BNA_21569 BLW ACC 2016 AHLA Survey and Guidance Report BAN 728x90_Ldbd

(Jan 20, 2017) A district court ruled PlayStation Network users are not protected under the Fourth Amendment from warrantless searches conducted by Sony, International Business Times reports. The case involved PSN user Michael Stratton, who was reported to Sony several times for attempting to solicit child pornography through spam messages. Sony reviewed the account and notified the National Center for Missing and Exploited Children, which then coordinated with the FBI. A judge provided law enforcement with a ... Read More

Daily Dashboard, Privacy Bar Section

Russian data protection authority publishes inspection plans for 2017

(Jan 20, 2017) Roskomnadzor, the Russian data protection authority, has released its 2017 inspection plans for local companies to measure their compliance with the country's data privacy requirements, Hogan Lovells' Chronicle of Data Protection reports. "As an example of how an inspection proceeds, Roskomnadzor conducted a planned inspection of Microsoft’s Russian affiliate in the spring of 2016, issuing an inspection report requiring that Microsoft eliminate violations revealed by the inspection by October 20... Read More

Daily Dashboard, Europe Data Protection Digest, Privacy Bar Section

Twitter, CTV named in revenge porn suit

(Jan 20, 2017) Former Mount Saint Vincent University professor Michael Kydd has filed a statement of claim in Nova Scotia's Supreme Court, seeking $1 million from Twitter, Bell Media (owner of CTV), the woman with whom he says he had an affair, and his former employer for defamation, breach of privacy, breach of copyright, and negligence, according to the Ottawa Citizen. He is, in part, leveraging the new privacy tort established in a case last year, and is represented by Donna Wilson, who won the case establi... Read More

Canada Dashboard Digest, Privacy Bar Section

Yukon government will not create centralized database

(Jan 20, 2017) Following concerns raised in Canada by Yukon Information and Privacy Commissioner Diane McLeod-McKay, the Yukon government has said there will be no centralized database containing the personal information of the territory’s citizens, CBC News reports. "Absolutely, without reservation that is not under consideration, in any way, shape or form, that that would be the case. There will be no massive, centralised database in the Yukon government," said the Yukon government’s Director of Corporate In... Read More

Canada Dashboard Digest, Privacy Bar Section

Review of Queensland privacy law requires input

(Jan 19, 2017) The Queensland government is requesting submissions for its privacy and right to information laws, Lexology reports. "The review aims to determine whether the primary purposes of the Information Privacy Act 2009 and the Right to Information Act 2009 remain valid and whether the Acts achieve those purposes," the report states. "The review also aims to capitalise on developments around the world with respect to privacy protection and information management." The review addresses questions like, "should the IP Act align with the Commonwealth Privacy Act?" and "should sharing information within government be a ‘use’ instead of a ‘disclosure’?" The government will accept submissions through 3 Feb. Read More

Asia-Pacific Dashboard Digest, Privacy Bar Section

OCR settles with life insurance firm over impermissible ePHI disclosure

(Jan 19, 2017) The U.S. Department of Health and Human Services’ Office for Civil Rights has agreed to a HIPAA settlement with MAPFRE Life Insurance Company of Puerto Rico based on the company’s impermissible disclosure of unsecured electronic protected health information. MAPFRE will pay $2.2 million for potential noncompliance with the HIPAA Privacy and Security rules. MAPFRE filed a breach report on Sept. 29, 2011, stating a USB data storage device had been stolen from its IT department. The device containe... Read More

Daily Dashboard, Privacy Bar Section

IT pro: Irish companies 'woefully unprepared' for GDPR compliance

(Jan 19, 2017) Smarttech and IT@Cork's Ronan Murphy has said that Irish companies are "woefully unprepared" for complying with the General Data Protection when it goes live next year, The Irish Times reports. "It’s mind-blowing quite how unprepared Ireland is for GDPR, which has tremendous implications for companies of all sizes,” said Murphy. His statement comes on the heels of an EY survey of 1,735 IT professionals that indicate that cyberattacks against Irish companies have increased 29 percent in the past ... Read More

Europe Data Protection Digest, Privacy Bar Section

Australian federal court sides with Telstra in metadata case

(Jan 19, 2017) The Federal Court of Australia sided with telecom company Telstra in a case about whether all metadata constitutes personal information, iTnews reports. The court ruled Telstra did not need to hand over its telecommunications metadata to former Fairfax journalist Ben Grubb under the Privacy Act. The case rested on whether metadata held by Telstra is information “about Ben Grubb," or if it’s “about the service delivered to him." The Administrative Appeals Tribunal sided with Telstra. The appeal f... Read More

Asia-Pacific Dashboard Digest, Daily Dashboard, Privacy Bar Section

The Email Privacy Act: What happened and where we are now

(Jan 19, 2017) This month, Rep. Kevin Yoder, R-Kan., reintroduced the Email Privacy Act, the intent of which is to amend the Electronic Communications Protection Act by requiring law enforcement to obtain a warrant before accessing an individual’s emails through their email provider. The reintroduced version of the act is not available yet, but will likely mirror the 2016 House version of the bill, HR 699. HR 699 was similar to past House resolutions and Senate bills seeking to amend ECPA to close a loophole t... Read More

Privacy Bar Section, Privacy Tracker

Mississippi AG sues Google for allegedly violating student privacy

(Jan 18, 2017) The Associated Press reports Mississippi Attorney General Jim Hood is suing Google for allegedly violating student privacy. Hood is accusing the tech company of violating the state's consumer protection law by selling ads using data it collects from services it provides to schools, specifically citing a test involving student accounts from the state-run Mississippi School of Math and Science in Columbus. During the test, targeted ads have appeared from previous searches, and Hood is asking a judge to force Google to stop the practice. "They're building a profile so they can advertise to them," Hood said. "They expressly stated in writing that they would not do that." Hood's lawsuit said Google could be fined $10,000 per student account, with the total penalties possibly exceeding $1 billion. Read More

Daily Dashboard, Privacy Bar Section