Aims and Objectives

The Aims and Objectives of the network are:

1. For members to be referred foreign commercial clients who wish to do business in their countries.

2. For members to keep existing commercial clients who need overseas referrals and who will go elsewhere if this resource is not provided.

3. To market member firms as having international commercial expertise and/or international connections.

4. For members to win new commercial clients who seek overseas referrals because the clients´ own lawyers do not have access to such international resources.

5. For members to be able to find out easily about local laws and trading practices abroad.

6. For members to exchange information about developments in areas of the law with cross-border interest ie trade, joint ventures, corporate acquisitions and investments.

7. For members to facilitate trainee exchange schemes.

8. For members to embrace the use of modern technology as a means of communication between members and the wider international business community and for member firms to demonstrate a strong web presence with their own website.

9. For members to meet the LAWorld Code of Practice established by the membership.

10. For members to be part of Regional Desks within LAWorld. There are regional desks in Europe/Middle East, North/Latin America and Asia Pacific. Regional meetings take place regularly and within the Annual Conference.  Reports of meetings are circulated to all members.  These events encourage stronger friendships and collaboration between firms.  

Eligibility for membership

11. Any firm of qualified lawyers anywhere in the world can apply for membership if it meets the membership criteria and there is a vacancy for that location/jurisdiction. LAWorld will accept membership of more than one firm from any one location/jurisdiction, where the LAWorld Committee believes that geographic or population factors would accommodate more than one member, or where existing members are or have become specialised, in which case complementary members may be invited to join.

12. Those who join this network commit themselves to take advantage of internet based technology and use it to improve communication with other members, actual or potential clients and other introductory sources.

Developing the network

The network will endeavour to create awareness amongst all members of other members´ areas of expertise. The nature of such programs will be determined by the members from time to time but include:

13. An Annual Conference, to which all members are expected to attend. This event is held every year in a different part of the world on a rotational basis ie Europe, Asia/Pacific, North and Latin Americas. The 2009 Conference was held in Miami, 2010 Moscow, 2011 Beijing, 2012 Rio de Janeiro, 2013 Zurich and 2014 will be held in Hong Kong.

14. Networking opportunities with other professionals around the world.

15. A web page on the internet within the LAWorld website (www.laworld.com) for each member firm - available for access by all members and prospective clients and linked to members´ own websites.

16. Inclusion within the LAWorld entry in Martindale-Hubbell International Law Directory.

17. LAWorld will support the host firm to organise a business meeting with local referrers and potential clients during Conference, to allow members to meet and mix with potential international referrers and future clients. Invitees may include Trade Organisations/Chamber of Commerce/Enterprise Agency representatives and members, Foreign Embassies representatives etc.  

18. Membership Bulletins can be produced by the Executive Office to provide member information to other members (including client activities and business opportunities). 

19. To coincide with IBA Conferences, LAWorld members can be assisted by the Executive Office to arrange meetings with regional trade associations, chambers of commerce etc whose members may be interested in doing business via the LAWorld member firm.

20. Unique amongst international legal networks, LAWorld members have access to legal and commercial opportunities throughout China, through our associate group of 28 Chinese law firms which cover the country (http://www.chinayln.com/). 

21. A client newsletter, with common international legal news, may be distributed from time to time so that members have a marketing tool to distribute to clients and contacts promoting their extensive international legal credentials.

22. A LAWorld Corporate brochure for clients and introducers will be produced centrally from time to time. 

Fees

23. Each member shall pay the annual membership fee of USD 2,500 

24. A once only joining fee of USD 500 will be paid to contribute towards the expenses associated with a new firm joining our network.

25. The network is an informal association, ie an International Economic Interest Grouping.

26. Members do not normally specialise in just one area of law but rather provide a full range of legal commercial services in order to broadly satisfy clients´ needs.

Management

 27. Members of the Committee are appointed at the annual conference to run the affairs of the network.  A Chair is elected for a term of 2 years. Within the Committee there is a Regional Director for Europe, North and Latin America and Asia/Pacific, all of whom are unpaid.  The Committee has appointed an Executive Director who is responsible for the day-to-day activities and promoting the network.

UPDATED OCTOBER 2013

LAWorld News

Data protection in Denmark and the EU – where are we?

After four years "in the making", the new General Data Protection Regulation (the "Regulation") is expected to be formally adopted very soon. The wording of the Regulation has been publicly known since 15 December 2015.  It is currently being considered through normal legislative procedure by the European Parliament, Council of the European Union and the European Commission.  Once approved, the Regulation will enter into force in all EU member states in the beginning of 2018

The Regulation will in our opinion lead to a significant improvement – and administrative relief – for Danish companies if they have activities throughout the EU. Companies will no longer have to deal with – or seek advice on – personal data rules in the different EU countries.  Similarly, the Regulation proposes to establish a one-stop-shop mechanism, where companies only get assigned to one supervisory authority, although there are exceptions for employment data and national security, which still might be subject to local law.

Under the Regulation, the generally high level of protection regarding personal data as we know today will be maintained. The Regulation will thus to a large extent continue the rules that apply in Denmark already pursuant to the Danish Data Protection Act. However, there are a number of changes - the most significant highlighted here: 

• It is no longer only the data controllers – the companies "owning" data – that are bound by the rules, but also the data processors – the companies handling data. This means, for example, that it is no longer just an  employer company that is responsible for compliance, but also potential subcontractors, such as a payroll agency, to which the employer company has outsourced its processing or storage of personal information. 

• Companies established outside the EU are covered by the Regulation if they offer products/services within the EU. For internet-based businesses it will mainly be a matter of whether the individual company promotes itself towards the European market.  Key factors in the analysis will include whether  the promotion is done in European languages and if prices are specified in European currencies.

