Oct 112005

Sarbanes-Oxley Meets EU Data Protection

Sidley Data Matters Contributors
, , ,

EU data protection laws are being used by data protection authorities to challenge the legitimacy of whistleblower hotlines established in accordance with the US Sarbanes-Oxley Act of 2002 (SOX).

Recent decisions in France and Germany have resulted in US-listed companies having to balance obligations under SOX with potentially inconsistent local EU data protection laws in relation to whistleblowing. French officials met on September 12 with the U.S. Securities and Exchange Commission to try to work out a solution. However, on September 15 a French court ordered a local subsidiary of an American firm to terminate a whistleblower hotline and pay approximately $1500 in damages to an employee works council and a labor union.

As a result of these decisions, some companies in Europe may be suspending their hotlines or modifying their whistleblower policies. This issue is not restricted to just France and Germany as other data protection authorities throughout the EU are considering whether whistleblowing hotlines may be contrary to their local data protection laws.

View Alert

Sidley Data Matters Contributors

Sidley Austin Privacy Group

1n-licensing@onenorth.com

You might also like
Substantial changes to Hong Kong’s privacy laws coming

In a briefing to the Legislative Council (Hong Kong’s legislative body) on February 20, 2023, the Privacy Commissioner (“the Commissioner”) announced that substantive amendments to the Personal Data (Privacy) Ordinance (“PDPO”) will take place.

It Is Now More Difficult For International Pharma To Transfer Data Out Of China

China’s new Measures for the Security Assessment of Outbound Data Transfers (the “Measures”) came into force on September 1, 2022. Pharma companies now have until February 28 to work out whether their activities mean they are affected, and to apply for the new type of data security assessment if they need it.

FINRA Issues 2023 Report on Its Examination and Risk Monitoring Program

On January 10, 2023, the Financial Industry Regulatory Authority (FINRA) published its 2023 Report on its Examination and Risk Monitoring Program (the Report).1 The 75-page Report includes four new topic areas for 2023: (1) manipulative trading, (2) fixed income — fair pricing, (3) fractional shares — reporting and order handling, and (4) Regulation SHO.