Eduardo Ustaran

Firm/Organization: Hogan Lovells

Blogs: Global Media and Communications Watch, HL Chronicle of Data Protection

Latest Articles

The Future of UK Data Protection

January 21, 2020

As with anything Brexit-related, the UK government is facing a dilemma in relation to data protection law. Shall we follow the direction of travel of the past 25 years and opt for the continuity and certainty provided by the GDPR or shall we use the departure from the EU to make radical changes to the regulation of data uses and privacy? On the one hand, it would be reassuring to know that despite Brexit’s uncertainties, the current…

Global Media and Communications Watch

AG Says ePrivacy Applies to Government Access to Communications Data

By Eduardo Ustaran

January 21, 2020

On January 15, the Court of Justice of the European Union’s (CJEU) Advocate General (AG) Manuel Campos Sánchez-Bordona delivered his Opinion on four references for preliminary rulings on the topic of retention of and access to communications data. Of the four references, two originated from France, one from Belgium, and one from the Investigatory Powers Tribunal (IPT) in the United Kingdom. The latter arose from a challenge by Privacy International to the UK Security and…

HL Chronicle of Data Protection

AG Says ePrivacy Applies to Government Access to Communications Data

By Eduardo Ustaran

January 20, 2020

Global Media and Communications Watch

Getting Cookie Consent Right

By Eduardo Ustaran

December 6, 2019

One could be forgiven for thinking that knowing how to comply with a legal obligation that has been in place for nearly a decade would be clear cut. However, widespread practice tells us that this is far from the truth. In November 2009, as part of wider reforms to the European telecommunications regulatory framework, the European Union introduced various amendments to the existing Directive 2002/58/EC (‘e-Privacy Directive’), including to the provisions regulating the use of…

HL Chronicle of Data Protection

Getting Cookie Consent Right

By Eduardo Ustaran

December 5, 2019

Global Media and Communications Watch

Hogan Lovells calls for an alternative approach to regulating privacy in the digital economy

By Eduardo Ustaran

November 26, 2019

LONDON, 25 November 2019 – Hogan Lovells has published a study evaluating the ongoing legislative proposal for a new ePrivacy Regulation, a law aimed at updating the current ePrivacy framework in the EU. After nearly three years of debates and negotiations, the European Union is nowhere near agreeing a position on how to achieve the right balance between the need for technological innovation, public security and the protection of privacy in the context of the digital economy.…

Global Media and Communications Watch

CJEU: Consent on the Internet Means ‘Opt-In’

By Eduardo Ustaran & Katie McMullan

October 3, 2019

On 1 October 2019, the Court of Justice of the European Union (CJEU) handed down a crucial decision impacting the way that consent is obtained on the internet. The judgment relates to Case C-673/17 (Planet49 – a previous post outlining the background can be found here). In the Planet49 case, the German Federal Court referred a number of questions to the CJEU regarding the validity of consent to cookies placed by a website operating…

HL Chronicle of Data Protection

CJEU: Consent on the Internet Means ‘Opt-In’

By Eduardo Ustaran & Katie McMullan

October 1, 2019

HL Chronicle of Data Protection

GDPR – The Work Ahead

By Eduardo Ustaran

May 9, 2019

The sky has not fallen. The Internet has not stopped working. The multi-million euro fines have not happened (yet). It was always going to be this way. A year has gone by since the General Data Protection Regulation (Regulation (EU) 2016/679) (‘GDPR’) became effective and the digital economy is still going and growing. The effect of the GDPR has been noticeable, but in a subtle sort of way. However, it would be hugely mistaken to…

Global Media and Communications Watch

The EDPB’s Narrow View of Contractual Necessity

By Eduardo Ustaran

April 23, 2019

The European Data Protection Board (EDPB) has adopted the narrowest possible interpretation of ‘contractual necessity’ as a ground for processing of personal data. The Guidelines 2/2019 on the processing of personal data under Article 6(1)(b) GDPR in the context of the provision of online services to data subjects (adopted on April 9, 2019 and open for consultation until May 24, 2019) provide a detailed assessment of the regulator’s interpretation of the law. Article 6(1)(b) sets…

Eduardo Ustaran

The Future of UK Data Protection

AG Says ePrivacy Applies to Government Access to Communications Data

AG Says ePrivacy Applies to Government Access to Communications Data

Getting Cookie Consent Right

Getting Cookie Consent Right

Hogan Lovells calls for an alternative approach to regulating privacy in the digital economy

CJEU: Consent on the Internet Means ‘Opt-In’

CJEU: Consent on the Internet Means ‘Opt-In’

GDPR – The Work Ahead

The EDPB’s Narrow View of Contractual Necessity

Stay Connected

Company

Support

New to the Network