In this week's Privacy Tracker global legislative roundup, the Croatian Presidency of the Council of the European Union released a revised draft proposal for ePrivacy Regulation. The IAPP released a new chart comparing India's Personal Data Protection Bill to the EU General Data Protection Regulation. The Office of the Australian Information Commissioner launched court action against Facebook. And in the U.S., lawmakers have until March 12 to come to a consensus on the Washington Privacy Act.

THE LATEST

The Croatian Presidency of the Council of the European Union released its latest ePrivacy Regulation proposal draft.
More

The Washington state bill on facial recognition is in flux after the state Senate asked the House of Representatives "to recede from amendments" after the House adopted the bill. 
More

ICYMI

In this piece for The Privacy Advisor, Zhong Lun Law Firm’s Jerry Fang and Wenpei Yu discuss why it is likely China will continue to stringently monitor apps in 2020.
More

Covington & Burling’s Kurt Wimmer, CIPP/E, CIPP/US, Gabe Maldoff and Diana Lee break compares India’s Personal Data Protection Bill to the EU General Data Protection Regulation in a chart published in the IAPP's Resource Center.
More

In response to global legislative changes, the IAPP released the electronic version of its "Privacy Enforcement Casebook 2020."
More

In this piece for The Privacy Advisor, Reed Smith’s Alexis Cocco, CIPP/US, and Kim Gold, CIPP/US, break down the California Consumer Privacy Act amendment Assembly Bill 713, which was declared an "urgency statute" by state legislators.
More

ENFORCEMENT

The Office of the Australian Information Commissioner launched court action against Facebook for alleged privacy violations of the Privacy Act 1988.
More

The Dutch data protection authority, Autoriteit Persoonsgegevens, announced a 525,000 euro fine against the Royal Dutch Lawn Tennis Association, the KNLTB, over EU General Data Protection Regulation violations.
More

AdExchanger reports the French data protection authority, the CNIL, is planning to finalize its updated guidelines for cookies and other trackers by the start of April.
More

Malta's Office of the Information and Data Protection Commissioner fined the Lands Authority 5,000 euros for violating Article 32 of the GDPR.
More

A school in Poland has been fined 4,600 euros for violations of the GDPR after processing the fingerprints of schoolchildren.
More

Court of Justice of the European Union Advocate General Maciej Szpunar issued an opinion on a case between the Romanian National Authority for the Supervision of the Processing of Personal Data and telecommunications provider Orange România.
More

The Swedish data protection authority, Datainspektionen, announced it will launch an investigation into whether various entities within the country used Clearview AI.
More

The U.K. Information Commissioner's Office announced a 500,000 GBP fine against Cathay Pacific Airways for lacking data security measures related to a data breach revealed in 2018. 
More

The U.K. Information Commissioner's Office issued a 500,000 GBP fine against CRDNN Limited related to 193 million nuisance calls.
More

The U.S. Department of Health and Human Services' Office of Civil Rights announced a $100,000 settlement with a Utah-based health practice for a potential violation of the Health Insurance Portability and Accountability Act.
More

ASIA-PACIFIC

The Office of the Australian Information Commissioner saw a 19% increase in reported data breaches in the second half of 2019 according to the recently published "Notifiable Data Breaches Report."
More

A group of 15 international technology and business trade associations is requesting changes to India’s privacy bill to enhance privacy protections.
More

BRAZIL

A bill sitting before Brazil's Chamber of Deputies would establish a legal framework for the use of artificial intelligence by the government, companies and individuals within the country.
More

EU

The European Data Protection Board offered its contribution to the evaluation of the GDPR.
More

Spain's data protection authority, the AEPD, published guidelines on how the GDPR addresses data processing that uses artificial intelligence technologies.
More

U.K.

The U.K. Information Commissioner’s Office announced organizations can submit their proposals for EU General Data Protection Regulation Codes of Conduct and Certification scheme criteria for approval.
More

U.S.

U.S. Rep. Jan Schakowsky, D-Ill., is working on proposals for a federal privacy law and amendments to Section 230 of the Communications Decency Act, Bloomberg Government reports.
More

U.S. Sens. Ed Markey, D-Mass., and Richard Blumenthal, D-Conn., introduced the Kids Internet Design and Safety Act, The Verge reports.
More

U.S. Rep. Adam Schiff, D-Calif., indicated Democrats in the House of Representatives are making progress on adding privacy protections to a Foreign Intelligence Surveillance Act reauthorization bill, The Hill reports.
More

MediaPost reports a coalition of privacy advocacy groups claims the latest California Consumer Privacy Act draft regulations will make the law more business friendly.
More

The California Supreme Court unanimously ruled stealing property by using someone else’s identity remains a felony, the San Francisco Chronicle reports.
More

New Jersey lawmakers proposed a data privacy bill, The Wall Street Journal reports.
More

In an op-ed for The Seattle Times, Hintze Law Partner Mike Hintze, CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPM, CIPT, FIP, explains why the Washington Privacy Act’s private right of action amendment may be an issue for the future of the proposed law.
More