• Companies will to a higher degree be required to document an adequate level of data security.  This includes an obligation to implement appropriate technical and organizational measures designed to ensure the protection of personal data (data protection by design).  Furthermore, these measures must also include a high data protection level by default. 

• Some companies will be required to prepare a PIA (Privacy Impact Assessment), which is  an assessment of the risks that arise out of the processing of personal data through their IT-system. 

• If the processing is carried out by a public authority or by companies having processing of sensitive personal data as a core activity, it is a requirement to appoint a DPO (Data Protection Officer).  It is now clear that private companies who are only processing personal data as a subordinate service/activity will not be required to appoint a DPO.  In our opinion, most payroll agencies will be required to have a DPO, whereas more traditional companies, which only handle personal data regarding its own employees, will not be required to have that obligation. 

• The data subjects are entitled to have more access to information about the processing of their personal data, and the information has to be made available in a clear and understandable manner. The current proposal states that a request for access must be answered within four weeks. In addition thereto, the rules on "the right to be forgotten" have been clarified. 

• It will become easier for individuals to have their personal data transferred between service providers. 

• The current requirement to report and notify the supervisory authority about processing of personal data will be removed. The Regulation encourages preparation of an industry-specific "code of conduct"(which may be approved by the supervisory authorities) and certification schemes. This provides a real opportunity to be a leader in the making of specific regulations for your industry and meaningful participation should be considered.

• It will be possible for each member state to fix stricter national requirements regarding specific topics, e.g. on the handling of employee data. It is expected that Denmark will retain the requirement to report processing of employee personal data in the employment context. 

• If serious breaches occur, then the data controller or data processor will be under a legal obligation to notify the supervisory authority within 72 hours. 

• Finally, the level of fines in case of violations has already created an increased focus on the processing of personal data. Violations of the Regulation may thus lead to fines of up to 10-20 mill Euros or up to 2-4 per cent of the company’s total worldwide turnover (whichever is higher) depending on which provisions are violated. For public authorities the level of fines is up to between 10-20 mill Euros. 

Although the new Regulation will not enter into force before the beginning of 2018, it is our recommendation that companies put data protection compliance on the agenda – if this has not already happened.  By implementing a number of specific initiatives companies will not only ensure compliance with the current rules in the Danish Data Protection Act but they will also be well prepared in time for the implementation of the Regulation. 

Concrete initiatives that we recommend companies to implement: 

• Companies are advised to clarify and review their current procedures and policies regarding personal data processing. It is advisable to commence this analysis as soon as possible as it may prove to be quite extensive.

• Companies must ensure that as few employees as possible have access to personal data. Each employee should only have access to the personal data that is necessary for solving the tasks lying with the specific position. Procedures and security measures should be established to ensure this. 

• All employees who handle personal data must have written instruction and training on how to handle personal data and how the personal data should be protected. This instruction/training must be targeted each employee. Thus, for example, the instruction to the HR manager will be different than the instruction to the IT manager, because the latter will only have access to the data in order to solve technical problems. 

• Companies must ensure that access to the IT-system that handles personal data is protected by password and firewall. Furthermore, all access to sensitive personal data should be logged. After a number of unsuccessful attempts (e.g. 3) to gain access to such sensitive personal information, the IT-system should automatically block for further attempts. It should also be possible to delete information in order to meet the "right to be forgotten" demands of the Regulation. 

• Companies (data controllers) should review their contracts with external data processors and make sure that they meet the requirements for good practice regarding data processing, that they have an appropriate level of security and that they will inform the companies in case of security breaches. If no data processing agreements have been made with suppliers, we strongly recommend having them made. 

• Companies should get an approval for the personnel administration at the Danish Data Protection Agency and notify the Agency in case of transfer of data outside the EEA.

Industries should begin formulating codes of conduct now, with input from counsel.  There is no need to wait until the Regulation is effective. 

• Finally, it is important to remember that the Regulation introduces a requirement for "accountability", which means that companies must be able to document that they meet the requirements of the Regulation. Therefore, it is not enough only to meet the requirements of the Regulation - it must also be documented. 

The Regulation is destined to be adopted and represents years of work by knowledgeable authorities.  Prepare for its implementation and your legal risks will be greatly diminished.  Data protection is, and will remain, one of the most important tasks for your company.

For legal assistance or further discussion, please contact the authors:

Tommy Angermair at ta@kirklarsen.dk

Maria Helbo Holck at mhh@kirklarsen.dk

Kirk Larsen & Ascanius

Copenhagen

H. C. Andersens Boulevard 45

DK 1553  København V

Phone: +45 70 22 66 60

Fax: +45 75 45 46 36

Business News

Asia shares slip for seventh session, bonds well bid
Thu, 05 May 2016 02:11:13 -0400
SYDNEY (Reuters) - Asian shares slipped for a seventh straight session on Thursday as mixed economic...
Oil jumps on Canadian wildfire near oil sands fields, Libyan fighting
Thu, 05 May 2016 00:59:27 -0400
SINGAPORE (Reuters) - Oil prices jumped on Thursday as a huge wildfire in Canada disrupted its oil s...
U.S. bullet train proposals shun public funds, favor private cash
Thu, 05 May 2016 01:15:25 -0400
(Reuters) - It took years of lawsuits and political battles for California to finally break ground l...
Panama Canal expansion exposes U.S. infrastructure, shipper woes
Thu, 05 May 2016 01:14:09 -0400
(Reuters) - The $5.2 billion expansion of the Panama Canal was expected to make U.S. East Coast por...

Upcoming Events

Europe/Middle East Regional Meeting and Lawyers Next Generation (Budapest) from 5pm on Friday the 16th of September, 2016 to 5pm on Saturday the 17th of September, 2016

See All Events
 
LAWorld
Email: mail@laworld.com