In this week's Privacy Tracker roundup, Ireland’s new Partnership government has released its autumn program, on which the Data Sharing and Governance Bill is a priority item. Also, Ireland’s communications minister says he will present a memorandum to create a national cybersecurity center. China’s Cyberspace Administration has proposed rules governing the protection of minors online. In Germany, a surveillance law approved by lawmakers has some saying it opens citizens up to government surveillance. Proposed changes to Thailand’s cyber crime law are drawing concerns; Vietnam has a new cybersecurity law; the U.S. has a new privacy office within the Office of Information and Regulatory Affairs; and a decision from the European Court of Justice on the definition of personal data may have broad implications.

LATEST NEWS

The Diplomat reports on Vietnam’s newly enacted cybersecurity law, stating that it shows “legislative confusion of a government caught between a rock and a hard place.”

The National Law Review reports that a bill in front of Luxembourg’s Parliament aims to abolish certain authorization requirements for data transfers and the processing of personal data once the GDPR goes into effect.

ICYMI

In this exclusive, Denis Kelleher writes for The Privacy Advisor, about the ECJ’s Breyer decision, describing the case, its background and its potential implications moving forward.

Data Quality Campaign shares with Privacy Tracker an update on U.S. student privacy legislative developments.

On Nov. 3, the IAPP hosts the web conference "Preparing for the GDPR: Attaining and Demonstrating Compliance,” a virtual discussion on an accountability approach for attaining and maintaining GDPR compliance through the “appropriate technical and organizational measures” required by Article 24.

US

The Federal Trade Commission has challenged the 9th U.S. Circuit Court of Appeals' decision that "the common carrier exception to its jurisdiction is status-based, not activities based," Multichannel News reports. The FTC argued that the ruling "creates an enforcement gap that would leave no federal agency able to protect millions of consumers."

ASIA PACIFIC

Tech lawyers and privacy advocates are voicing their concerns over potential changes to Thailand’s Computer Crime Act, saying amendments to the law would give the government stronger surveillance powers, BuzzFeed reports.

Australian Minister for Justice Michael Keenan has introduced the Privacy Amendment (Notifiable Data Breaches) Bill 2016 in response to the Parliament's inquiry into data retention, Computerworld reports.

EUROPE

ComputerWeekly reports that the PCI SSC said if breaches continue at their current rate, U.K. businesses could face up to 122 billion GBP in fines once the GDPR comes into effect, and recommends organizations work to prevent cyberattacks before 2018.