'60 Minutes' profiles the GDPR and US privacy regulation

(Nov 12, 2018) On Sunday, CBS television program "60 Minutes" reported on the EU General Data Protection Regulation and the state of play for privacy regulation in the U.S. "For decades, companies like Google, Facebook, and Amazon have made vast sums monetizing the personal information of their users with almost no oversight or regulation," CBS News Correspondent Steve Croft said. "They are still making vast sums of money, but public attitudes about their size and power and their ability, or willingness, to po... Read More

Dixon on the importance of citizen education for data protection

(Nov 12, 2018) In an interview for Silicon Republic, Irish Data Protection Commissioner Helen Dixon discusses the pace of technological innovation, the EU General Data Protection Regulation and how blockchain is becoming an increasing focal point for data regulators. She also reflects on the importance of educating citizens to protect against the fast-paced growth of technology. Dixon said, “This is an issue because tech is crashing up against social norms and forcing us to evolve.” She added, “Our job is to m... Read More

Global News Roundup — Nov. 5-12, 2018

(Nov 12, 2018) In this week's Privacy Tracker global legislative roundup, read about Bulgaria's new Cyber Security Act which will regulate the country's National Cyber Security System, the national cybersecurity coordinator and response teams for cybersecurity incidents. In Australia, opposition to the government's proposed anti-encryption legislation continues to grow and the government announced changes to My Health Record that will increase the maximum penalties for improper use of the system’s data. In the... Read More

Marketers seek shared liability with third parties due to GDPR

(Nov 9, 2018) With the EU General Data Protection Regulation in effect, marketers seek to share liability with third-party vendors for potential violations, The Wall Street Journal reports. Marketers hope to have the third parties shoulder any GDPR penalties, not only because of the large monetary fines but also for their brand’s reputation. A marketing executive at one large company said it did business with one vendor if it agreed to pay more than $15 million in fines if they were involved in a data breach ... Read More

GDPR has had notable impact on cyberinsurance marketplace

(Nov 9, 2018) BankInfoSecurity interviewed Zurich Insurance Senior Cyber Underwriter Thomas Clayton about the impact the EU General Data Protection Regulation has had on the cyberinsurance marketplace. Clayton said the GDPR has been a “massive concern and a big peril” for his company’s customers. Since it has gone into effect, Clayton’s company has seen “a big uptick in claims and the costs associated with breach notifications.” Clayton adds Zurich Insurance has interacted with regulators on behalf of the com... Read More

Notes from the IAPP Europe Managing Director, 9 Nov. 2018

(Nov 8, 2018) Greeting from Brussels!Winter has truly kicked in here at the heart of Europe; the layers and the scarves are out. However, data protection as a headliner shows no signs of going into hibernation anytime soon. Following on from the successful 40th International Conference of Data Protection and Privacy Commissioners a couple of weeks ago — featuring the role of ethics in the digital world — there is still much to talk about in the field.Last week, for the IAPP Privacy Advisor, Jen Baker sat down... Read More

ICO fines Leave.EU, Eldon Insurance combined 135K GBP for data law violations

(Nov 8, 2018) The U.K. Information Commissioner’s Office has fined the Brexit campaign group Leave.EU and Eldon Insurance a combined 135,000 GBP for data law violations, the Guardian reports. Leave.EU and Eldon Insurance each received a 60,000 GBP penalty for violations of electronic marketing laws. Leave.EU was served with an additional 15,000 GBP fine after it was discovered it had sent 300,000 emails to Eldon customers with its own newsletter.Full Story ... Read More

Data brokers, credit-monitoring firms accused of GDPR violations

(Nov 8, 2018) Privacy International filed complaints against data brokers, credit-monitoring firms, and ad tech companies with the CNIL, U.K. Information Commissioner’s Office, and Irish Data Protection Commission for alleged violations of the EU General Data Protection Regulation, the Financial Times reports. The group accuses Experian, Equifax, Oracle, data broker Acxiom, and ad tech companies Criteo, Quantcast, and Tapad of GDPR infractions. Privacy International states the companies do not have a legal ba... Read More

Mastercard CPO discusses GDPR's positive impact

(Nov 8, 2018) Mastercard Executive Vice President and Chief Privacy Officer Caroline Louveaux, CIPP/E, CIPM, discussed the impact the EU General Data Protection Regulation has had on her company, Fortune reports. Louveaux said the GDPR has offered Mastercard plenty of benefits and that the rules have “not been a revolution, more an evolution.” Louveaux said prior to the GDPR, Mastercard had to deal with different regulations across Europe, and with the GDPR, it only has to focus on one set of rules. The Maste... Read More