Does Your U.S. Company Pull Data From European Citizens? Fall In Line With GDPR by May 2018 or Suffer Substantial Fines
November 15, 2017 —
Jeff Dennis & Ivo Daniele – Newmeyer & Dillion, LLPThe European Union (“EU”) has enacted a strict, comprehensive framework of security regulations aimed to protect its citizens. These regulations, known as the General Data Protection Regulation (“GDPR”), provide a blueprint for a combination of required legal, technological and work habits within an organization. Although this is an EU regulation, the new laws will apply to any organization within or outside the EU that collects or processes data of EU citizens. Therefore, U.S. companies must analyze their data and processes to determine whether compliance with the GDPR is necessary. A quickly-approaching deadline of May 25, 2018 must be met to avoid massive fines.
What is the GDPR?
In order to address the creation of social networking sites, cloud computing, and location-based services, the EU set in motion a process to implement a vigorous set of rules to ensure the right to personal data protection for all European citizens. In April 2016 the European Parliament, the Council, and the Commission adopted a new GDPR, which will take affect on May 25, 2018.
This GDPR will streamline cooperation between the data protection authorities on personal data issues allowing companies to deal with one authority - not each of the 28 EU member states. This will allow for quicker decisions by the data protection authorities and greatly reduce the red tape in both compliance and enforcement under the GDPR. This will also create a level playing field by forcing non-EU companies to comply with the same strict regulations - regardless of whether or not the company is established in the EU.
Territorial scope of the GDPR
The GDPR applies directly to the processing of personal data in the context of the activities of an establishment of a controller or a processor in the EU - regardless of whether the processing takes place in the EU. Additionally, there are specific provisions under the GDPR that apply to non-EU companies if their processing activities relate to (a) the offering of goods or services (irrespective of whether a payment of the data subject is required) or (b) monitoring the behavior of individuals within the EU. Therefore, all companies must determine whether they process or monitor information of EU citizens. If a company falls within one of these categories, compliance with the GDPR is mandatory.
What happens if a company fails to comply with the GDPR?
Failure to comply with the GDPR could subject a company to crushing administrative fines.
The supervisory authority has the power to impose administrative fines under the GDPR. The following violations and breaches would subject a company to administrative fines:
- Not adhering to the core principles of processing personal data,
- Breach of notification to EU citizens by controllers and processors,
- Wrongful transfer of personal data to non-EU countries,
- Breach of obligations regarding certification,
- Ignoring the mandates asserted by the supervisory authority,
- Breach by those responsible for impact assessment, and
- Wrongful processing of employee data.
The extent of the violation and type of personal data involved will dictate the severity of the administrative fines imposed on a company. For example, under the GDPR, a company could be subject to administrative fines up to 20,000,000 EUR, or up to 4% of the total worldwide annual revenue of the preceding financial year. Obviously, these fines would be financially crippling to any company.
Preparing for May 25, 2018
The May 25, 2018 deadline is fast approaching and preparing for full compliance with the GDPR is paramount. Simple steps should be taken to ensure compliance including to:
(1) Review and analyze data repositories for sensitive data,
(2) Perform an analysis/accounting of procedure for data collection, and
(3) Create an oversite committee dedicated to data activities and compliance.
Most importantly, however, is to determine whether compliance with the GDPR is necessary, and strictly follow the requirements of the GDPR to protect from potentially massive fines.
Jeffrey M. Dennis currently serves as Newmeyer & Dillion’s Managing Partner and as a business leader, advises his clients on cybersecurity related issues, introducing contractual and insurance opportunities to lessen their risk. You can reach Jeff at jeff.dennis@ndlf.com.
Ivo Daniele is a seasoned associate in Newmeyer & Dillion’s Walnut Creek office. His practice includes representing private and public companies with both their transactional and litigation needs. You can reach Ivo at ivo.daniele@ndlf.com.
