In this week’s global legislative roundup, the European Parliament and EU member states reached an agreement on the proposed Digital Services Act. In the U.S., the Senate is anticipated to confirm Alvaro Bedoya to the U.S. Federal Trade Commission, giving the FTC a 3-2 Democratic majority. In India, the proposed National Data Governance Framework and Policy would set standards for data collection, use and storage by government agencies, concepts that have been omitted from India’s Personal Data Protection Bill proposals.
The latest
The European Parliament and EU member states reached an agreement on the proposed Digital Services Act. European Commission President Ursula von der Leyen said the DSA “will upgrade the ground-rules for all online services in the EU” and will “ensure that the online environment remains a safe space, safeguarding freedom of expression and opportunities for digital businesses.”
More
The U.S. Senate is anticipated to confirm Alvaro Bedoya to the U.S. Federal Trade Commission this week, giving the FTC a 3-2 Democratic majority, Reuters reports.
More
Legislation introduced in California, the Workplace Technology Accountability Act, would require employers to notify employees when their data is being collected, Fortune reports. Assemblyman Ash Kalra, D-San Jose, who introduced the bill, said it’s time to “figure out how to properly regulate the use of technology in the workplace.”
More
ICYMI
The U.S. Ninth Circuit Court of Appeals held this week that web scraping does not violate the U.S. Computer Fraud and Abuse Act — allowing analytics company hiQ to continue scraping publicly available profile information from LinkedIn for its own business purposes. Goodwin Procter Partner and IAPP Westin Emeritus Fellow Omer Tene explores the case and its privacy implications.
More
Enforcement
The California Privacy Protection Agency will hold stakeholder input sessions for the California Privacy Rights Act rulemaking May 4.
More
France’s data protection authority, the Commission nationale de l'informatique et des libertés, fined medical software company Dedalus Biology 1.5 million euros following a data breach that exposed medical information of nearly 500,000 people.
More
The European Data Protection Supervisor announced programming for "The Future of Data Protection: Effective enforcement in the digital world," a conference June 16-17 in Brussels, Belgium, dedicated to the review of EU General Data Protection Regulation enforcement.
More
The EDPS also published its 2021 annual report, which highlights work and actions the agency took toward helping EU institutions comply with EU privacy regulations.
More
APAC
Indian Union Minister of State for Electronics and Information Technology Rajeev Chandrasekhar said a bill has been drafted to address concerns around government’s access and monetization of personal data, The Economic Times reports. The proposed National Data Governance Framework and Policy will set standards for data collection, use and storage by government agencies, concepts that have been omitted from India’s Data Protection Bill proposals.
More
Europe
European Parliament's Committee on the Internal Market and Consumer Protection, and Committee on Civil Liberties, Justice and Home Affairs released a joint report with their recommendations for the proposed Artificial Intelligence Act. The committee’s proposed amendments include a ban on predictive policing, a public AI technology registration requirement and further alignment with the GDPR.
More
US
U.S. Rep. Ted Lieu, D-Calif., is proposing the Warrant for Metadata Act, which would require federal agencies to obtain court approval before accessing metadata from cloud service providers, The Washington Post reports.
More
Several objections were filed over the final settlement in a $92 million class-action lawsuit between TikTok and its U.S. users, Law Street reports.
More
The Connecticut Senate voted 35-0 to advance Senate Bill 6, an act concerning personal data privacy and online monitoring, to the House. The bill features provisions for "dark patterns," recognition of global opt-out mechanisms, explicit children's privacy measures, a right to cure that sunsets, and a July 1, 2023, effective date.
More
The Virginia Consumer Data Protection Act’s text is now finalized ahead of its Jan. 1, 2023 effective date, after Gov. Glenn Youngkin, R-Va., signed three amendment bills into law, according to Husch Blackwell’s “Byte Back.”
More
