In this week's Privacy Tracker global legislative roundup, take a look at a new IAPP white paper that helps privacy professionals as they work to operationalize their California Consumer Privacy Act compliance programs. A piece for The Privacy Advisor looks at the potential future of the ePrivacy Regulation as Finland is set to start its six-month EU presidency. The Office of the Privacy Commissioner of Canada announced it has revised the framework for its transborder data flow consultation, and the Spanish Data Protection Agency, the AEPD, fined soccer league La Liga 250,000 euros for alleged violations of the EU General Data Protection Regulation.
LATEST NEWS
The European Union Aviation Safety Agency published a new set of rules on the use of drones.
More
Open Rights Group found the U.K.'s Age-Verification Certificate Standard for pornographic content does not properly meet the necessary standards for cybersecurity and data protection.
More
The New York Times released a profile on Timothy Carpenter, the man at the center of the landmark Carpenter v. United States privacy case.
More
The 9th U.S. Circuit Court of Appeals in San Francisco reinstated a class-action lawsuit against Facebook for its alleged use of an auto-dialing system to send robocalls.
More
The Denton Record-Chronicle reports on the opposition to a proposed privacy bill in Texas.
More
The Washington Post reports on the struggles to enforce the Children's Online Privacy Protection Act and the impact it has had on the online ecosystem.
More
ICYMI
In this piece for Privacy Tracker, Mattos Filho Privacy, Data Protection and Technology Associate Alan Thomaz, CIPP/E, CIPM, FIP, and Data Protection and Tech Regulation Law Professor and Lawyer Thiago Luís Sombra, CIPP/E, write about the provision approved by Brazil's Congress that allows for the creation of a data protection authority for the country and amends the LGPD.
More
In this piece for The Privacy Advisor, David Thomas reports on the potential future for the ePrivacy Regulation as Finland is set to start its six-month EU presidency.
More
At the U.S. Senate Committee on Banking, Housing and Urban Affairs hearing, lawmakers sought answers on how the data broker industry operates, has evolved over time and technological progress, and what Congress should do about it. IAPP Editor Angelique Carson, CIPP/US, was at the hearing and has the details in this piece for The Privacy Advisor.
More
In this IAPP white paper, Baker McKenzie Partner Lothar Determann and IAPP Westin Fellow Mitchell Noordyke, CIPP/E, CIPP/US, CIPM, outline how businesses must develop a perspective on the definition of "account" as they work to operationalize their California Consumer Privacy Act compliance programs with respect to data access requests.
More
Steve Wright of Privacy Culture has published a white paper, housed in the IAPP Resource Center, that offers an overview of the GDPR Maturity Framework that aids a DPO, as well as the organization they represent.
More
CANADA
The Office of the Privacy Commissioner of Canada has announced a revision to the framework of its consultation on transfers for processing and transborder data flows.
More
An August 2018 federal directive states Canadian surveillance agencies can collect and share citizens’ data as part of legitimate investigations.
More
EUROPE
The Austrian Supreme Court has ruled Facebook is not permitted to take further action to block a model suit regarding its fundamental privacy issues.
More
Spain's Data Protection Agency, the AEPD, has fined soccer league La Liga 250,000 euros for alleged violations of the EU General Data Protection Regulation.
More
The European Data Protection Board published updated versions of its “Guidelines 4/2018 on the accreditation of certification bodies under Article 43 of the General Data Protection Regulation” and “Guidelines 1/2018 on certification and identifying certification criteria in accordance with Articles 42 and 43 of the Regulation.”
More
US
California Senate Democrats voted to ban the use of facial-recognition technology in body cameras used by law enforcement.
More
The issue of whether police can compel someone to provide their passcode or biometric data to unlock their phone has been raised in Florida.
More
Gov. Larry Hogan, R-Md., signed a bill to amend Maryland's data breach notification rules.
More
Foley Hoag Security, Privacy and the Law Blog takes a look at key provisions within the New York Privacy Act.
More
A bill banning the use of facial-recognition technology in New York schools for a year has advanced to the state Assembly’s Standing Committee on Ways and Means.
More
The Vermont Supreme Court has ruled that a patient can pursue legal action against a hospital and one of its employees for privacy violations.
More
A lawsuit seeking class-action status in Washington state is alleging that the nonconsensual collection of children's voice recordings by Amazon's Alexa violates laws in at least eight states.
More
The Financial Times reports work on a federal U.S. privacy law has slowed down on Capitol Hill as lawmakers continue to have partisan disagreements over the potential rules.
More
Bloomberg Businessweek reports efforts to create U.S. privacy legislation, at a state and federal level, are not progressing as quickly as lawmakers had hoped.
More
A coalition of state attorneys general has asked the U.S. Federal Trade Commission for stricter reporting requirements for tech acquisitions and new rules for data brokers.
More
Sen. Amy Klobuchar, D-Minn., introduced the Protecting Personal Health Data Act, which would create protections for genetic, biometric and personal health data.
More
A coalition of public interest groups alleges the four major wireless providers in the U.S. violated privacy laws by sharing consumers' location data without consent.
More
