In this week's global legislative roundup, IAPP Senior Westin Research Fellow Müge Fazlioglu, CIPP/E, CIPP/US, examined privacy bills proposed during the 117th U.S. Congress. The California Privacy Protection Agency published the first California Privacy Rights Act draft regulations. IAPP Staff Writer Jennifer Bryant reported on the CPPA's proposed course of action for the upcoming CPRA rulemaking process. In separate enforcement actions, Italy's data protection authority fined Uber 4.2 million euros for alleged data processing violations and the U.S. Federal Trade Commission fined Twitter $150 million for violating a 2011 order.
The latest
IAPP Senior Westin Research Fellow Müge Fazlioglu, CIPP/E, CIPP/US, examined privacy bills proposed during the 117th U.S. Congress that have received support from both Democrats and Republicans.
More
Brazil's data protection authority, the Autoridade Nacional de Proteção de Dados, offered recommendations to the Brazilian government regarding its use of third-party cookies.
More
France's data protection authority, the Commission nationale de l'informatique et des libertés, put 22 municipalities on notice that they must appoint a data protection officer within four months in compliance with the EU General Data Protection Regulation.
More
Meta is facing a potentially large fine from the Irish Data Protection Commission over children’s data processing violations on its Instagram platform, The Irish Times reports.
More
The California Privacy Protection Agency published a selection of California Privacy Rights Act draft regulations.
More
ICYMI
In a lengthy discussion with IAPP Editorial Director Jedidiah Bracy, CIPP, European Data Protection Board Head of the Secretariat Isabelle Vereecken and Head of Activity for Enforcement Support and Coordination Gwendal Le Grand detailed the EDPB's moves to improve strategic enforcement of the EU General Data Protection Regulation.
More
IAPP Staff Writer Jennifer Bryant reported on the California Privacy Protection Agency Board's proposed course of action for the upcoming California Privacy Rights Act rulemaking process, noting enforcement and agency audit rights as areas of focus.
More
Enforcement
The Belgian Data Protection Authority fined the Roularta press group 50,000 euros for its management of cookies on two websites.
More
European Data Protection Supervisor Wojciech Wiewiórowski offered an opinion on data protection considerations associated with the United Nations’ proposed Comprehensive International Convention on Countering the Use of Information and Communications Technologies for Criminal Purposes.
More
Italy's data protection authority, the Garante, fined ridesharing platform Uber 4.2 million euros for alleged data processing violations.
More
The U.S. Federal Trade Commission fined Twitter $150 million for using account security data for targeted advertising, in violation of a 2011 order.
More
Canada
The Office of the Information and Privacy Commissioner of Ontario opened an investigation into a dossier the city of Toronto reportedly compiled on the city’s homeless people in 2021, the Toronto Sun reports.
More
Europe
The National Center for Personal Data Protection of Moldova approved the standard contract for transmission of data to other states.
More
Privacy operations management
Information and Privacy Commissioner of Ontario Patricia Kosseim provided an update on work in four strategic priority areas of focus identified one year ago.
More
The European Commission published a Q&A on standard contractual clauses for data transfers under the EU General Data Protection Regulation.
More
The Irish Data Protection Commission published three guides for children to help explain data protection and their rights under the EU General Data Protection Regulation.
More
The Ukraine Parliamentary Commissioner for Human Rights issued guidance for the protection of personal data under martial law, amid the Russian invasion.
More
