Global Privacy Handbook 2018

Editor's Note

Innovation Driving Digital Transformation and Preparing for GDPR Baker McKenzie is pleased to provide you with complimentary access to the 2018 edition of our Global Privacy and Information Management Handbook, which covers over 50 jurisdictions and is currently available online at and in hardcopy for our clients (app format coming soon). 

Three intricately linked themes dominated the news this past year: 

  • the profound transformation of business and organizational activities, processes, competencies and models to fully leverage the changes and opportunities of a mix of digital technologies (including artificial intelligence and machine learning) and their accelerating impact across society (e.g., internet of things and autonomous cars);
  •  the increasingly weighty challenge of managing and protecting the growing amounts and richness of data (e.g., big data) being collected, used and processed in connection with the pursuit of digital transformation; and
  •  the heightened global compliance obligations that are emerging to protect the rights of individuals impacted by the digital transformation underway, as most clearly represented by the implementation of the General Data Protection Regulation (GDPR). 

If 2017 was largely about coming to terms with the impact of a world undergoing a digital transformation, for all businesses and organizations, the focus in 2018 will be around preparedness, action and managing risk. 

Global Guide to Data Breach Notifications - 2016

The World Law Group Global Guide to Data Breach Notifications, 2016 provides the essential information every organization needs to know when facing a data breach in one or more countries. Produced by the WLG's Privacy & Data Protection Group, this guide provides summaries of relevant law, data breach reporting requirements, contact information for relevant data protection authorities and more, currently for 60 countries worldwide.

Bookmark www.globaldatabreachguide.comnow and visit often to keep up to date with this fast-changing and ever-evolving field.

Baker & McKenzie Launches 2016 Global Data Breach Notification Guide 

In today's global economy, data breach notification requirements raise critical issues for companies in all industry sectors. Data security threats are diverse and ever-changing. Intruders are searching for new and innovative ways to penetrate company defenses. Vulnerabilities are increasing as companies leverage data as a source of revenue and, in the process, expand the surface area for potential attacks. For example, the Internet of Things (IoT) enables companies to attach sensors associated with IP addresses to everything from home appliances to cars to pills that patients ingest. Estimates indicate there will be as many as 50 billion devices connected to the Internet by 2020. That means there may be literally billions more sources of vulnerabilities in the next five years. The confluence of greater threats and vulnerabilities will invariably lead to an increase in the volume and severity of data security incidents. The risks to companies arising from such data breaches are significant, and can include adverse media attention and reputational harm, customer churn, class actions and other claims from customers, employees, and others, shareholder derivative suits, and regulatory/law enforcement actions. 

Given these risks, preparation is essential. Companies need to proactively align incident response policies, legal counsel, forensics providers, identity theft protection services, and other resources to prepare for data security incidents and to address the notification issues. Companies also should be aware of the scope and impact of breach notification obligations so as to reduce the potential for notifiable data security incidents across the full life cycle of information management, from product and application design, to data collection and use, and to record retention and secure disposal. 

Baker & McKenzie's Global Data Breach Notification Guide acts as a valuable resource for companies to benchmark the ever expanding range of global data breach notification requirements. The Guide provides summaries of these requirements in forty-nine (49) jurisdictions, including information about: (i) the scope of the identified data breach notification obligations, (ii) whether individuals, authorities, or others must be notified, (iii) the penalties for non-compliance with the notification obligations, and (iv) other information.

We hope you keep the Data Breach Notification Guide close at hand, alongside a copy of the Global Privacy Handbook, the Global Surveillance Law Comparison Guide, and the Global Data Protection Enforcement Report. You may also visit our b:INFORMwebsite to find articles about recent legal developments and technology trends, including developments on breach notification requirements, EU GDPR, and other global data privacy, security, and information management issues.