In this week's Privacy Tracker global legislative roundup, IAPP Staff Writer Jennifer Bryant examined the potential implications the Austrian Data Protection Authority’s Google Analytics decision will have on data transfers. European Parliament approved the Digital Services Act. U.S. Federal Trade Commission Chair Lina Khan offered a window into the future of the commission's enforcement work. And Casentino Strategies Founder and Principal Paula Bruening explored the debate around a private right of action in a U.S. federal privacy law.
THE LATEST
According to The UB Post, Mongolia's Standing Committee on Innovation and e-Policy announced the passage of the Law on Protection of Personal Information following its proposal during Parliament's 2021 fall session.
More
Thailand's Personal Data Protection Committee has been established and will hold its first meeting in February, the Bangkok Post reports. The 16-member committee, established as part of the Personal Data Protection Act, has authority to make rules and publish guidance pertaining to compliance with the PDPA.
More
The U.S. Federal Trade Commission released updated resources to help determine if an entity is covered by the Health Breach Notification Rule.
More
ICYMI
IAPP Staff Writer Jennifer Bryant took a dive into the decision by the Austrian Data Protection Authority’s ruling use of Google Analytics violates the EU General Data Protection Regulation.
More
U.S. Federal Trade Commission Chair Lina Khan discussed the commission's current and future enforcement endeavors in her first on-camera appearance since her appointment. IAPP Staff Writer Joe Duball recapped the key comments from Khan's appearance.
More
Casentino Strategies Founder and Principal Paula Bruening considers how including a private right of action in a U.S. federal privacy law could look in order to pass.
More
ENFORCEMENT
Germany's State Commissioner for Data Protection in Lower Saxony fined retailer Notebooksbilliger.de 10.4 million euros over employee privacy violations related to workplace monitoring without a legal basis.
More
Italy's DPA, the Garante, announced a 26.5 million euro fine against multinational electric and gas distributor Enel Energia for violations of the EU General Data Protection Regulation.
More
Portugal’s National Data Protection Commission fined the municipality of Lisbon 1.25 million euros for processing personal data of protestors in violation of its General Data Protection Regulation.
More
The U.K. Information Commissioner’s Office determined the Ministry of Justice violated the EU and U.K. General Data Protection Regulation for failing to provide 7,753 data subjects access to their data.
More
EUROPE
European Parliament voted 530-78 in favor of passing the Digital Services Act, setting up trilogue negotiations with the European Commission and the Council of the European Union before final passage.
More
European Data Protection Supervisor Wojciech Wiewiórowski published an opinion on the European Commission’s proposed regulation on transparency and targeting for political advertising.
More
US
U.S. Reps. Anna Eshoo, D-Calif., and Jan Schakowsky, D-Ill., along with Sen. Cory Booker, D-N.J., introduced the Banning Surveillance Advertising Act. The bill would ban the use of personal information for targeted advertising, including the use of sensitive information and data purchased from data brokers.
More
State Sen. Whitney Westerfield, R-Ky., said a consumer privacy bill seeking to protect online data is a top priority, WHOP News Radio reports.
More
A constitutional amendment proposed in Maine would add privacy as a natural right and require a warrant before law enforcement can seize electronic data or communications, the Portland Press Herald reports. The proposal is one of several privacy-related bills being considered this session.
More
State Sen. Angela Turner-Ford, D-Miss., introduced Senate Bill 2330, the Mississippi Consumer Data Privacy Act.
More
The Vermont General Assembly has two comprehensive privacy bills proposed in the House of Representatives. House Bill 160 was carried over from the 2021 legislative session while H.570 was raised at the start of the current session.
Virginia lawmakers will consider seven bills to amend the Virginia Consumer Data Protection Act prior to its Jan. 1, 2023, implementation date, according to Husch Blackwell’s “Byte Back.” The proposals seek to amend the act’s right to delete, nonprofit definition and enforcement provisions, following meetings of the VCDPA Work Group.
More