About Newmeyer & Dillion
For more than 30 years, Newmeyer & Dillion has delivered creative and outstanding legal solutions and trial results for a wide array of clients. With over 70 attorneys practicing in all aspects of business, employment, real estate, construction and insurance law, Newmeyer & Dillion delivers legal services tailored to meet each client’s needs. Headquartered in Newport Beach, California, with offices in Walnut Creek, California and Las Vegas, Nevada, Newmeyer & Dillion attorneys are recognized by The Best Lawyers in America©, and Super Lawyers as top tier and some of the best lawyers in California, and have been given Martindale-Hubbell Peer Review's AV Preeminent® highest rating. For additional information, call 949-854-7000 or visit www.ndlf.com.
Read the court decisionRead the full story...Reprinted courtesy of
Does Your U.S. Company Pull Data From European Citizens? Fall In Line With GDPR by May 2018 or Suffer Substantial Fines
Colorado Adopts Twombly-Iqbal “Plausibility” Standard
July 14, 2016 —
Jesse Howard Witt – The Witt Law Firm Blog, Acerbic WittLast week, the Colorado Supreme Court announced a dramatic shift in its rules of pleading, adopting the federal courts’ requirement that a claim must be “plausible on its face” to survive a motion to dismiss. Although seemingly subtle, this change transfers much more power to district court judges and weakens the right to a jury in civil actions.
For decades in Colorado, courts have held that a plaintiff’s complaint need merely provide a defendant with notice of the transaction that caused an alleged injury. Judges would not dismiss the complaint unless it appeared “beyond doubt” that the plaintiff could prove “no set of facts” which would entitle him or her to relief. See Davidson v. Dill, 180 Colo. 123, 131, 503 P.2d 157, 162 (1972), quoting Conley v. Gibson, 355 U.S. 41 (1957). This was rooted in the notion that the civil jury was the ultimate arbiter of disputed facts in American jurisprudence. Every party was entitled to have his or her “day in court” and present claims to a group of jurors selected from the community, rather than a judge appointed by the governor.
Reprinted courtesy of
Jesse Howard Witt, Acerbic Witt
Mr. Witt welcomes comments at www.witt.law
Read the full story... Read the court decisionRead the full story...Reprinted courtesy of
When Is a Project Delay Material and Actionable?
January 11, 2022 —
Rick Erickson - Snell & Wilmer Real Estate Litigation BlogWelcome to 2022! This year, the construction industry will undoubtedly reflect on the last two years as unprecedented times plagued by construction project delays. The COVID-19 pandemic contributed to suspension of work and closure of construction projects worldwide in 2020. The end of 2021 brought additional delays caused by an inexplicable clog in the supply chain of construction materials. The combined impact of these events on project milestones and completion deadlines led our clients to ask, with unusual and particular urgency, who is liable for such delays and how do contracting parties lessen the consequences from such unexpected and uncontrollable delays.
Granted that project delays are nothing new or unusual. They were common enough before inflation caused shipping complications and pandemic decimated the construction labor force. All delays, whatever the source, variably cause loss to all players on a construction project. But not all delays matter when it comes to claims and remedies available to the contracting parties in dispute resolution, where the determinative focus is on material delays impacting the entire project and on delays the claimant can credibly prove.
Most, if not all, jurisdictions interpret actionable delays from the contract documents for the project. The contract is definitely where you should start before pursuing any delay remedies. Delay remedies may be a time extension only, or a time extension plus your additional general conditions. Some delay remedies may be barred by the contract’s express terms and may be enforced adversely by the courts when such contract terms are indisputable. See Quinn Constr. v. Skanska USA Bldg., Inc., 730 F. Supp. 2d 401, 411 (D.C. Pa. 2010) (enforcing the subcontractor’s contractual waiver of claims for delay and disruption damages). On the other hand, delay damages that are expressly allowed by the contract—like overtime necessitated by the delays—are usually actionable and recoverable. Id. However, not only the contract terms, but applicable law, may affect the outcome.
Read the court decisionRead the full story...Reprinted courtesy of
Rick Erickson, Snell & WilmerMr. Erickson may be contacted at
rerickson@swlaw.com
Chesapeake Bay Water Quality Is Still in Trouble, Two Major Reviews Say
November 07, 2022 —
Pam McFarland - Engineering News-RecordTwo separate assessments of the health of the Chesapeake Bay indicate that most jurisdictions within its watershed are not on track to meet target goals to cut nitrogen and phosphorus discharge levels by 2025. But new plans and programs put in place in 2022 could improve the restoration trajectory, according to the U.S. Environmental Protection Agency.
