Global News Roundup — Nov. 4–Nov. 11, 2019

(Nov 11, 2019) In this week's Privacy Tracker global legislative roundup, IAPP Research Director Caitlin Fennessy, CIPP/US, analyzes this year's review of the EU-U.S. Privacy Shield agreement and its potential to impact the Schrems II case. IAPP Legal Extern Mitchell Mantley breaks down a settlement between the U.S. Federal Trade Commission and “stalking app” developer Retina-X Studios. The Office of the Privacy Commissioner of Canada announced a joint resolution with privacy commissioners across the country o... Read More

Web con: 'Trends in Changing Data Breach Notification Laws'

(Nov 11, 2019) Privacy professionals have a lot to keep up with in the ever-changing regulatory landscape, from an increase in U.S. state privacy laws to expanding definitions of personal information. Join the IAPP Nov. 14 for this sponsored web conference as RadarFirst CEO and Founder Mahmood Sher-Jan and Dentons Counsel Deborah Rimmler discuss data breach notification laws on a U.S. and international level. The speakers will cover data breach notification trends they saw from legislative movement in 2019 and... Read More

Roundup: Canada, Kenya, Netherlands, Spain, US and more

(Nov 11, 2019) In this week's Privacy Tracker global legislative roundup, IAPP Research Director Caitlin Fennessy, CIPP/US, analyzes this year's review of the EU-U.S. Privacy Shield agreement and its potential to impact the Schrems II case. IAPP Legal Extern Mitchell Mantey breaks down a settlement between the U.S. Federal Trade Commission and “stalking app” developer Retina-X Studios. The Office of the Privacy Commissioner of Canada announced a joint resolution with privacy commissioners across the country on... Read More

New ePrivacy draft released ahead of WP TELE meetings

(Nov 11, 2019) Ahead of meetings with the Working Party on Telecommunications and Information Society, the Finnish Presidency of the Council of the European Union has released a new version of the proposed ePrivacy Regulation. The latest draft includes modifications related to “the scope and the third-party concept,” protecting children’s data, cookies and consideration toward the European Data Protection Board. The document also has changes on recitals covering “machine-to-machine” electronic communications a... Read More

Spanish DPA issues 12K euro fine for GDPR violations

(Nov 11, 2019) The Spanish data protection authority, the Agencia Española de Protección de Datos, has fined Madrileña Red de Gas 12,000 euros for alleged violations of the EU General Data Protection Regulation. The agency found the gas company did not have the proper measures in place to validate a data subject’s identity. The individual who filed the complaint alleges the company sent out their information to a third-party via email in response to an inquiry. The DPA lists the criteria it considered for the ... Read More

Kenya approves data protection law

(Nov 11, 2019) Kenyan President Uhuru Kenyatta has signed new data protection legislation, Reuters reports. The law is in line with the EU General Data Protection Regulation and will regulate the use, storage and sharing of personally identifiable information by organizations and government agencies. Those that violate the law will be subject to a maximum fine of 3 million shillings or a two-year jail sentence. The government will establish an independent office to police and investigate privacy violations.Ful... Read More

EDPS candidates tabbed, interviews to come

(Nov 8, 2019) There's a lot to keep up with on the European data protection scene these days between EU General Data Protection Regulation enforcement, ePrivacy Regulation proposals and a recent EU-U.S. Privacy Shield review. Lost in that shuffle is the fact that the role of European Data Protection Supervisor does not have a permanent successor to the late Giovanni Buttarelli. That conundrum is set to be addressed in the coming weeks. The European Parliament has announced the European Commission submitted a... Read More

EDPS candidates revealed, will begin interview process soon

(Nov 8, 2019) The European Parliament has announced the European Commission submitted a list of final European Data Protection Supervisor candidates to Parliament and the European Council. The candidates include acting EDPS Wojciech Wiewiórowski, Baker McKenzie Partner and IAPP Country Leader for France Yann Padova, and Hungary National Authority of Data Protection and Freedom of Information Vice President Endre Szabó. The interviews for all three candidates will take place Nov. 25, which is 10 days before th... Read More

Spanish DPA releases guide on cookies

(Nov 8, 2019) The Spanish data protection authority, the AEPD, released a new guide on the use of cookies. The agency jointly published the document with IAB Spain and other associations, such as Adigital and Autocontrol. The guide covers organizations' cookie requirements under Section 2 of Article 22 of Law 34/2002, as well as their legal obligations under the EU General Data Protection Regulation and Spain’s Organic Law 3/2018, of December 5, on the Protection of Personal Data. The document explains the or... Read More

Irish DPC investigating whether social media micro-targeting violates GDPR

(Nov 8, 2019) Irish Data Protection Commissioner Helen Dixon told an international “grand committee” of parliamentarians her office is conducting several investigations into the practice of micro-targeting on social media platforms, The Irish Times reports. Dixon said the investigations targeted social media platforms, data brokers and ad exchanges. She added micro-targeting may be in violation of the EU General Data Protection Regulation and that she hopes to conclude the probes by next year. Meanwhile, Reut... Read More