In this week's Privacy Tracker global legislative roundup, Colorado became the third U.S. state to pass comprehensive privacy legislation. The Office of the Privacy Commissioner of Canada deemed the Royal Canadian Mounted Police's use of Clearview AI illegal. Luxembourg's National Commission for Data Protection proposed a record-setting EU General Data Protection Regulation fine against Amazon. And the European Commission is planning legal action against Belgium's Data Protection Authority over alleged noncompliance with GDPR independence requirements.
THE LATEST
ZDNet reports Brazil's data protection authority, the Autoridade Nacional de Proteção de Dados, is drafting data protection rules for small- and medium-sized businesses.
More
Le Journal de Québec reports provincial lawmakers in Québec, Canada, halted consideration of Bill 64, which would have modernized the province's privacy legislation, due to private sector concerns.
More
Iceland's data protection authority, Persónuvernd, ruled claims that an employer violated a former employee's privacy by accessing their Facebook account were unfounded.
More
Peru's Ministry of Justice and Human Rights announced a draft law concerning the creation of the National Authority for Transparency, Access to Public Information and Protection of Personal Data will be presented to Congress of the Republic of Peru.
More
The Texas Legislature passed House Bill 3746, which amends the state's data breach notification law. The updates take effect Sept. 1.
More
ICYMI
The Office of the Privacy Commissioner of Canada found the Royal Canadian Mounted Police violated the Privacy Act through its use of Clearview AI's facial recognition technology. IAPP Associate Editor Ryan Chiavetta, CIPP/US, had details on OPC's announcement.
More
IAPP Staff Writer Joe Duball reported on a range of reactions to the passage of the Colorado Privacy Act by the Colorado General Assembly.
More
ENFORCEMENT
The European Commission plans to take legal action against Belgium after complaints were filed alleging Belgium's Data Protection Authority has not been meeting the independence requirements under the EU General Data Protection Regulation.
More
The Wall Street Journal reports Luxembourg's National Commission for Data Protection proposed a $425 million (348.7 million euro) fine against Amazon for alleged GDPR violations related to the company's data collection practices.
More
ASIA-PACIFIC
In a submission to a review of the Privacy Act 1988, the Australian Department of Health asked for government guidance on deidentification and genomic information, ZDNet reports.
More
China's National People’s Congress Standing Committee passed a data security law to strengthen control over digital information, Bloomberg reports.
More
EUROPE
The Office of the European Data Protection Supervisor released a case law digest exploring judgements rendered by the Court of Justice of the European Union related to international transfers of personal data.
More
France's data protection authority, the Commission nationale de l'informatique et des libertés, released eight recommendations to improve the protection of minors online.
More
Turkey's data protection authority, Kişisel Verileri Koruma Kurumu, announced intentions to increase its enforcement of data protection law and plans to align the country's Law on Protection of Personal Data No. 6698 with the GDPR.
More
US
New America's Open Technology Institute's Christine Bannan, CIPP/US, and Raj Gambhir look at three proposed U.S. privacy laws and the agencies that would be established to handle enforcement.
More
U.S. Sens. Marco Rubio, R-Fla., Chris Coons, D-Del., John Kennedy, R-La., and Raphael Warnock D-Ga., reintroduced the Small Business Credit Protection Act.
More
Members of the U.S. Senate Committee on Commerce, Science, and Transportation, led by Sen. John Thune, R-S.D., reintroduced the Filter Bubble Transparency Act, which would regulate Big Tech companies on consumer transparency and allow for content delivery not based on algorithms or profiling.
More
U.S. Sen. Mark Warner, D-Va., is preparing a bipartisan piece of legislation requiring organizations to report cyberattacks to the federal government, CNBC reports.
More
