Europe: European Court of Justice declares US Safe Harbour invalid

The EU Data Protection Directive imposes restrictions on the transfer of personal data outside the EU, with transfers permitted only if the relevant country provides an adequate level of protection or if the recipient entity can demonstrate it provides adequate protection, eg, by agreeing to the European Commission's model clauses or having an approved set … Read more

UK: New resources

BIS guide for employers on zero-hours contracts.  The Government has also published draft regulations to provide remedies to those on zero hours contracts who are dismissed or subjected to a detriment for breaching an exclusivity clause. Dismissal for this reason will be automatically unfair and there will be no length of service requirement for employees … Read more

UK: Data protection – ECJ declares US Safe Harbour invalid

The ECJ has now decided that businesses – chiefly US-based organisations – will no longer be able to rely on the US Safe Harbour Privacy Principles as ensuring an adequate level of protection to satisfy the requirements of the EU Data Protection Directive when transferring personal data outside the EEA. Read more

Hong Kong: Cross-border data transfers

On 29 December 2014, the Office of the Privacy Commissioner for Personal Data (PCPD) published a Guidance Note entitled "Guidance on Personal Data Protection in Cross-border Data Transfer" (the Guidance Note). The Guidance Note is of particular relevance to multi-national corporations (MNCs) because their corporate structure will inevitably involve a significant amount of personal data … Read more