Overview
Ropes & Gray can work with you and your organization to adapt your policies and procedures to the GDPR. Roadmap to Compliance is a workbook that walks in-house teams through practical steps that address the new requirements and demonstrate compliance. It includes:
- A summary of relevant GDPR requirements, organized by topic
- A practical explanation of what these requirements mean for businesses
- A checklist of proposed action items that will position an organization to demonstrate GDPR compliance
If you would like to learn more about how we can help you launch or enhance your organization’s GDPR compliance program, please email GDPR@ropesgray.com.
Download our brochure for more information about how we can partner with you on each step of your compliance roadmap.
At a Glance
Please see below for relevant Ropes & Gray briefings and articles on GDPR that may affect your business.
Alerts
- Article 29 Working Party has “grave concerns” about the proposed e-Privacy Regulation (May 30, 2017)
- An Update on Brexit and the Implications for General Data Protection Regulation (GDPR) (November 2, 2016)
- Privacy Shield Takes a Hit, While GDPR Gets a Boost (April 15, 2016)
- EU Reaches Agreement on Significant New Privacy Law (December 21, 2015)
- European Union Negotiations Reach Agreement on New Clinical Trials Regulation (January 22, 2014)
Articles
- Rohan Massey and David Peloquin (quoted), “As More Countries Seek Adequacy Decisions With EU, Will US Get Left Behind?“ Corporate Counsel (also appeared in Legal Week and The Asian Lawyer) (February 26, 2019)
- Mark Barnes, Rohan Massey, David Peloquin and Michael DiMaio, “Guidance Regarding Interaction Between GDPR and EU Clinical Trials Regulation Leaves Several Questions Unanswered,” Bloomberg Law (February 14, 2019)
- Mark Barnes, David Peloquin, Leslie Thornton and Nicholas Wallas, “Final Guidelines on Consent Requirements Under the EU General Data Protection Regulation: Implications for Scientific Research,” Bloomberg Law’s Life Sciences Law & Industry Report (April 30, 2018)
- Rohan Massey, Michelle Feldman, “Countdown to Compliance: One Year to Go Until GDPR Enforcement,” Law360 (May 26, 2017)
- Rohan Massey, “Thoughts on EU’s Draft E-Privacy Regulation,” Law360 (April 10, 2017)
- Rohan Massey, Amanda Raad, “How The GDPR Will Impact Life Sciences And Health Care,” Law360 (February 21, 2017)
- Rohan Massey, “Brexit's Impact on International Data Transfers,” Bloomberg BNA Privacy & Data Security Law Report (July 11, 2016)
- Rohan Massey, “Tips for U.S. Companies in the Age of the EU GDPR and Privacy Shield” Bloomberg Law (July 2016)
- Mark Barnes, Rohan Massey, David Peloquin, Sara Shanti, “Impact of the European Union’s Approved General Data Protection Regulation On Scientific Research and Secondary Uses of Personal Data,” Bloomberg BNA Medical Research Law & Policy Report (February 17, 2016)
- Rohan Massey, “The Council of the European Union’s Draft of the General Data Protection Regulation: Stakeholders’ Comments on Key Issues,” Bloomberg BNA World Data Protection Report (September 2015)
Please see below for various GDPR related guidance, including links to country-by-country regulatory agencies.
- Preparing for the General Data Protection Regulation – 12 steps to take now (U.K.’s DPA Guidance)
- The European Commission’s List of Competent Authorities (List of DPA Websites)
- The GDPR and You – Preparing for 2018 (Ireland’s DPA Guidance)
- ECJ’s Overview on Binding Corporate Rules
- ECJ’s Model Contracts for the transfer of personal data to third countries
- The U.S. Privacy Shield Website – Privacyshield.gov
EU Legislation
- E.U. E-Privacy Directive
- The Directive on security of network and information systems (NIS Directive)
- Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector (Directive on privacy and electronic communications)
- Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data
- Charter of Fundamental Rights of the European Union
- European Convention on Human Rights
