According to Article 40.1 of the GDPR, the national supervisory authorities in the European Economic Area shall “encourage the drawing up of codes of conduct intended to contribute to the proper application” of the GDPR. A prerequisite for codes of conduct to be prepared by Swedish associations and bodies, which represent categories of personal data controllers or processors, is that the Swedish Data Protection Authority (IMY), pursuant to Art. 41 GDPR, establishes the requirements that…
28 January 2023 is Data Protection Day (or Data Privacy Day outside of Europe), which marks the anniversary of the Council of Europe’s Convention 108. To mark Data Protection Day 2023, Baker McKenzie’s Global Data Privacy and Security Team is pleased to present this special edition update of key data protection and privacy developments and trends across the globe, as well summarising future legislative changes, predictions, and enforcement priorities to look out for during 2023.…
The 25 May 2021 marks the third anniversary of the GDPR coming into force. As we have moved from preparation for the GDPR to business as usual compliance with the GDPR, regulators have focused on various issues in different jurisdictions. Although we are now three years into compliance with the GDPR being part of our day to day operations, it is clear that interpretation and expectations regarding compliance from the courts and regulators continue to…
Happy Data Protection Day! The 28 January each year is celebrated as Data Protection Day (or Data Privacy Day outside of Europe), which marks the anniversary of the Council of Europe’s Convention 108. To mark Data Protection Day 2021, we have summarised some of the key trends and developments in the EU, UK and beyond from a data protection perspective and looking ahead to what to expect for 2021. You can jump to specific country…
Multinational organizations subject to privacy laws, such as the EU General Data Protection Regulation, are sometimes also subject to seemingly conflicting trade law. One area of US trade law requires that before exporting certain products or technologies, companies screen against US sanctions lists to prevent the goods from being available to states or individuals deemed bad actors. The lists often contain sensitive information, including personal data relating to suspected or confirmed criminal liability. Click here…
1. IntroductionAs reported before, in the autumn of 2016, the Swedish Supreme Administrative Court ruled that a camera mounted on a drone is considered a CCTV camera for purposes of the Swedish Camera Monitoring Act. The judgment meant that using a drone equipped with a camera, where the camera will be directed at a place to which the public has access, requires a licence from the County Administrative Board. Since a licence in principle is…
IntroductionIn Sweden, drones are regulated within the framework of aviation legislation. Access to controlled airspace is restricted. In addition, certain restrictions apply with respect to the distribution of aerial photographs, primarily from a national security perspective. In a recent ground-breaking judgment however, the Swedish Supreme Administrative Court has ruled that drones equipped with cameras are subject to permission under the Camera Monitoring Act. Under the Camera Monitoring Act, all camera surveillance is generally subject to…