Today marks the effective date of the UK’s new revenge porn law, and, in the U.S., Hong Kong’s PCPD has issued guidance on both CCTV and drone use and Google has lost most of its challenge of an order from Hamburg’s Data Protection Authority. Also in this week’s Privacy Tracker weekly roundup, read about a right-to-be-forgotten decision by Italy’s Garante and bills in U.S. states addressing breach notification, revenge porn, student privacy, police cell phone tracking and the online data of deceased individuals.
LATEST NEWS
The UK’s revenge porn law is officially in effect, The Telegraph offers a Q&A on the new law.
Alabama is considering a breach notification law, which would make it the 48th in the country, reports The National Law Review.
Illinois state Sen. Michael Hastings (D-Orland Hills) is co-sponsoring a bill that would give a court-appointed trustee access to the accounts to settle the estate, reports The State Journal-Register.
The Maryland legislature is working to create a uniform bill that would prohibit university officials from requiring students to grant access to private accounts after both houses passed slightly different versions, reports The Diamondback.
Houston Chronicle reports that Texas state Sen. Sylvia Garcia (D-6th District) has proposed a revenge porn bill.
ICYMI
In this Privacy Tracker post, Data Quality Campaign offers an update on federal and state student privacy bills.
In this Privacy Tracker post, IAPP Westin Fellow Arielle Brown analyzes President Obama's recently proposed cybersecurity legislation and how it compares to his previous proposal and other cybersecurity bills.
U.S.
House lawmakers have circulated a discussion draft proposal that would overhaul the Family Educational Rights and Privacy Act, Education Week reports.
IAPP Westin Fellow Arielle Brown analyzes the arguments on each side of the FTC v. Wyndham case as it heads to the Third Circuit Court of Appeals to determine the scope of the agency's authority over unfair trade practices in the arena of cybersecurity.
Sam Pfeifle writes for Privacy Advisor about the FCC fining AT&T $25M for a data privacy lapse.
In a column for Forbes, the Washington Legal Foundation's Glenn Lammi writes, the Obama administration's Discussion Draft: Consumer Privacy Bill of Rights Act of 2015 should cause concern for "those who work in and benefit from the Internet Economy" as "certain aspects of the draft impose burdens on data use that far outpace any that currently prevail or have been proposed at the federal level."
The Washington Supreme Court ruled 5-4 that public employees do not have a right to privacy when being investigated, Courthouse News Service reports.
As a House Intelligence Committee works to move a cybersecurity bill forward, privacy advocates say the bill could "embolden" the National Security Agency, The Hill reports.
EU
In the second of a three-part series for The Privacy Advisor, Steve Kenny looks at how the EU's forthcoming General Data Protection Regulation will affect change organizationally.
In a Stanford Law School Center for Internet and Society blog post, Giancarlo Frosio writes about a decision by the Italian Data Protection Authority, the Garante, which found "users cannot obtain the delisting of search results of recent news with a relevant public interest. However, search engines must delete or edit automatically generated snippets accompanying the search results if they are misleading."
Google has lost most of its challenge of an order from Hamburg Data Protection Authority Johannes Caspar on how it can combine data to find out user preferences, BloombergBusiness reports.