This week’s Privacy Tracker roundup includes an announcement on Bermuda’s Personal Information Protection Act Draft Model as well as legislative developments in the U.S., including Delaware’s new Student Data Privacy Protection Act, continued discussion in New Mexico on drone legislation and a Pennsylvania judge’s opinion that the state’s wiretap law is not keeping up with technology. Plus, read about the requirements of complying with Canada’s Digital Privacy Act, one privacy commissioner’s criticism of Germany’s proposed law “on the introduction of data fencing as criminal offence” and China’s proposed legislation to bolster privacy protection.

LATEST NEWS

Bermuda’s Personal Information Protection Act Draft Model was tabled Friday, and Minister of Economic Development E Grant Gibbons has called it “a milestone in the protection of the rights of the residents of Bermuda.”

IT World Canada reports on the requirements of complying with the Digital Privacy Act, especially the challenge of keeping and maintaining “a record of every breach of security safeguards involving personal information under its control” as require by the law.

Ontario’s top court has ruled condominium residents “have a reasonable expectation of privacy in the common areas of their buildings,” The Canadian Press reports.

In The Netherlands, the government has said the requirement “to report data leaks and expanded powers of Dutch privacy regulator will go into effect from 1 January 2016,” Telecompaper reports.

Delaware’s Student Data Privacy Protection Act, which was modeled on California’s Student Online Personal Information Privacy Act and passed by the General Assembly on June 25, is awaiting the governor’s signature, JDSupra reports.

While drone regulations failed to pass during the New Mexico Legislature’s regular session, Associated Press reports the Science, Technology and Telecommunications Committee met recently “to hear from a panel of experts about the advancement of the technology and its possible uses as well as concerns about privacy.”

In a Pennsylvania court case, an opinion by Lehigh County Judge Robert L. Steinberg indicating “Pennsylvania's wiretap law is not keeping pace with the widespread adoption of technology such as tablet computers and Google Glass,” Government Technology reports.

The Associated Press reports on Rhode Island’s Katie’s Law, which requires individuals arrested for violent crimes to provide samples of their DNA.

Lexology reports on Hessian Privacy Commissioner Eva Kühne-Hörmann’s criticism of Germany’s “draft law on the introduction of data fencing as a criminal offence for being too soft.”

U.S.

The Senate Intelligence Committee is expected to soon file a bill mandating that if an "electronic communication service provider" has knowledge of terrorist activity on its site, it must report the activity to authorities, The Washington Post reports.

Rep. David Cicilline (D-RI) has introduced The Consumer Privacy Protection Act as a companion bill to a Senate bill from Sen. Patrick Leahy (D-VT), MediaPost reports, noting the bill would require companies to notify consumers within 30 days if hackers obtain "sensitive information" and implement security procedures to, in part, minimize the amount of sensitive information they collect.

The National Treasury Employees Union is suing the Office of Personnel Management over its recent data breach, following similar action by the American Federation of Government Employees, FedSmith reports.

Critics of Section 702 of the 2008 FISA Amendments Act, including Rep. Thomas Massie (R-KY), who said the act is "really troubling, and it's a clear violation of the Fourth-Amendment prohibition against unreasonable searches and seizures," are urging Congress to revise it, USA Today reports.

Attorneys general from the 47 states that have data breach notification laws have sent Congressional leaders a letter urging them to not preempt states' rights in investigating breaches, The Hill reports.

The Securities and Exchange Commission (SEC) opposition to the bipartisan Email Privacy Act on the grounds "that the legislation would harm the SEC's enforcement efforts" doesn't take into account Americans’ basic privacy rights, Perkins Coie Partner Lou Mejia writes for The Hill.

Consumer Watchdog is filing a formal complaint with the Federal Trade Commission arguing that, by not providing Americans with the same right-to-be-forgotten measures existent in the EU, Google is exercising an unfair and deceptive trade practice, The Washington Post reports.

The U.S. Chamber of Commerce is siding with Google and Viacom in asking an appellate court to throw out a lawsuit accusing the companies of violating a federal privacy law by using tracking cookies on children's website Nick.com, MediaPost reports.

A judge has unsealed court documents in a case against celebrity Bill Cosby, stating that Cosby’s privacy expectations are diminished because he is a public figure who "donned the mantle of public moralist."

ASIA-PACIFIC

China's highest legislative body, the National People's Congress, has released text of proposed national legislation that would bolster privacy protection, outlaw hacking activity and give authorities a mandate to control Internet access, the Associated Press reports.

CANADA

The Federal Court of Appeal has ordered the expansion of a class-action lawsuit brought by thousands of students after the government lost their personal loan data, CBC News reports.

Three hospital employees have been charged under Ontario's Personal Health Information Protection Act "for snooping into former mayor Rob Ford's medical records after he was diagnosed with cancer," The Toronto Star reports.

EU

European Data Protection Supervisor Giovanni Buttarelli has said EU governments should "focus on implementing laws that take into account privacy rights as well as the indisputable need to fight terrorism,” Ars Technica reports.

Under new digital health laws passed by Germany’s Bundestag, doctors “will have access to emergency patient data via electronic health cards in the event of an emergency from 2018 if patients request storage of their emergency patient data on the card,” Out-Law.com reports.

Russia’s Parliament has approved a bill that will require online search engines to remove search results about specific individuals at their request, regardless if the person is a public figure or not, NDTV reports.