In this week's Privacy Tracker legislative roundup, read about India's long-awaited draft data protection bill, the Personal Data Protection Bill, 2018. Iran introduces an online privacy bill aimed at protecting citizens and aiding cooperation with the European Union. The U.S. is reportedly working on a proposal for federal privacy rules. EU Justice Commissioner Věra Jourová gave the U.S. three months to comply with the EU-U.S. data-sharing agreement.
LATEST NEWS
Iran’s Minister of Information and Communications Technology introduced the Citizens’ Personal Data Protection and Privacy Bill, aimed at protecting the online privacy of its citizens, in an effort to advance the country’s digital development and aid cooperation with the European Union, PressTV reports.
More
In a letter to U.S. Commerce Secretary Wilbur Ross, EU Justice Commissioner Věra Jourová wrote the White House has failed to appoint senior personnel to oversee the EU-U.S. data-sharing agreement and has three months to comply, the Financial Times reports.
More
Speaking before the Heritage Foundation, U.S. Health and Human Services Secretary Alex Azar said the department will be issuing requests for information related to the Health Insurance Portability and Accountability Act, 42 CFR Part 2 and the Stark Anti-Kickback Statute in the coming months with an eye to revamping the rules, Politico reports.
More
The Massachusetts legislature voted to pass the final language of a bill designed to protect consumers impacted by data breaches, moving the bill, “An Act relative to consumer protection from security breaches,” to the governor’s desk, Wicked Local Marion reports.
More
ICYMI
In this Privacy Tracker post, Diego Fernandez offers an overview of the new rules issued by the Agency of Access to Public Information, the governmental entity tasked with enforcing the Argentine Data Protection Law.
More
Galaad Delval, CIPP/E, writes for Privacy Tracker about two important developments of this latest draft of China’s E-Commerce Law: the addition of pro-consumer provisions and of new articles addressing unfair competition.
More
In a post for Privacy Tracker, Corey Dennis, CIPP/E, CIPP/US, and Elizabeth Johnson write that the new California Consumer Privacy Act of 2018 will “significantly impact health care organizations."
More
In an article for The Privacy Advisor, Jeroen Terstegge, CIPP/E, CIPP/US, covered the Dutch Data Protection Authority’s "ex officio" investigation into compliance with the EU General Data Protection Regulation in the private sector. He wrote, "This should have a ripple effect on other organizations in those sectors, which is also part of the 'system supervision' idea."
More
US
The White House is working on a proposal for federal privacy rules, The Washington Post reports.
More
Rep. Hank Johnson, D-Ga., has introduced a pair of digital privacy bills, Engadget reports.
More
In a letter to the director of the National Institute of Standards and Technology, the director of the National Security Agency, and the secretary of the Department of Homeland Security, Sen. Ron Wyden, D-Ore., asked the government to end its use of Adobe Flash Player.
More
ASIA-PACIFIC
A committee headed up by former Supreme Court Justice B.N. Srikrishna has released its long-awaited draft data protection bill for India. The Personal Data Protection Bill, 2018 will now be reviewed by India's Ministry of Electronics and Information Technology.
More
CANADA
In a news release, the Office of the Privacy Commissioner of Canada announced New Zealand–based social network and search engine startup Profile Engine violated Canadian privacy law when it scraped public profiles of approximately 4.5 million Canadians for reuse on its own site.
More
The Office of the Privacy Commissioner of Canada has released guidance advising citizens to leave their devices at home when crossing the U.S. border, StarMetro Vancouver reports.
More
EUROPE
Following an appeal against Belgium’s data retention law by four nonprofit groups, the country’s Constitutional Court has referred the case to the Court of Justice of the European Union, Telecompaper reports.
More
France's data protection authority, the CNIL, has announced it has closed a formal notice procedure placed on a connected toy company.
More
The U.K. Information Commissioner's Office has released its annual report for 2017–18.
More
In a post on its new website, the European Data Protection Board, which was formerly the Article 29 Working Party — a collection of the EU's data protection authorities — has offered an update to its cross-border cooperation and consistency procedures.
More