In this week’s Privacy Tracker global legislative roundup, IAPP Legal Research Fellow Cathy Cosgrove dissects the newly-proposed Data Protection Act by U.S. Sen. Kirsten Gillibrand, D-N.Y. Fomer IAPP Legal Extern Darya Balybina, CIPP/E, CIPP/US, brings clarity to data protection impact assessments under the EU General Data Protection Regulation. India's Parliament has opened a public consultation on its draft data protection bill. The Republic of Northern Macedonia has adopted a data protection law. State lawmakers in Iowa, New Hampshire and Wyoming are exploring various forms of privacy legislation. And New Mexico's attorney general has sued Google over alleged U.S. Children's Online Privacy Protection Act violations.
THE LATEST
The Croatian Presidency of the Council of the European Union has released its first ePrivacy Regulation proposal.
More
ICYMI
Former IAPP Legal Extern Darya Balybina, CIPP/E, CIPP/US, offers an update to what EU authorities believe is and is not subject to a data protection impact assessment under the EU General Data Protection Regulation in this piece for The Privacy Advisor.
More
In a post for Privacy Perspectives, Shweta Reddy. D, CIPP/US, looks at where India's GDPR adequacy status may stack up.
More
In this Privacy Tracker post, Baker McKenzie’s Helena Engfeldt, CIPP/E, CIPP/US, and Jennie Nilsson explore how a decision from the Swedish data protection protection authority may bridge the gap between EU and U.S. laws.
More
For Privacy Tracker, IAPP Legal Research Fellow Cathy Cosgrove offered a breakdown of U.S. Sen. Kirsten Gillibrand's, D-N.Y., federal privacy bill proposal, including what it may mean for the U.S. Federal Trade Commission and how it will interact with state laws.
More
The IAPP Westin Research Center has updated its “U.S. State Comprehensive Privacy Law Comparison” table.
More
In this post for Privacy Tech, Caitlin Fennessy, CIPP/US, talks with creators of the new Microsoft open-source tool mapping ISO's global privacy standard, ISO/IEC 27701, to nine different privacy laws from around the world.
More
Baker McKenzie’s Teresa Michaud, CIPP/US, and Alexander Davis wrote for Privacy Tracker on whether private litigants can enforce California Consumer Privacy Act compliance provisions.
More
Global Cyber Risk Senior Principal Joel Schwarz, CIPP/G, offers a breakdown of Supreme Court of Georgia's ruling in a Fourth Amendment air bag case in this piece for The Privacy Advisor.
More
ENFORCEMENT
Irish Data Protection Commissioner Helen Dixon has indicated that her office's investigations into some big tech privacy violations are close to wrapping up, the Irish Independent reports.
More
According to the European Data Protection Board, the Romanian National Supervisory Authority issued a pair of separate 3,000 euro fines to SC Enel Energie for violations of the GDPR.
More
ASIA-PACIFIC
The Joint Parliamentary Committee charged with reviewing India's Personal Data Protection Bill has put the legislation up for public comment, The Citizen reports.
More
In South Korea, the Korea Internet & Security Agency published a set of guidelines for data that is processed through internet-of-things devices. (Original article in Korean.)
More
EUROPE
Denmark's data protection authority, Datatilsynet, released guidelines on data processing for website visitors. (Original article is in Danish.)
More
Germany's Federal Commissioner for Data Protection and Freedom of Information, BfDI, has announced the European Data Protection Board will recommend simple improvements in its contribution to the GDPR evaluation.
More
Reuters reports Advocacy group NOYB, started by Austrian privacy activist Max Schrems, filed a complaint against Amazon to Germany's Hessian Supervisory Authority over violations of the GDPR.
More
The Directorate for Personal Data Protection announced the Parliament of the Republic of Northern Macedonia has adopted the Law on Personal Data Protection. (Original article is in Macedonian.)
More
US
The Association of National Advertisers is on the fence regarding its views of the new California Consumer Privacy Act draft regulations, MediaPost reports.
More
Three plaintiffs filed a lawsuit in the U.S. District Court for the Northern District of Illinois alleging law enforcement providers Motorola and Vigilant store 18 million mugshots without meeting Biometric Information Privacy Act policies, BiometricUpdate.com reports.
More
Under a bill proposed by Iowa Sen. Zach Nunn, R-Altoona, known as the Right to be Forgotten Act, state residents could request certain content be removed from the internet, The Gazette reports.
More
Broadband carriers have filed a lawsuit in the U.S. District Court for the District of Maine arguing a privacy bill that would require internet service providers to get explicit consent before using consumer information for ad targeting violates free speech rights, MediaPost reports.
More
NH Business Review reports the New Hampshire Legislature has begun evaluating a comprehensive privacy bill introduced by the state House of Representatives.
More
New Mexico’s Attorney General Hector Balderas has filed a lawsuit against Google alleging it violated the Children’s Online Privacy Protection Act and New Mexico’s Unfair Practices Act by illegally collecting personal information of children under 13, the Associated Press reports.
More
Wyoming legislators are proposing three bills applying to the digital world, one of which would hold internet service providers accountable for protecting users’ personal information, the Casper Star-Tribune.
More
