GDPR

Regulatory authorities globally are prioritizing data deletion rights, including legislation like California’s Delete Act and enforcement actions in Europe and Oregon. Businesses should consider enhancing their mechanisms for handling deletion requests to ensure compliance and build consumer trust.
Continue Reading Enforcement Update: Regulatory Attention Focused on Deletion Requests

The European Data Protection Board (EDPB) has recently (re)positioned itself on several controversial topics and published three new guidelines and opinions. Although not legally binding, they do have a significant influence on proceedings before the supervisory authorities and courts. This GT Alert discusses the EDPB’s new guidelines and their implications for companies dealing with personal

GT Shareholder Ian C. Ballon will speak during the “Data Privacy in the Age of Digital Transformation” webinar Dec. 3, 2024. This virtual event will offer an in-depth exploration of key global data privacy regulations, including GDPR, CCPA, and other frameworks. This masterclass, hosted by Events 4 Sure in partnership with GeneralCounsel360, is designed for

Greenberg Traurig Germany, LLP is strengthening its Data Protection Practice with new Partner Philip Radlanski. Radlanski joins from Morrison Foerster, where he helped shape ground-breaking projects and proceedings in Berlin and New York over the past eight years.

As Europe’s data protection laws expand beyond the EU, and data protection authorities take more rigorous

The right of correction (sometimes called the “right of rectification”) refers to a person’s ability to request that an organization fix any inaccuracies in the personal data it holds about them.[1] Correction is sometimes referred to as an absolute right in the context of the GDPR, because unlike some other rights conferred by the

The right to access refers to a person’s ability to request that a controller confirms whether it has personal data about them and to receive information about the processing and a copy of that information. While the GDPR confers a right of access, this right predates the GDPR and can be found within other EU

Greenberg Traurig Shareholders Reena Bajowala and David Zetoony, Co-Chair of the firm’s U.S. Data Privacy & Cybersecurity Practice, will present the MyLawCLE and Federal Bar Association webinar, “Artificial Intelligence and Data Privacy: The current (and often hidden) United States and European framework for regulating AI,” Wednesday, Oct. 4 at 11 a.m. CT.

Not necessarily. 

Under the GDPR, controllers are required to provide information relating to what personal data they process, and how that processing takes place. 

If the personal data the organization includes in AI prompts has been collected directly from individuals, those individuals should be provided with a copy of the organization’s privacy notice “at the

Under the GDPR, controllers are required to provide individuals with information relating to what personal data is processed, and how that processing takes place. Some supervisory authorities have specifically taken the position that organizations which use personal data to train an artificial intelligence (AI) must draft and publish a privacy notice that provides “data subjects