In this week's Privacy Tracker global legislative roundup, read about some of the highlights from this year's 40th International Conference of Data Protection and Privacy Commissioners, including the creation of a new working group on ethics and data protection in artificial intelligence. Canada's new breach notification and record-keeping rules go into effect this week. In China, the Cyberspace Administration recently published draft policy framework aimed at regulating blockchain service providers. The Bank of Ghana launched a Cyber Security Directive for Financial Institutions to establish operational guidelines regarding cybersecurity, and in the U.S., Uber finalized a new settlement with the Federal Trade Commission.
LATEST NEWS
Canada's new data breach notification and record-keeping rules go into effect this week, Mondaq reports on the impacts of the new rules on corporations.
More
The Cyberspace Administration of China recently published a draft policy framework aimed at regulating blockchain-related service providers in the country, Token Post reports.
More
The Bank of Ghana has launched a Cyber Security Directive for Financial Institutions to ensure an uninterrupted financial intermediation process, boost the consumer’s trust and confidence and establish operational guidelines, the Ghana News Agency reports.
More
MediaPost reports Uber and the U.S Federal Trade Commission have finalized a new settlement stemming from allegations and requires the company to institute a comprehensive privacy policy as well as undergo privacy audits for 20 years.
More
ICYMI
For The Privacy Advisor, IAPP Content Director Sam Pfeifle wrote that at this year’s 40th annual International Conference of Data Protection and Privacy Commissioners, Apple CEO Tim Cook centered his keynote address firmly around supporting the development of privacy law in the U.S.
More
In this piece for The Privacy Advisor, IAPP Content Director Sam Pfeifle has a dispatch from Brussels on the ICO's plans going forward after issuing Facebook a 500,000 GBP fine.
More
US
The Hill reports on the push from privacy advocates to bolster the powers of the U.S. Federal Trade Commission to better handle data privacy.
More
A draft of updated premarket guidance from the U.S. Food and Drug Administration shows that manufacturers should prepare a “cybersecurity bill of materials” before marketing medical devices, GovInfoSecurity reports.
More
The New York Department of Financial Services ruled Equifax, Experian and TransUnion must comply with the NYDFS cybersecurity rules by Nov. 1, Bloomberg Law reports.
More
Yahoo has agreed to pay $85 million to settle class-action lawsuits related to its 2013 and 2014 data breaches, The Mercury News reports.
More
In a letter to Under Secretary Christopher Krebs, the head of the U.S. Department of Homeland Security’s risk-reduction efforts in cyberspace, Sen. Ron Wyden, D-Ore., asked that new technologies be employed to conceal unencrypted metadata that exposes the domain names of websites visited by users, Gizmodo reports.
More
ASIA-PACIFIC
Australia’s parliamentary inquiry into My Health Record expressed serious concerns about the system and put forth 14 recommendations, Healthcare IT News reports.
More
The Information Accountability Foundation, together with Hong Kong's Privacy Commissioner for Personal Data Stephen Kai-yi Wong, has released an "Ethical Accountability Framework for Hong Kong China," as well as "a model assessment and oversight process framework for the cascading of ethics from shared values to workable business process," according to a blog post from the IAF's Martin Abrams.
More
Telecom Regulatory Authority of India Chairman RS Sharma called for a data protection and privacy framework that will accommodate sector-specific requirements, The Economic Times reports.
More
New Zealand’s Office of the Privacy Commissioner recently decided that private prison operator Serco could be held liable for damages over the loss or destruction of videotape footage, Stuff reports.
More
CANADA
The Office of the Information and Privacy Commissioner for Prince Edward Island announced it has launched an investigation to determine whether government-run cannabis stores collect customer information, CBC News reports.
More
EUROPE
In his latest blog post, European Data Protection Supervisor Giovanni Buttarelli wrote to emphasize the importance of adopting the proposed ePrivacy rules.
More
EU Justice Commissioner Věra Jourová and U.S. Secretary of Commerce Wilbur Ross released a joint statement on the second annual review of the EU-U.S. Privacy Shield agreement.
More
French data protection authority, the CNIL, the European Data Protection Supervisor and Italian DPA, the Garante, co-authored a new declaration on ethics and data protection in artificial intelligence, establishing a working group on ethics and data protection in AI.
More
U.K. Information Commissioner Elizabeth Denham has been named the new chair of the International Conference of Data Protection and Privacy Commissioners.
More
The U.K. Court of Appeal upheld the High Court’s ruling against Morrisons for its 2014 data breach, finding the company is liable for the breach where an employee stole the personal information of nearly 100,000 employees BBC News reports.
More
The International Conference of Data Protection and Privacy Commissioners has released the “Resolution on a Roadmap on the Future of the International Conference.”
More