Home / Insight / GDPR

GDPR

The EU General Data Protection Regulation came into force on 25 May 2018 and introduced some of the most strict data protection laws in the world. The CMS data protection team offers clients legal advice on all aspects of the GDPR and aims to help you understand where to focus your GDPR compliance efforts.

Please select one of the jurisdictions from the list below to find out more about GDPR in your country.

Data Law Nav­ig­at­or
Use the Data Law Nav­ig­at­or for a quick look at data pro­tec­tion laws in...
CMS Breach As­sist­ant app
A head start dur­ing the first crit­ic­al hours of a data breach
GDPR En­force­ment Track­er Re­port 2021
The GDPR En­force­ment Track­er Re­port aims to provide you with valu­able in­sights...

Feed

09/09/2021
The Chan­ging Face of Cy­ber Claims
A cy­ber in­sur­ance loss study in Con­tin­ent­al Europe
16/08/2021
Data pro­tec­tion and se­cur­ity
Ex­pert leg­al ad­visers
23/07/2021
GDPR 3 years on – The greatest hits (and misses)
More than three years have passed since the GDPR ap­plied and a lot has happened in the world of data pro­tec­tion dur­ing that time – fines, class ac­tions, court chal­lenges and more. We give our “playl­ist”...
16/06/2021
EDPB ap­proves first EU GDPR Code of Con­duct for Cloud Ser­vice Pro­viders
Fol­low­ing the sub­mis­sion by the Bel­gian Data Pro­tec­tion Au­thor­ity, on May 19 the European Data Pro­tec­tion Board (EDPB) ap­proved the EU Cloud Code of Con­duct with sub­sequent fi­nal ap­prov­al by the Bel­gian...
15/06/2021
New GDPR Code of Con­duct ap­proved for Cloud In­fra­struc­ture Ser­vice Pro­viders
The European Data Pro­tec­tion Board (EDPB) and the French Data Pro­tec­tion Au­thor­ity (CNIL) ap­proved the CISPE Data Pro­tec­tion Code of Con­duct of Cloud In­fra­struc­ture Ser­vice Pro­viders in Europe (CISPE...
11/06/2021
EDPB is­sues Re­com­mend­a­tion on cred­it card data stor­age for one-click pay­ments
The European Data Pro­tec­tion Board (EDPB) has ad­op­ted a new re­com­mend­a­tion on the leg­al basis for the stor­age of cred­it card data by e-com­merce mer­chants for the pur­pose of one-click pay­ment of fur­ther...
08/06/2021
European Com­mis­sion moves ahead with pro­posed 'Data Act' reg­u­lat­ing ac­cess...
On 28 May, the European Com­mis­sion launched an ini­tial con­sulta­tion on its plans for a ‘Data Act’, which would – if ad­op­ted – in­tro­duce rules for ac­cess to and use of data, both in busi­ness-to...
07/06/2021
CMS Ex­pert Guide to the im­pact of GDPR in non-EU coun­tries
The European Uni­on's Gen­er­al Data Pro­tec­tion Reg­u­la­tion (“GDPR“) is an in­ter­est­ing piece of le­gis­la­tion for sev­er­al reas­ons but es­pe­cially due to its ap­plic­a­tion to busi­nesses not con­nec­ted to the...
05/03/2021
CMS Ex­pert Guide: Data Law Nav­ig­at­or
Data provides a whole range of op­por­tun­it­ies but also in­cludes new and unique risks for com­pan­ies, gov­ern­ments and in­di­vidu­als. From sec­tor-spe­cif­ic nu­ances to loc­al derog­a­tions from the EU GDPR, sim­ul­tan­eously...
Comparable
24/11/2020
Schrems II: Re­sponses to the su­per­vis­ory au­thor­it­ies' as­sess­ment and re­com­mend­a­tions...
"Schrems II": Opin­ions of the su­per­vis­ory au­thor­it­ies on Schrems II and re­com­mend­a­tions on the im­ple­ment­a­tion of the judge­ment in in­ter­na­tion­al data trans­fers On 16 Ju­ly 2020, the Court of Justice of...
17/07/2020
Schrems strikes again: EU-US Pri­vacy Shield in­val­id; Stand­ard Con­trac­tu­al...
A clash between US na­tion­al sur­veil­lance law and EU data pro­tec­tion stand­ards, which lies at the heart of Case C-311/18, Data Pro­tec­tion Com­mis­sion­er v Face­book Ire­land and Max­i­mil­lian Schrems (“Schrems...
14/07/2020
The Chan­ging Face of Cy­ber Claims
At the in­vit­a­tion of glob­al ex­perts in in­sur­ance brok­ing and risk man­age­ment, Marsh, and IT con­sult­ants, Wave­stone, CMS has con­trib­uted to The Chan­ging Face of Cy­ber Claims study which looks at prac­tic­al...