Data Protection & Privacy
Advancing technologies and changes in government regulation mean that it is important to keep up-to-date. Digital transformation leads to growth in data that is registered, processed and shared. Today's almost limitless possibilities enable companies to collect, store and use sensitive information about individuals. Most major businesses handle personal data in a manner that implies requirements for internal policies, agreements, guidelines and web sites. Digitization also means that companies are increasingly exchanging data with foreign companies, either as supplier or as customer, in a corporate relationship, or in connection with transactions. This raises issues related to the rules on processing and transfer of personal data.
Our expert team is accomplished at advising businesses on the very latest legal developments. We advise clients on data protection compliance and issues related to the EU's General Data Protection Regulation (GDPR). We develop robust control and security routines, consent mechanisms, privacy policies and agreements. We consider license and notification duties as well as requirements for data protection officer. Furthermore, we provide advice on all forms of dialogue and disputes with the authorities. We have extensive experience with cross-border transfer of personal data, both within corporations or in connection with outsourcing and cloud services. We assist with data processing agreements based on EU model contracts and binding corporate rules (BCR).
Many of our lawyers have contributed to the Norwegian section of "Getting the Deal Through: e-Commerce 2020". The article deals with e-commerce, online marketing, privacy, domains and tax/VAT issues related to digital services.
Getting the Deal Through: e-Commerce 2020 (PDF)
Accreditation: Reproduced with permission from Law Business Research Ltd. This article was first published in Lexology Getting the Deal Through – e-Commerce 2020 (Published: August 2019).
Our services include
- Fintech, Biotech, Proptech, Adtech, Medtech, Insurtech, Edtech, Cleantech/Greentech
- Compliance and risk assessments
- Data processing agreements
- Privacy and cookie policies
- Data protection officer
- Licenses from and notifications to the authorities
- Consent mechanisms
- Guidelines for employees concerning use of smartphones/email/social media
- Access to email, chain of custody and eDiscovery
- Privacy clauses in employment agreements
- Cloud computing, outsourcing and use of sub-processors
- Privacy clauses in IT contracts
- Cross-border of personal data (EU's Model Clause, Binding Corporate Rules (BCR)
Lawyers
Related articles
-
Privacy corner – an overview of recent developments
-
Personal data as payment for digital content and digital services – the Swedish and Norwegian implementation of directive 2019/770
-
Privacy corner – an overview of recent developments
-
Is it safe to transfer personal data to China, India, or Russia?
-
Privacy corner – an overview of recent developments
-
Proposal for changes to the security act – wide ranging implications for M&A transactions
-
Google Analytics banned? In the shadow of Schrems II
-
Law proposal allows the police to retain social media posts for 15 years
-
Recent fines imposed by the Norwegian Data Protection Authority ("NDPA")
-
Does your privacy policy hold up? New clarifying decision from Ireland, fining WhatsApp with MEUR 225
-
Facebook and privacy risks: Five ways to ensure your company stays compliant
-
Key issues for e-discovery and legal compliance
-
Maybe you don't need the SCC?
-
Finally legal cloud services?
-
Companies using Facebook Custom Audience need separate customer consents
-
New Standard Contractual Clauses adopted by the European Commission
-
Time to simplify cookies
-
New rules for cloud from the EU – bigger impact on business than GDPR itself?
-
Time to simplify cookies
-
Taxi battle clarifies regulatory hurdles for online services
-
Take-aways from the UK October GDPR fines
-
Is Schrems II the end of cloud services around the clock?
-
Norwegian authority opens probe into location-based mobile messaging
-
Internet neutrality – EU court judgement in Telenor Hungary vs Nemzeti Media
-
To transfer or not to transfer, is that the question?
-
What should you keep in mind when analysing your customers in order to optimize marketing?
-
The Supreme Court strengthens trademark protection
-
M&A in the tech sector – privacy and trade secrets
-
Replacing boarding pass with facial recognition at Gardermoen?
-
Schrems 2: EU Standard Contractual Clauses (SCC) can still be used
-
IT cost savings – a brief for CFOs and others
-
Digitalisation, connectivity and cyber security
-
Connectivity - Fiber network construction - Access to mobile networks
-
Netflix, WhatsApp and similar service providers could be impacted by new e-surveillance act
-
Camera surveillance – new rules in Sweden (EN)
-
Is your DPO really independent?
-
COVID-19 risk at the workplace – do's and don'ts for employers - Swedish edition (EN)
-
COVID-19 risk at the workplace – do's and don'ts for employers (EN)
-
Digital meetings, cloud, anonymity and CCPA
-
Datatilsynet notifies largest privacy fine in Norway ever
-
The new security act (EN)
-
Franchise - Bruk av kundedata, CRM- og ERP systemer
-
Fondsetableringer og GDPR
-
New Standard Contractual Clauses adopted by the European Commission