BNA_21569 BLW ACC 2016 AHLA Survey and Guidance Report BAN 728x90_Ldbd
OneTrust_Leaderboard_Banner_ROS_728x90_01_19
MediaPro_Ldbd_ROS_iapp-executive-summary-ad-cta-1-728x90-opt
OneTrust_Square Banner_300x250_DD_ROS_01_19
CS17_Banner_300x250-COPY
PrivacyTraining_ad300x250.Promo1-01

(Feb 21, 2017) The South African Information Regulator had its first briefing on the country's Protection of Personal Information Act; Australian companies have a year to come into compliance with the country’s new breach notification law; Japan’s Act on Protection of Personal Information comes into force at the end of May; and the EU ePrivacy Regulation proposal continues to be debated and analyzed. In the U.S., lawmakers have introduced the Geolocation Privacy and Surveillance Act, designed to create rules for when agencies can track and access a citizen's geolocation data, and privacy advocates are concerned about potential rollback of Federal Communications Commission's broadband privacy rules. Read about all this and more in this week’s Privacy Tracker legislative roundup. (IAPP member login required.) Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Article 29 Working Party still concerned with Windows 10 privacy settings

(Feb 21, 2017) Reuters reports the Article 29 Working Party is still expressing concerns about the privacy settings within Microsoft’s Windows 10 operating system. The Working Party’s questions come a year after the group wrote to Microsoft voicing concerns with Windows 10’s default installation settings. "In light of the above, which are separate to the results of ongoing inquiries at a national level, even considering the proposed changes to Windows 10, the Working Party remains concerned about the level of ... Read More

Daily Dashboard, Europe Data Protection Digest, Privacy Bar Section

Man sues Uber after wife discovered his affair via app notifications

(Feb 21, 2017) A French businessman is suing Uber after his wife received notifications of his trips to his mistress, The Verge reports. The man logged into his Uber account on his wife’s phone one time, and despite logging out of the app, his wife continued to get notifications. The man’s wife discovered his affair, and filed for divorce, according to BBC News. The businessman is suing Uber for 45 million euros. Uber France did not comment on the situation, stating, it “does not publicly comment on individual cases, and especially on cases that involve a divorcing couple.” Read More

Daily Dashboard, Europe Data Protection Digest, Privacy Bar Section

FTC now weighing in on smart doll concerns

(Feb 21, 2017) After Germany's Federal Network Agency advocated that parents destroy the My Friend Cayla doll after fears its smart technology was a privacy concern, U.S. consumer groups have filed a complaint against the doll with the Federal Trade Commission, The Christian Science Monitor reports. "Watchdog groups point out that audio files get sent to a database maintained by Genesis Toys’ technology partner, Nuance Communications, which also develops voice-recognition programs for law enforcement and the m... Read More

Daily Dashboard, Europe Data Protection Digest

'Outside Your Bubble' module from BuzzFeed looks to 'de-silo' online content

(Feb 21, 2017) BuzzFeed News has announced a trial of its “Outside Your Bubble" feature, a tool that looks to give users a glimpse beyond their predominant social media circles, BuzzFeed reports. The tool will appear as a module below popular and widely shared stories, giving the reader other perspectives from popular sites around the web, like Reddit, Facebook and Twitter. "Our goal is to give readers a sense of these conversations around an article, and to add a kind of transparency that has been lost in the rise of social-media-driven filter bubbles," the report states. "We view it in part as a way to amplify the work of BuzzFeed News reporters, and to add for readers a sense of the context in which news lives now." Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Podcast: What went down at RSA?

(Feb 17, 2017) In this episode of The Privacy Advisor Podcast, Jedidiah Bracy, CIPP, discusses his experience at the RSA Conference in San Francisco, California, this week where he spoke on a panel titled, "Encryption and Back Doors: The Line Between Privacy and National Security." Evident both at RSA and via the IAPP's recently released Privacy Tech Vendor Report, Bracy says, a proliferation of vendors have risen to the challenge of helping companies with the complicated and arduous task of protecting data, and the privacy and security worlds are becoming increasingly intertwined.  Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Automating risk assessment

(Feb 17, 2017) Rebecca Herold, CIPM, CIPP/US, CIPT, FIP, estimates she has done hundreds of security risk assessments since she took them on as part of her career path. While performing them, even developing her own methodology to help produce them faster, Herold began to notice patterns emerging. Now, she's brought that depth of knowledge to software developer David Greek to create SIMBUS Risk Management, an automation tool for the privacy and security industry. IAPP Staff writer Ryan Chiavetta talked shop with Herold and Greek for Privacy Tech. Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest

Arguments begin in Schrems 2.0

(Feb 17, 2017) Justice Caroline Costello, of the High Court of Ireland, has begun hearing arguments regarding Irish Data Protection Commissioner Helen Dixon's request to have the CJEU determine whether standard contractual clauses are legitimate methods for transferring personal data outside the EU, Independent.ie reports. Schrems lawyer Eoin McCullough argued Dixon should suspend transfers immediately, and that the CJEU's involvement is unnecessary, while Facebook lawyer Paul Gallagher agreed the CJEU should not be involved, but rather because Schrems' objections to data transfers are "deeply flawed" and have been overtaken by events surrounding the establishment of Privacy Shield. Read More

Daily Dashboard, Europe Data Protection Digest

WP29 still concerned about Trump immigration order

(Feb 17, 2017) While analysis of U.S. President Donald Trump's executive order on immigration appears to show it does not threaten the underpinnings of the Privacy Shield framework, the Article 29 Working Party would like to be sure, Reuters reports. As part of their February plenary session, the EU DPAs decided to write to U.S. authorities directly to point out concerns and seek clarifications. Reached by Reuters, the U.S. Mission to the EU attempted to quickly allay fears: "The executive order also does not affect Privacy Shield because Privacy Shield protections are not dependent on the Privacy Act." Read More

Daily Dashboard, Europe Data Protection Digest

Study: Anonymous web browsing doesn't mean you stay anonymous

(Feb 17, 2017) A study conducted by Stanford University and Princeton University researchers has found that anonymous browsing data can be frequently tied back to actual identities, The Conversation reports. After having users "donate" their browsing history, researchers attempted to connect the data with their Twitter accounts. "Seventy-two percent of people who we tried to deanonymize were correctly identified as the top candidate in the search results, and 81 percent were among the top 15 candidates," resea... Read More

Asia-Pacific Dashboard Digest, Canada Dashboard Digest, Daily Dashboard, Europe Data Protection Digest