Colombia’s Supreme Court has ruled that parents monitoring their children’s online accounts does not, in the eyes of the law, violate the minors’ privacy; Russia’s data protection authority is trying to help businesses understand the soon-to-be enacted data localization law, and in Korea, 23 individuals and 10 companies are being indicted for privacy violations. In the U.S., an Illinois biometric privacy law is being put to the test, and if it holds up, it may become a model for others; Maine has a new drone privacy law, and Wyoming lawmakers are looking at including privacy and open-government protections in the state’s constitution. Also in this week’s Privacy Tracker roundup, updates on CISA and the newly proposed Federal Computer Security Act 2015.
LATEST NEWS
Colombia’s Supreme Court has ruled that parents who monitor their under-18-year-old children’s online activity do not violate the minors’ privacy, according to Colombia Reports.
Russia’s data protection authority has been holding meetings with business associations to clarify the country’s localization law that goes into effect September 1, reports Norton Rose Fulbright’s Data Protection Report.
Sens. Orrin Hatch (R-UT) and Tom Carper (D-DE) have introduced the Federal Computer Security Act of 2015, which would require inspectors general and the Government Accountability Office to report on security practices and software.
Delaware has passed a suite of four laws aimed at protecting citizens’ and children’s privacy, including legislation to prevent ed-tech providers from selling student’s personal information and limitations on advertising on sites and apps targeted at children, reports Delaware 105.9.
MediaPostreports that the Shutterfly biometric case is challenging the Illinois Biometric Information Privacy Act.
Court cases involving the collection of biometric information may mean Illinois’ biometric privacy law will serve as a guide for other states looking to implement similar legislation, reports Biometric Update.
Despite its governor’s unwillingness to sign the legislation, among others, Maine has a new drone privacy bill.
Wyoming lawmakers are moving to change the state’s constitution to add privacy and open-government protections, reports Government Technology.
U.S.
A Senate effort to pass the controversial Cybersecurity Information Sharing Act stalled last week, leaving the fate of the bill uncertain, The Wall Street Journal reports.
The Department of Homeland Security has warned that the proposed Cybersecurity Information Sharing Act will "sweep away important privacy protections," NationalJournal reports.
Rep. Jackie Speier (D-CA) will introduce a bill to battle so-called revenge pornon September 9, according to U.S. News and World Report.
A mental health reform bill introduced by Sens. Chris Murphy (D-CT) and Bill Cassidy (R-LA) could mean updates for HIPAA, The Hill reports.
The Ninth Circuit Court of Appeals upheld the dismissal of a class-action suit alleging Netflix violated the Video Privacy Protection Act, MediaPost reports.
ZDNet reports the Seventh Circuit Court of Appeals overturned a district court ruling that had tossed a class-action lawsuit against Neiman Marcus over its 2014 data breach.
Privacy-minded members of Congress aim to curb federal use of Stingrays, which function similarly to cell-phone towers, allowing phones within a certain space to connect and unknowingly share information with agencies like the FBI, USA Today reports.
In two separate cases, judges have ruled that owning a cell phone does not equate to an agreement allowing law enforcement to access and use location data, Fusion reports.
ASIA PACIFIC
Data Guidance reports in Privacy This Week that 23 individuals and 10 companies are being indicted by a Korean Supreme Prosecutors' Office task force for violating the Personal Information Protection Act.
Chinese search engine Baidu has won its appeal in the Intermediate People's Court of Nanjing City, which said its “use of cookies to personalize advertisements directed at consumers on partner third-party websites does not infringe consumer rights of privacy," the Hogan Lovells Chronicle of Data Protection reports.
EUROPE
In this post for Privacy Perspectives, Lokke Moerel analyzes the three iterations of the General Data Protection Regulation to assess whether the Binding Corporate Rules for Processors function remains in the legislation.
Reuters reports that Safe Harbor talks between the EU and U.S. are in their final stages and an agreement could be finalized "after the summer.”