Notes from the IAPP Publications Editor, March 16, 2018

(Mar 16, 2018) Greetings from Portsmouth, NH! One of the hot privacy topics in the U.S. this week has been the fate of the Clarifying Lawful Overseas Use of Data Act, better known as the CLOUD Act. This pending legislation, which deals with cross-border data transfers in law enforcement cases, is drawing both strong support and opposition. Tech companies have been asking Congress to revamp government data access requests for years now. Microsoft's Brad Smith testified in Feb. 2016 that increased data access ... Read More

LinkedIn attempts to have data-scraping injunction dismissed

(Mar 16, 2018) The U.S. Court of Appeals for the 9th Circuit heard arguments as LinkedIn attempts to have a lower court injunction in its data-scraping case against hiQ Labs dismissed, The Recorder reports. Munger, Tolles & Olson Partner Donald Verrilli Jr. said hiQ was acting without authorization when it scraped public data from LinkedIn and was in violation of the Computer Fraud and Abuse Act. Farella Braun + Martel’s C. Brandon Wisoff argued LinkedIn had voiced no opposition to hiQ’s data-scraping prac... Read More

Senators ask Congress to remove the CLOUD Act from legislation package

(Mar 16, 2018) In a joint statement, Sens. Ron Wyden, D-Ore., and Rand Paul, R-Ky., wrote in opposition to the Clarifying Lawful Overseas Use of Data Act and ask that it not be included in the upcoming omnibus appropriations package, Gizmodo reports. In the statement, the senators argue that its passage would place “far too much power in the president’s hands and denies Congress its critical oversight role.” The senators join the Electronic Frontier Foundation, the American Civil Liberties Union, Human Rights ... Read More

Uber releases anonymized data to aid city planning

(Mar 16, 2018) In the aftermath of the Transport for London’s finding that Uber is not “fit and proper” to operate as a taxi service, the company has announced several changes to its business model, including a move that will provide anonymized data of its operations, Reuters reports. While Uber is appealing the finding, it has also introduced a 24/7 telephone support line and began proactively reporting serious incidents to the police. Fred Jones, Uber’s head of U.K. cities, said the company is also respondin... Read More

Mastercard, IBM launching 'data trust' to help with GDPR compliance

(Mar 16, 2018) IBM and Mastercard are joining forces to launch Truata, a “data trust” designed to help companies comply with the EU General Data Protection Regulation, the Financial Times reports. Truata will assist companies with the anonymization, management and analysis of their data to help ensure they are not in violation of the GDPR. Truata will be set up as a data trust in Dublin under Irish law. Mastercard will be one of the first clients to use Truata, and, the report states, three other companies wil... Read More

Op-Ed: HIM should ensure wearables are in line with HIPAA

(Mar 16, 2018) In an Op-Ed for The Hill, Pamela Greenstone writes that as wearable devices populate the digital health market, more is needed to ensure HIPAA compliance and promote user awareness. Greenstone writes, “As technology evolves, so should the responsibilities of health care organizations and the roles of health information managers, not just to maintain HIPAA compliance, but also to keep the best interests of the patient at heart.” She argues that while consumers may be more interested with wearable... Read More

Notes from the IAPP Canada Managing Director, March 16, 2018

(Mar 16, 2018) If you are connected with me on LinkedIn, you might have seen my post earlier this week about a special gathering we’ve planned for all Canadians in attendance at the IAPP’s Global Privacy Summit in less than two weeks’ time. If you’re not connected with me (what are you waiting for?), here is what I was promoting: We, all Canadians and want-to-be Canadians, are going to meet at 1:15 p.m. Tuesday, March 27, in the Congress Room (which is on Level M4). If you are in D.C. for the conference, you d... Read More

Startup uses AI to assess tenants' level of risk

(Mar 16, 2018) A Greater Victoria startup has created a tool designed to help landlords assess tenants using artificial intelligence, CTV News reports. CLAIRE scans more than 100,000 public websites in order to compile a report on a potential tenant's level of risk. The tool looks for criminal convictions, eviction notices and social media behavior but can only look for a person if the potential tenant has given consent. "If you're collecting more information than is necessary, which would almost certainly inc... Read More

Pilot program connects IoT device to police alerts

(Mar 15, 2018) Police in Lancashire, U.K., have partnered with Amazon to create a pilot program designed to broadcast crime updates, safety notifications, and photos of wanted and missing people to Amazon Echo owners, The Intercept reports. While residents have to opt in to the pilot program, the Lancashire County police will store citizen’s crime reports on Amazon’s servers. Rob Flanagan, the Lancashire Constabulary innovations manager, said that the program was designed to reduce demand on the call centers. ... Read More

Age verification plan for adult websites delayed

(Mar 15, 2018) The U.K. government's plan to have adult websites implement age-verification barriers has been delayed, V3 reports. The Digital Economy Act would require adult websites to have stricter age verification processes in an effort to keep children away from the content. Privacy and security concerns have arisen since the plan was introduced, with opponents saying the barriers could result in adults handing information over to third parties and sensitive personal data potentially at risk of exposure. ... Read More