GDPR and Brexit: How Data Transfers will be affected.

The European Commission has issued a statement which provides important information to companies and individuals who continue to transfer data to the UK from the EU / EEA following the withdrawal of the UK from the European Union on 31st December 2020. As of 1 January 2021, transfers of personal data to the United Kingdom […]

CySEC proposes bringing Crypto Asset Activities under the ambit of the AML Law

On 19 February 2019, the Cyprus Securities and Exchange Commission (“CySEC”), issued a consultation paper, for interested market participants to express their views on proposed amendments to the Cyprus AML Law (L. 188(I)/2007 as in force). The proposed amendments extend the scope of Cyprus AML Law in line with the provisions of the EU Fifth […]

Why complying with the GDPR is of vital importance for every organization

The EU General Data Protection Regulation has now been in effect for more than a month, and the changes it introduced have already been noticed by most businesses and the people whose data they use. Complying with the GDPR is of paramount importance as regards the protection of the right to privacy and of the […]

Digitising business processes – Cyprus aligns national law with EU Regulation 910/2014

A fundamental component of the EU digital single market and the facilitation of public services across borders is EU Regulation 910/2014 of 23 July 2014 on electronic IDentification, Authentication and trust Services, known as eIDAS. eIDAS has been directly applicable in all EU member states since 1 July 2016. It aims to facilitate the development […]

New law on data system security

The Security of Networks and Information Systems Law, Number 17(I) of 2018, implements articles 8 and 9 of EU Directive 2016/1148 on measures to achieve a high common level of security of network and information systems throughout the EU. It designates the Commissioner for Electronic Communications and Postal Regulation (Commissioner), appointed under article 5 of […]

Assistance with research for the Personal Information Protection Commission of Japan 

Nicholas Ktenas, partner of the firm who specialises in data protection, and Michael Ioannou, our IT manager, recently contributed to a research project undertaken by Namura Research Institute on behalf of the Personal Information Protection Commission of Japan examining the practices of national data protection authorities and the legal, technical and organizational aspects of data […]

Further harmonisation of EU data protection laws: the proposed new e-Privacy Regulation

The European Union is set to replace Directive 2002/58/EC on Privacy and Electronic Communications, commonly known as the e-Privacy Directive or Cookie Directive, with a new e-Privacy Regulation. The change from a directive to a regulation parallels the shift from the Data Protection Directive to the General Data Protection Regulation. Unlike directives, which require EU […]