In this week's Privacy Tracker global legislative roundup, the Federal Court of Australia rejected an appeal by Facebook to dismiss claims lodged by the Office of the Australian Information Commissioner alleging violations of the Privacy Act 1988. The Belgian Data Protection Authority fined IAB Europe 250,000 euros Feb. 2, ruling its Transparency and Consent Framework, used by much of the advertising industry in the European Union, does not comply with several EU General Data Protection Regulation provisions. And in the U.S., the state privacy legislative race is on with Indiana leading the way.
The Latest
The Federal Court of Australia rejected an appeal by Facebook to dismiss claims lodged by the Office of the Australian Information Commissioner alleging violations of the Privacy Act 1988.
More
The Alaska House Labor & Commerce Committee advanced House Bill 159, the Alaska Consumer Data Privacy Act, with favorable recommendation on a unanimous 7-0 vote.
More
Members of the Wisconsin State Assembly introduced Assembly Bill 957, an act relating to consumer data protection. The bill carries various exemptions, a 30-day cure period and exclusive attorney general enforcement with no private right of action.
More
ICYMI
The Belgian Data Protection Authority fined IAB Europe 250,000 euros Feb. 2, ruling its Transparency and Consent Framework, used by much of the advertising industry in the European Union, does not comply with several EU General Data Protection Regulation provisions. IAPP Staff Writer Jennifer Bryant reported on the ruling and industry reaction.
More
Washington state has been on the cusp of passing comprehensive privacy legislation for three years. This year, state lawmakers have four privacy bills to choose from including the Washington Privacy Act. IAPP Staff Writer Joe Duball has the details in The Privacy Advisor.
More
Indiana lawmakers moved forward with Senate Bill 358, which has already undergone some wholesale changes. IAPP Staff Writer Joe Duball reported on the Senate committee vote and the new-look bill.
More
Enforcement
Greece's Hellenic Data Protection Authority fined Cosmote and OTE, Cosmote's network provider, 6 million euros and 3.25 million euros, respectively, for their roles in a data breach.
More
The California attorney general's office announced it sent an undisclosed number of noncompliance notices to companies whose customer loyalty programs allegedly violate the California Consumer Privacy Act.
More
Canada
Quebec’s Commission d’accès à l’information outlined obligations coming into force in September under amendments to the Act Respecting the Protection of Personal Information in the Private Sector.
More
Europe
Euractiv reports the European Commission plans to introduce its Data Act on non-personal data Feb. 23. Leaked documents revealed the commission's draft will include provisions on sharing data, conditions for access by public bodies, international data transfers, cloud switching and interoperability.
More
US
U.S. Sens. Ron Wyden, D-Ore., Cory Booker, D-N.J., and Rep. Yvette Clarke, D-N.Y., announced the introduction of the Algorithmic Accountability Act, which aims to "bring new transparency and oversight of software, algorithms and other automated systems."
More
Colorado Attorney General Phil Weiser provided his view on upcoming Colorado Privacy Act rulemaking.
More
A proposed bill to codify the right to privacy into the Maine state constitution is facing pushback from First Amendment advocates and the Christian Civic League of Maine, the Portland Press Herald reports.
More
The Boston Globe reports the Massachusetts Legislature's Joint Committee on Advanced Information Technology, the Internet and Cybersecurity favorably reported out of committee the proposed Massachusetts Information Privacy Act on a 12-0 vote.
More
The Washington House Civil Rights & Judiciary voted 9-8 to move House Bill 1850, the Washington Foundational Data Privacy Act, out of committee with favorable recommendation.
More
Privacy Operations Management
Brazil's data protection authority, the Autoridade Nacional de Proteção de Dados, issued guidelines for data processing by the government and public sector under the General Data Protection Law.
More
The European Data Protection Board published its first opinion regarding certification schemes, responding to a submission from Luxembourg’s National Commission for Data Protection on its EU General Data Protection Regulation Certified Assurance Report-based Processing Activities.
More
Japan’s Ministry of Economy, Trade and Industry published “Governance Guidelines for the Practice of AI Principles.”
More
