Floortje Nagelkerke (NL)

Subscribe to all posts by Floortje Nagelkerke (NL)

EU GDPR will apply beginning May 25, 2018: Norton Rose Fulbright publishes GDPR Checklist, announces events and master classes

Photo of Marcus Evans (UK)Photo of Nadège Martin (FR)Photo of Christoph Ritzer (DE)Photo of Floortje Nagelkerke (NL)By Marcus Evans (UK), Nadège Martin (FR), Christoph Ritzer (DE) and Floortje Nagelkerke (NL) on Posted in Compliance and risk management, Regulatory response
Over four years in the making, the EU General Data Protection Regulation (GDPR) was finally published in the EU Official Journal on May 4, 2016, giving a concrete application date. It will apply directly in all EU Member States beginning May 25, 2018. The GDPR will repeal and replace Directive 95/46/EC and its Member State implementing … Continue reading

Dutch DPA: Employers May Not Process Employee Health Data From Wearables

Photo of Nikolai de KoningPhoto of Floortje Nagelkerke (NL)By Nikolai de Koning and Floortje Nagelkerke (NL) on Posted in Compliance and risk management, Regulatory response
The Dutch Data Protection Authority (Autoriteit Persoonsgegevens, the “AP”) announced on March 8, 2016, that two companies agreed to stop processing employees’ personal health data after the AP initiated an investigation into the employers’ practices. The two companies provided their employees with wearable devices (or “wearables”), which allowed the companies to track their employees’ physical … Continue reading

Dutch Data Protection Authority publishes consultation version of guidelines on breach notice law

Photo of Floortje Nagelkerke (NL)Photo of Nikolai de KoningBy Floortje Nagelkerke (NL) and Nikolai de Koning on Posted in Compliance and risk management, Data breach
On the heels of the enactment of the Dutch breach notice law, the Dutch Data Protection Authority (CBP) published a consultation document with draft guidelines on the breach notice obligation of data controllers in the Netherlands. Under the law, data controllers are required to provide notice of data breaches to the CBP and, under certain circumstances, to … Continue reading

Breach notice law in the Netherlands takes effect on 1 January 2016

Photo of Floortje Nagelkerke (NL)Photo of Nikolai de KoningBy Floortje Nagelkerke (NL) and Nikolai de Koning on Posted in General
Today the Royal Decree setting the date of entry into force of the Bill on Notification of data leaks was published. The law will take effect on 1 January 2016 and introduces an obligation on data controllers in the Netherlands to notify the Dutch Data Protection Authority (College Bescherming Persoonsgegevens) and affected individuals and significantly increases … Continue reading

Breach notice becomes law in the Netherlands; 11 things to know

Photo of Floortje Nagelkerke (NL)Photo of Nikolai de KoningBy Floortje Nagelkerke (NL) and Nikolai de Koning on Posted in Regulatory response
On 26 May 2015, the Dutch Senate passed the Bill on Notification of data leaks. The law imposes an obligation on “data controllers” (the persons or entitis that determine the purpose of and means for processing personal data) in the Netherlands to notify the Dutch Data Protection Authority (CBP) and affected individuals. The law may require … Continue reading

Cybersecurity incident notification bill introduced in the Netherlands

Photo of Floortje Nagelkerke (NL)Photo of Nikolai de KoningBy Floortje Nagelkerke (NL) and Nikolai de Koning on Posted in Compliance and risk management, Data breach, General
On January 22, 2015, the Netherlands proposed legislation introducing breach notification requirements for critical infrastructure industries, including utilities (electricity, gas and drinking water), telecom, financial services, government (surface-water management bodies) and transport (main ports Rotterdam and Schiphol airport). The proposed law would require notification in the event of a breach of security or loss of … Continue reading
LexBlog