Post-Brexit data flows, regulation expected to align with EU

(Feb 14, 2020) ZDNet reports privacy pros see very little necessity for the U.K. to diverge from the EU data protection regime and build its own standards. DWF Partner and Head of Data Protection and Cybersecurity Stewart Room, CIPP/E, said there's no sign "we're going to see a bonfire" given the effectiveness of the EU General Data Protection Regulation and its enforcement in the U.K. Forrester Senior Analyst Enza Iannopollo, CIPP/E, added, "That would be crazy, not just from a regulatory perspective and the ... Read More

Google presents arguments in EU antitrust appeal

(Feb 14, 2020) Google presented arguments Feb. 14 in front of the EU General Court for its appeal of a 2.4 billion euro fine for antitrust violations, Politico reports. The fine was issued over allegations Google favored its search results over those of its rivals. Google argued the fine limited innovation and that the company had been held to a higher standard than others. “Can you both be a marketplace and have the data from all the vendors in this marketplace?” European Commission Executive Vice President M... Read More

Organizations fear privacy compliance unsustainable

(Feb 14, 2020) CIO Dive reports a study from systems management firm Tanium showed 67% of companies do not believe they can maintain privacy compliance over time. "People realize that they can be compliant one time — you can get ready for that audit and pass that audit. But the day after that audit is done, people go back to their day jobs," said Tanium Chief Information Security Officer for the Americas Chris Hallenbeck, adding compliance is challenging because "data is rarely stationary."Full Story... Read More

Op-ed: India's encryption battle a preview for global fight

(Feb 14, 2020) In "The Interface" op-ed series for The Verge, Silicon Valley Editor Casey Newton writes about the developing encryption battle currently taking place in India and how it may have a trickle-down effect across the globe. Newton explains the Indian government is on the verge of banning encryption with rules that "would force tech platforms to cooperate continuously with government requests." Newton adds, "Threats to privacy are multiplying faster than tech or society can deal with them. In such a ... Read More

A 2020 outlook for Australian legislative action

(Feb 14, 2020) This year is expected to be one filled with privacy law activity across the globe. Australia promises to be one of the most active nations when it comes to legislative updates and advancement. Amendments to the Privacy Act 1988, a binding privacy code and the entry of the long-awaited Consumer Data Right are among the many happenings Australian privacy pros will be watching. Holding Redlich General Counsel Lyn Nicholson touches on those topics and other potential items on Australia's agenda in t... Read More

London police launch facial-recognition program

(Feb 13, 2020) The Associated Press reports London police have begun using facial-recognition technology in public spaces to scan for criminals. London Police Commander Mark McEwan said the surveillance is "the most accurate technology available to us" and officers will use the tech as "a prompt" to engage with a suspect. "We don’t accept this. This isn’t what you do in a democracy. You don’t scan people’s faces with cameras. This is something you do in China, not in the U.K.," Big Brother Watch Director Silki... Read More

ICO, FCA, FSCS warn insolvency practitioners about handling data

(Feb 13, 2020) The U.K. Information Commissioner’s Office, Financial Conduct Authority and Financial Services Compensation Scheme issued a joint statement warning insolvency practitioners and claims management companies to be responsible when handling personal data. The agencies state when insolvency practitioners sell personal data to CMCs, they may end up violating the EU General Data Protection Regulation and Data Protection Act. CMCs must also be mindful of the Privacy and Electronic Communications Regulat... Read More

Irish agency uses facial recognition for PSC program

(Feb 13, 2020) Ireland's Department of Social Protection has acknowledged its Public Service Cards Program employs facial-recognition images, The Irish Times reports. An updated privacy statement from the department revealed biometric processing of photographs is used to detect welfare fraud. The use of the facial-recognition database was not previously disclosed. FP Logue Principal Fred Logue said the creation and use of a biometric database is "very risky," adding the benefits for the Department of Social Pr... Read More

BfDI seeks public consultation on anonymization under GDPR

(Feb 13, 2020) Germany's Federal Commissioner for Data Protection and Freedom of Information, the BfDI, has published a paper on its interpretation of anonymized data under the EU General Data Protection Regulation. The paper discusses the BfDI's take on anonymization requirements, processing, legal basis and more. The BfDI has set a 9 March deadline for public comments on the paper. Meanwhile, the Hamburg Commissioner for Data Protection and Freedom of Information has announced the release of its annual activ... Read More

EDPS discusses DPA obligations with AI

(Feb 13, 2020) In a blog post on his office's website, European Data Protection Supervisor Wojciech Wiewiórowski discussed the role of data protection authorities as it relates to data protection and artificial intelligence. Wiewiórowski wrote that January meetings with DPAs "exceeded all our expectations" in regards to productivity, noting the consensus view on any action against AI should focus on "expertise, values and collaboration." Wiewiórowski added the EDPS will roll out a survey to map the use of AI b... Read More