Reprinted courtesy of
Pam McFarland, Engineering News-Record
Ms. McFarland may be contacted at mcfarlandp@enr.com
Read the full story... Read the court decisionRead the full story...Reprinted courtesy of
Wisconsin Supreme Court Holds Fire Damage Resulted from Single Occurrence
November 21, 2018 —
Brian Margolies - TLSS Insurance Law BlogIn its recent decision in Secura Ins. v. Lyme St. Croix Forest Co., LLC 2018 WI 103 (Oct. 30, 2018), the Wisconsin Supreme Court had occasion to consider whether a forest fire that caused damage to several homes and properties should be considered a single or multiple occurrences.
Secura insured Lyme St. Croix Forest Company under a general liability policy. Of relevance was the policy’s $500,000 sublimit of coverage for property damage due to fire arising from logging or lumbering operations, subject to a $2 million general policy aggregate limit. Lyme St. Croix sought coverage under the policy for a fire that resulted from its logging equipment. The fire lasted for three days, burning nearly 7,500 acres and causing damage to numerous homes and businesses.
Read the court decisionRead the full story...Reprinted courtesy of
Brian Margolies, Traub Lieberman Straus & Shrewsberry LLPMr. Margolies may be contacted at
bmargolies@tlsslaw.com
Couple Sues for Construction Defects in Manufactured Home
July 31, 2013 —
CDJ STAFFA West Virginia couple has sued the manufacturer of their home for construction defects and damage. Darrell and Teri Pearson claim that the home they purchased from Giles Industries was defective. They further claim that Kitchen’s Construction failed to set the home up properly and that the firm did not repair damaged sections of home. The suit also names the firm that sold the home and others.
Read the court decisionRead the full story...Reprinted courtesy of
Failure to Timely File Suit in Federal Court for Flood Loss is Fatal
June 29, 2017 —
Tred R. Eyerly - Insurance Law HawaiiAlthough the insureds timely filed their suit for denial of flood benefits in state court, the Fourth Circuit found the lawsuit against the Insurer was untimely because it was not filed in federal district court. Woodson v. Allstate Ins. Co., 2017 U. S. App. LEXIS 7862 (4th Cir. May 3 , 2917).
Hurricane Irene struck the insureds' house in August 27, 2011. Their property was flooded and for several hours, subjected to wave action, allegedly causing further damage to the home. The insureds contacted Allstate, who retained Rimkus Consulting Group, Inc. to inspect the property. Rimkus found that, other than a substantial loss of soil washed away around the supporting portion of the house, there was no damage to the structure of the house. Rimkus recommended reimbursement of $1200 for the washed out soil.
The insureds retained House Engineering, P.C., which submitted a report describing substantial damage caused by the hurricane, including movement to the pilings that caused the house to no longer be level. The insureds claimed $228,822 in damages.
Read the court decisionRead the full story...Reprinted courtesy of
Tred R. Eyerly - Insurance Law HawaiiMr. Eyerly may be contacted at
te@hawaiilawyer.com
Real Estate & Construction News Roundup (09/12/23) – Airbnb’s Future in New York City, MGM Resorts Suffer Cybersecurity Incident, and Insurance Costs Hitting Commercial Real Estate
October 30, 2023 —
Pillsbury's Construction & Real Estate Law Team - Gravel2Gavel Construction & Real Estate Law BlogIn our latest roundup, the FDIC handles the portfolio from Signature Bank, the U.S. Army Corps of Engineers funds a new center at Illinois, the Athletics take their next steps in their move to Las Vegas, and more!
- For those looking to rent an Airbnb for future travel to New York City, it just became much harder with new rules taking effect on September 5th. (Natalie Lung, The Washington Post)
- This past weekend MGM Resorts suffered a cybersecurity incident that affected some of the company’s systems with the extent of the incident still unknown. (ABC)
- Among issues such as rent increases and general inflation, commercial real estate is also having to contend with rising insurance costs due to climate change. (Justin Worland, Time)
Read the court decisionRead the full story...Reprinted courtesy of
Pillsbury's Construction & Real Estate Law Team
