In this week’s Privacy Tracker legislative roundup, read about the New Brunswick Privacy Commissioner’s push to get a private-sector breach notification law. The Irish Department of Justice published a consultation paper on the digital age of consent for online services offered to children. An Indian Supreme Court justice is calling for lawmakers to embrace the “'right against information' to protect an individual's privacy." A California judge ruled that releasing bar exam data with race infringes on applicants’ privacy, and the state has a breach notification law that goes into effect at the start of 2017. Plus, check out IAPP research on compliance and implementation of the EU General Data Protection Regulation.
LATEST NEWS
California has amended its breach notification law to require notifying individuals of a breach of encrypted personal information when the key has also been leaked, reports The National Law Review.
ICYMI
In a study released at the IAPP Europe Data Protection Congress in Brussels, the IAPP estimates that as many as 75,000 DPO positions will be created in response to the GDPR around the globe. See the country-by-country breakdown and look through the methodology in this exclusive for The Privacy Advisor.
An IAPP-TRUSTe 2016 study "Preparing for the GDPR: DPOs, PIAs, and Data Mapping" aims to help you benchmark your own progress toward GDPR compliance, and help you better understand how to craft your program going forward.
US
A California judge has ruled that sharing race and corresponding lawyer admission data for research purposes was a violation of privacy for the test takers, The Wall Street Journal reports.
ASIA PACIFIC
Supreme Court Justice Arun Mishra has called for Indian lawmakers to embrace the “'right against information' to protect an individual's privacy," The Times of India reports.
CANADA
CBC News reports New Brunswick's Privacy Commissioner Anne Bertrand is pushing for stronger legislation to require government departments to report data breaches involving personal information.