In this week’s Privacy Tracker legislative roundup, get insight on the EU General Data Protection Regulation’s new rules surrounding employee data, cross-border data transfers and “profiling,” also, find out what’s happening in negotiations for EU-U.S. data transfers. Israel’s data protection authority has clarified its stance on transferring data to the U.S. after the invalidation of Safe Harbor. Canada may see a legislative approach to public-sector record keeping in the wake of scandal, and in the U.S., lawmakers are proposing bills at the federal and state level to improve health IT, limit the accessibility of police body camera footage and protect student privacy.
LATEST NEWS
Sens. Jack Reed, D-RI, and Susan Collins, R-Maine, have introduced the Cybersecurity Disclosure Act of 2015, which would require publicly traded companies to provide more transparency around the cybersecurity knowledge on corporate boards, reports Inside Privacy.
Senate health committee Chairman Lamar Alexander, R-Tenn., and Ranking Member Patty Murray, D-Wash., have released a discussion draft of the committee’s bill to improve health IT, reports HIT Consultant.
Missouri state Rep. Ken Wilson has proposed a bill to exempt police body camera footage from Freedom of Information Act requests when there is a reasonable expectation of privacy, reports Smithville Herald.
State lawmakers in New Mexico have proposed a bill that would require law enforcement to obtain a warrant in order to access individuals’ electronic devices, reports Albuquerque Journal.
Washington, DC, Council member David Grosso has introduced a bill to protect student privacy, reports NBC Washington.
ICYMI
Timothy Banks, CIPP/C, CIPM, writes for Privacy Tracker about indications that a legislative approach to public-sector record-keeping may be on the rise in Canada.
Philip Gordon offers an in-depth 10-step guide for U.S.-based multinational corporations to comply with employee privacy rules under the General Data Protection Regulation in this Privacy Tracker post.
IAPP Research Director Rita Heimes examines the new definitions and regulations around "profiling" in the General Data Protection Regulation.
IAPP Westin Fellow Anna Myers, CIPP/US, examines the requirements for cross-border data transfers in the General Data Protection Regulation.
U.S.
Wired looks at the American Civil Liberties Union's TakeCTRL program, an effort championing a band of pro-privacy legislation at the state level that would affect more than 100 million Americans.
In an article for International Business Times, Steve Erlich says the recent trend toward increased regulation in the financial sector is likely to increase in 2016.
ASIA PACIFIC
CANADA
CRTC, in association with Fasken Martineau, is on Feb. 10 holding a panel discussion about the lessons the regulators have learned about Canada's Anti-Spam Law over the last 18 months.
EUROPE
Israel's data protection authority, ILITA, has now issued a set of updates and clarifications on data transfers to the U.S. post-Schrems case, stating that "for the time being" it will not "initiate enforcement actions in connection with data transfers" from Israel to the U.S. based on the Safe Harbor arrangement.
Negotiations on a new transatlantic data-transfer agreement appear to be stalling as a deadline for a finalized deal rapidly approaches, The Wall Street Journal reports.