Ashley Winton

Does GDPR Regulate My Research Studies in the United States?

By Bernadette M. Broccolo, Daniel F. Gottlieb, Ashley Winton, Matthew R. Cin & Amy C. Pimentel on February 7, 2018

Posted in Big Data, Consumer Protection, Data Privacy, Workplace Privacy

The General Data Protection Regulation (GDPR) establishes protections for the privacy and security of personal data (Personal Data) about individuals in the European Union (EU) single market countries, and potentially affects the clinical and other scientific research activities of academic medical centers and other research organizations in the United States.

This On the Subject includes…

The General Data Protection Regulation: Key Requirements and Compliance Steps for 2018

By Ashley Winton, Romain Perray, Sabine Naugès, Paul McGrath, Mark E. Schreiber, Michael G. Morgan, Ann Killilea, Dr. Wolfgang Freiherr Raitz von Frentz, Wilko van Weert, Camille Spegt, Leon C.G. Liu & Jared T. Nelson on February 6, 2018

Posted in Big Data, Consumer Protection, Cybersecurity, Data Privacy

Enforceable in all EU member states on 25 May 2018, the General Data Privacy Regulation will require action by organisations both inside and outside the European Union to ensure compliance with this far-reaching privacy legal framework. Compliance is even more urgent given that the GDPR provides for large penalties in cases of infringement. As some…

Irish Court Casts Serious Doubt on EU Model Clauses

By Mark E. Schreiber, Ann Killilea, Ashley Winton, Michael G. Morgan, Romain Perray, Amy C. Pimentel & Katherine F. Froelicher on October 17, 2017

Posted in Cybersecurity, Data Privacy, Data Transfers/Safe Harbor/Privacy Shield

The validity of Model Clauses for EU personal data transfer to the United States is now in real doubt as a result of a new Irish High Court judgment stating that there are “well founded grounds” to find the Model Clauses invalid. The issue of Model Clauses as a legitimate data transfer mechanism will now…

The Department of Transportation Helps Clear the Road for Autonomous Vehicles

By William M. Friedman, Michael G. Morgan, Ashley Winton & Amy C. Pimentel on September 27, 2017

Posted in Cybersecurity, Data Privacy, General Interest

The US Department of Transportation’s National Highway Traffic Safety Administration recently released A Vision for Safety 2.0, an update to its prior guidance on automated driving systems. The new guidance adopts a voluntary, flexible approach to regulation of automated driving systems and clarifies that it alone, and not the states, is responsible for regulating…

UK Government Issues Cybersecurity Guidance for Connected and Automated Vehicles

By Michael G. Morgan & Ashley Winton on September 13, 2017

Posted in Cloud, Consumer Protection, Cybersecurity, Data Privacy, General Interest

On 6 August 2017, the UK government released ‘The Key Principles of Vehicle Cyber Security for Connected and Automated Vehicles’, guidance aimed at ensuring minimum cybersecurity protections for consumers in the manufacture and operation of connected and automated vehicles.

Connected and automated vehicles fall into the category of so-called ‘smart cars’. Connected vehicles have gained, and will continue to gain, adoption in the market and, indeed, are expected to make up more than half of new vehicles by 2020. Such cars have the ability through the use of various technologies to communicate with the driver, other cars, application providers, traffic infrastructure and the Cloud. Automated vehicles, also known as autonomous vehicles, include self-driving features that allow the vehicle to control key functions–like observing the vehicle’s environment, steering, acceleration, parking, and lane changes–that traditionally have been performed by a human driver. Consumers in certain markets have been able to purchase vehicles with certain autonomous driving features for the past few years, and vehicle manufacturers have announced plans to enable vehicles to be fully self-driving under certain conditions, in the near future.