In this week’s Privacy Tracker legislative roundup, get an update on the progress of the committee determining India’s future privacy regime. The Italian Parliament has approved regulation allowing telecommunication operators to retain telephone and internet data for up to six years. The U.K. is acknowledging that rules under its Investigatory Powers Act need to be changed to comply with the EU General Data Protection Regulation. Regional data protection authorities in Russia have released their respective plans for the year. In the U.S., the Supreme Court heard arguments in a landmark cellphone location privacy case; federal legislation has been introduced to tackle online exploitation and data breach notification, and debate continues over what to do about Section 702 of the Foreign Surveillance Act.
LATEST NEWS
Swarajya Magazine reports on the progress of the committee determining India’s future privacy regime.
More
The Italian Parliament has approved regulation allowing telecommunication operators to retain telephone and internet data for up to six years, reports EDRI.
More
Business Daily Africa reports that the Central Bank of Kenya published a guidance note on cybersecurity with similarities to New York's new financial security regulations.
More
Mondaq offers an overview of the erasure, destruction and anonymization rules under Turkey’s new Data Protection Law.
More
The U.K. government is looking for public comment on changing the Data Retention and Investigatory Powers Act in order to comply with the GDPR, reports Out-Law.com.
More
The Supreme Court of Hawaii has ruled the the Honolulu Police Department conducted an illegal search by conducting aerial surveillance of a home on which it based a search warrant, reports Honolulu Civil Beat.
More
ICYMI
Earlier this week, the United States Supreme Court heard oral arguments in one of the most significant privacy cases in decades. IAPP Westin Fellow Lee Matheson, CIPP/US, read through the Carpenter v. United States transcripts and shares his takeaways in this post for Privacy Perspectives.
More
David Meyer writes in this exclusive for The Privacy Advisor about the Article 29 Working Party’s draft guidelines interpreting the General Data Protection Regulation's sections on profiling and automated decision-making and questions around a possible contradiction with the law itself.
More
This year, the International Conference on Data Protection & Privacy Commissioners conducted its first census of member DPAs to, among other things, shed light on their varying activities. The IAPP was granted access to data in the census results and, in this piece for The Privacy Advisor, IAPP Westin Fellow Muge Fazlioglu, CIPP/US, summarizes the most interesting findings on DPAs’ activities.
More
In this piece for The Privacy Advisor, IAPP Westin Fellow Callie Schroeder, CIPP/C, CIPP/E, CIPP/US, CIPM, has reviewed the International Conference of Data Protection and Privacy Commissioners’ resolutions and reports, dating back to its inception in 1979, and — for the first time anywhere — has analyzed and organized them by subject matter for your easy reference and review.
More
Last month, after 10 years as the Israeli Law, Information and Technology Authority, Israel’s data protection authority announced it would rebrand itself as the Privacy Protection Authority. In this exclusive for The Privacy Advisor, Molly Hulefeld talks to the head of the newly named authority.
More
US
Three Senate Commerce Committee members introduced legislation that would force companies to notify customers of a data breach within 30 days of discovery and carry a five-year prison sentence for knowingly concealing a data breach, CyberScoop reports.
More
A bipartisan group of U.S. senators, including Kamala Harris, D-Calif., Richard Burr, R-N.C., and Amy Klobuchar, D-Minn., introduced federal legislation Tuesday that would make so-called "revenge porn," or nonconsensual pornography, a federal crime.
The Hill reports that House Intelligence Committee Chairman Devin Nunes, R- Calif., said the committee is preparing to introduce a proposal this week that would renew Section 702 of the Foreign Surveillance Act, which is set to expire at the end of 2017. The House and Senate intel committees are trying to reconcile differences in their proposals, namely the use of warrants.
More
The Federal Trade Commission announced it has given final approval to settlements with three companies that violated the FTC Act by falsifying their participation with the EU-U.S. Privacy Shield agreement.
More
ASIA PACIFIC
The Australian Attorney General’s Department announced it will move forward with plans to participate in the APEC Cross Border Privacy Rules system, Hunton & Williams’ Privacy & Information Security Law Blog reports.
More
New Zealand's Office of the Privacy Commissioner offers guidance on the proper use of drones and security cameras, should anyone receive them as gifts this holiday season.
More
CANADA
Federal Court Chief Justice Paul Crampton ruled on the legality of the Canadian Security Intelligence Service obtaining cellphone data without a warrant, The Globe and Mail reports.
More
The Lawyer’s Daily reports on a bill introduced in Saskatchewan aimed at addressing nonconsenual pornography within the province. The Privacy Amendment Act, 2017, will put the onus on the person who posted the intimate image to prove they received permission to share that intimate image.
More
As Saskatchewan prepares to alter the Freedom of Information and Protection of Privacy Act, municipal police departments are changing the ways officers collect data, CBC News reports.
More
EUROPE
In an interview with EURACTIV, European Data Protection Supervisor Giovanni Buttarelli called for the development of a centralized data protection authority to oversee transnational privacy breach investigations.
More
Central, North-West, Uralian, and Siberian regional divisions of Roskomnadzor, Russia’s data protection authority, have published their 2018 plans on how they will conduct inspections with companies to ensure compliance with existing data privacy requirements, Hogan Lovells’ Chronicle of Data Protection reports.
More