tion. We will also share with you more about the work that we are do­ing for our cli­ents, help­ing them in­nov­ate, grow and mit­ig­ate risk.To be able to provide you with the best sup­port, we im­merse ourselves in your world to un­der­stand your leg­al needs and chal­lenges. However, it is equally im­port­ant that you know who we are and how we can work with you. So, we in­vite you to meet our ex­perts and catch a glimpse of what is hap­pen­ing in­side CMS.En­joy read­ing this pub­lic­a­tion, which we will up­date reg­u­larly with new con­tent.CMS Ex­ec­ut­ive Team
11/03/2022
CMS Ex­pert Guide: Data Law Nav­ig­at­or
Data provides a whole range of op­por­tun­it­ies but also in­cludes new and unique risks for com­pan­ies, gov­ern­ments and in­di­vidu­als. From sec­tor-spe­cif­ic nu­ances to loc­al derog­a­tions from the EU GDPR, sim­ul­tan­eously...
Comparable
09/09/2021
The Chan­ging Face of Cy­ber Claims
A cy­ber in­sur­ance loss study in Con­tin­ent­al Europe
16/08/2021
Data pro­tec­tion and se­cur­ity
Ex­pert leg­al ad­visers
23/07/2021
GDPR 3 years on – The greatest hits (and misses)
More than three years have passed since the GDPR ap­plied and a lot has happened in the world of data pro­tec­tion dur­ing that time – fines, class ac­tions, court chal­lenges and more. We give our “playl­ist”...
16/06/2021
EDPB ap­proves first EU GDPR Code of Con­duct for Cloud Ser­vice Pro­viders
Fol­low­ing the sub­mis­sion by the Bel­gian Data Pro­tec­tion Au­thor­ity, on May 19 the European Data Pro­tec­tion Board (EDPB) ap­proved the EU Cloud Code of Con­duct with sub­sequent fi­nal ap­prov­al by the Bel­gian...
15/06/2021
New GDPR Code of Con­duct ap­proved for Cloud In­fra­struc­ture Ser­vice Pro­viders
The European Data Pro­tec­tion Board (EDPB) and the French Data Pro­tec­tion Au­thor­ity (CNIL) ap­proved the CISPE Data Pro­tec­tion Code of Con­duct of Cloud In­fra­struc­ture Ser­vice Pro­viders in Europe (CISPE...
11/06/2021
EDPB is­sues Re­com­mend­a­tion on cred­it card data stor­age for one-click pay­ments
The European Data Pro­tec­tion Board (EDPB) has ad­op­ted a new re­com­mend­a­tion on the leg­al basis for the stor­age of cred­it card data by e-com­merce mer­chants for the pur­pose of one-click pay­ment of fur­ther...
08/06/2021
European Com­mis­sion moves ahead with pro­posed 'Data Act' reg­u­lat­ing ac­cess...
On 28 May, the European Com­mis­sion launched an ini­tial con­sulta­tion on its plans for a ‘Data Act’, which would – if ad­op­ted – in­tro­duce rules for ac­cess to and use of data, both in busi­ness-to...
07/06/2021
CMS Ex­pert Guide to the im­pact of GDPR in non-EU coun­tries
The European Uni­on's Gen­er­al Data Pro­tec­tion Reg­u­la­tion (“GDPR“) is an in­ter­est­ing piece of le­gis­la­tion for sev­er­al reas­ons but es­pe­cially due to its ap­plic­a­tion to busi­nesses not con­nec­ted to the...
17/07/2020
Schrems strikes again: EU-US Pri­vacy Shield in­val­id; Stand­ard Con­trac­tu­al...
A clash between US na­tion­al sur­veil­lance law and EU data pro­tec­tion stand­ards, which lies at the heart of Case C-311/18, Data Pro­tec­tion Com­mis­sion­er v Face­book Ire­land and Max­i­mil­lian Schrems (“Schrems...
14/07/2020
The Chan­ging Face of Cy­ber Claims
At the in­vit­a­tion of glob­al ex­perts in in­sur­ance brok­ing and risk man­age­ment, Marsh, and IT con­sult­ants, Wave­stone, CMS has con­trib­uted to The Chan­ging Face of Cy­ber Claims study which looks at prac­tic­al...