In this week’s Privacy Tracker legislative roundup, read about growing opposition to India's proposed data security bill and both Australia's Assistance and Access Bill 2018 and its Data Sharing and Release Bill. In Malaysia, Communications and Multimedia Minister Gobind Singh Deo said the country is looking to update its data protection laws in a way that would be "on par" with European standards. In the U.S., Rep. Ro Khanna, D-Calif., released a set of principles for an "Internet Bill of Rights," and, in Finland, Parliament voted to weaken a constitutional clause that protects the right to privacy.
LATEST NEWS
Telecompaper reports the European Parliament approved regulation on the free flow of non-personal data in the EU and is expected to take effect by the end of 2018.
More
Tech giants, including Apple, Microsoft, Google, Uber and Nokia, have united to oppose India's proposed data security bill, voicing concerns over provisions they argue will neither benefit their business nor assure the protection of user data, Business Today reports.
More
Malaysian Communications and Multimedia Minister Gobind Singh Deo said the country is looking to update its data protection laws to prevent data breaches, adding it has to be “on par” with the EU General Data Protection Regulation, The Star reports.
More
The U.K. High Court blockaded a mass lawsuit against Google that aimed to collect compensation for the company’s practice of collecting data on iPhone users despite privacy settings that would have otherwise prevented surveillance, The Guardian reports.
More
The Federal Aviation Authority Reauthorization Act, recently passed by the U.S. Senate, will allow government authorities, in certain circumstances, to take immediate action against privately owned drones, Government Technology reports.
More
California Governor Jerry Brown signed into law S.B. 1001, making it illegal “for any person to use a bot to communicate or interact with another person in California online, with the intent to mislead the other person about its artificial identity for the purpose of knowingly deceiving the person about the content of the communication in order to incentivize a purchase or sale of goods or services in a commercial transaction or to influence a vote in an election,” Mondaq reports.
More
ICYMI
Diego Fernandez writes in this Privacy Tracker blog post that Argentine President Mauricio Macri’s proposal aiming to replace the current Personal Data Protection Law is part of the efforts of the National Directorate of Personal Data Protection.
More
Though the pace of ePrivacy’s advancement has been slower than initially promised by policymakers, the Austrian presidency presses on and continues to release new drafts that include the results of deliberations among member states. IAPP Westin Fellow Müge Fazlioglu, CIPP/E, CIPP/US, offers analysis of the latest draft for Privacy Tracker.
More
In this installment of a Privacy Tracker series, Bruno Bioni, Maria Cecília Oliveira Gomes, and Renato Leite Monteiro, CIPP/E, CIPM, compare Brazil's General Data Protection Law and the GDPR.
More
In this piece for Privacy Tracker, IAPP Research Director and Data Protection Officer Rita Heimes, CIPP/E, CIPP/US, CIPM, discusses how a recent ruling may affect your risk-scoring as you determine how to react to a breach or evaluate a new product or service.
More
US
Data protection measures have been included in the preliminary agreement between the U.S., Canada and Mexico to update the North American Free Trade Agreement, Bloomberg Law reports.
More
As part of the efforts to become compliant with Privacy Shield, U.S. Ambassador to the European Union Gordon Sondland said Manisha Singh has been named acting undersecretary of state for economic growth, energy, and the environment and Privacy Shield ombudsperson, a move made before the European Commission’s annual review of the agreement, EURACTIV reports.
More
A U.S. district court judge ruled in favor of Facebook in its case against law enforcement agencies for failing to carry out a wiretap order, Reuters reports.
More
AT&T CEO Randall Stephenson is calling for Congress to create a federal U.S. privacy law, The Hollywood Reporter reports.
More
The U.S. District Court for the District of Colorado dismissed some of the putative class claims against Chipotle over its 2017 data breach where hackers stole customers’ payment card information, Hunton Andrews Kurth’s Privacy & Information Security Law Blog reports.
More
MediaPost reports Vizio has agreed to pay $17 million to settle a class-action lawsuit alleging the smart TV manufacturer violated privacy laws. Vizio was accused of breaching the Video Privacy Protection Act and other privacy laws by sharing consumer information with ad-tech companies and data brokers without their consent.
More
Sens. Ed Markey, D-Mass., and Richard Blumenthal, D-Conn., have sent a letter to the U.S. Federal Trade Commission asking the agency to examine whether app developers and stores are violating the Children’s Online Privacy Protection Act, The New York Times reports.
More
Rep. Ro Khanna, D-Calif., released a set of principles for an "Internet Bill of Rights," according to a column in The New York Times.
More
California has become the first state to adopt cybersecurity legislation covering internet-of-things devices, CNET reports.
More
ASIA-PACIFIC
The Australian Human Rights Commission has expressed concern over the government’s proposed Assistance and Access Bill 2018, raising fears that it could lead to people losing the privilege against self-incrimination, the Guardian reports.
More
ZDNet reports a team of researchers has called Australia's Data Sharing and Release Bill a “significant misalignment.”
More
New Zealand’s High Court overturned the Human Rights Review Tribunal’s finding of a breach of privacy in the Kim Dotcom case, the NZ Herald reports.
More
CANADA
CBC News reports that Privacy Commissioner of Canada Daniel Therrien will seek clarity from the federal court to determine whether existing laws already offer Canadians the right to be forgotten.
More
British Columbia Information and Privacy Commissioner Michael McEvoy said his office will be conducting an investigation into the ways the province’s political parties use personal data, the Vancouver Courier reports.
More
EUROPE
The Court of Justice of the European Union ruled lesser criminal offenses may justify law enforcement access to personal data held by electronic communication service providers as long as the data subject's privacy rights are respected.
More
In Finland, Parliament voted 178 to 13 to approve exemptions to a constitutional clause that protects the right to privacy, allowing authorities to access private correspondence when needed to solve a crime or gather information on matters that threaten national security, Reuters reports.
More
U.K. Financial Conduct Authority found Tesco Bank safeguard customers’ information from the “foreseeable” cyberattack and fined the bank 16.4 million GBP, Reuters reports.
More
LATIN AMERICA
In an article for Hipervínculos, Paulina Silva and Carlo Benussi provide an explanation and brief analysis of recent updates to cybersecurity measures in Chile’s financial sector.
More