Legitimate interests in Turkey compared to EU

(Dec 4, 2018) In this Privacy Tracker post, Ozan Karaduman, CIPP/E, looks at legitimate interest as a lawful basis for data processing within the Turkish Data Protection Law and compares it to the rules around legitimate interest in the EU General Data Protection Regulation and the EU Data Protection Directive. "As the Turkish Data Protection Law is modeled on Directive 95/46/EC and also includes some concepts from the GDPR, legitimate interest became an important topic also in the Turkish data protection pra... Read More

Roundup: Belgium, France, Ireland, Serbia, Australia, US and more

(Dec 3, 2018) In this week's Privacy Tracker global legislative roundup, read about how Belgium, France and Ireland issued reports on activity since the EU General Data Protection Regulation came into force. In Serbia, a new data protection law was enacted and is set to take force Aug. 21, 2019. The data protection authority of Baden-Württemberg administered the first fine in Germany for GDPR violations, while Dutch and U.K authorities fined Uber for a 2016 data breach. In Australia, Shadow Attorney-General M... Read More

Global News Roundup — Nov. 26–Dec. 3, 2018

(Dec 3, 2018) In this week's Privacy Tracker global legislative roundup, read about how Belgium, France and Ireland issued reports on activity since the EU General Data Protection Regulation came into force. In Serbia, a new data protection law was enacted and is set to take force Aug. 21, 2019. The data protection authority of Baden-Württemberg administered the first fine in Germany for GDPR violations, while Dutch and U.K authorities fined Uber for a 2016 data breach. In Australia, Shadow Attorney-General M... Read More

Questions raised over Israeli privacy authority's recent opinion

(Nov 30, 2018) A legal opinion out of Israel’s Privacy Protection Authority issued Nov. 28 said that businesses with at least 10,000 electronic contacts are required to follow the country’s data security and privacy protection laws for those lists, Bloomberg Law reports. The authority stated that such a list constituted a “database,” even if it only includes names and email addresses. Fines for noncompliance could be up to $26,800 and a year in prison for each injured party. Some have raised issue with the aut... Read More

Limor Shmerling Magazanik joins Israel Tech Policy Institute

(Nov 21, 2018) The Israel Tech Policy Institute and Future of Privacy Forum announced Limor Shmerling Magazanik, CIPP/E, CIPP/US, CIPM, will join as managing director and senior fellow. In this position, Magazanik will provide leadership at ITPI, including directing the group’s policy agenda, engaging key actors, convening multi-stakeholder groups and overseeing communications. Previously, Magazanik served as director of strategic alliances at Israel’s Privacy Protection Authority. ITPI Co-Founder and IAPP Vic... Read More

Roundup: Egypt, Spain, Vietnam, US and more

(Oct 15, 2018) In this week's Privacy Tracker global legislative roundup, read about the Egyptian Parliament's newly proposed data protection law, Spain's soon-to-be-published law addressing digital legacies, and data protection implications of the newly formed trade agreement between the United States, Mexico and Canada. Vietnam has said it plans to move forward with enforcement of its new law, despite objections from industry. Also, learn about the new members of the U.S. Privacy and Civil Liberties Oversigh... Read More

Global News Roundup — September 17–24, 2018

(Sep 24, 2018) In this week’s Privacy Tracker legislative roundup, read about Italy's new law implementing the EU General Data Protection Regulation. In Kenya, officials note a data protection bill is expected to be introduced to Parliament, and, in South Africa, the constitutional court relied on the right to privacy in a case involving the decriminalization of marijuana for private use. Canada's privacy commissioner published guidelines for mandatory data breach reporting under the country's Personal Informa... Read More

Bahrain publishes data protection law

(Sep 19, 2018) Bloomberg Law reports on the Gulf’s newest nationwide data protection law, the Bahrain Personal Data Protection Law No. 30 of 2018. Published July 19, additional guidance and decisions are expected to be introduced in February 2019, ahead of its August 2019 implementation schedule. When compared to similar regional laws, the report points to three novelties in Bahrain’s data protection law, including its extraterritorial effect, the creation of the data protection supervisor role, and the imposi... Read More

Global News Roundup — September 4–10, 2018

(Sep 10, 2018) In this week’s Privacy Tracker legislative roundup, read about Morocco's new privacy regulations set to take force Sept. 13 and the requirements of the Kingdom of Bahrain's new national data protection law. In Russia, Federation Council members introduced a bill that would enhance the security of how fiscal data is handled. In the U.S., the House passed tech and cyber bills last week, including the Cyber Deterrence and Response Act, and the House Financial Services Committee introduced new data ... Read More

Roundup: Kenya, Israel, India, US and more

(Aug 20, 2018) In this week’s Privacy Tracker legislative roundup, read about a recent proposal in Australia that would require encrypted data to be shared with law enforcement if deemed relevant to an investigation. India’s government seeks comments on its draft data protection bill. In Kenya, the ICT Ministry has drafted a law that would create safeguards for how personal data is handled. In Israel, a new enforcement system designed to examine the implementation of the country’s privacy laws was announced. A... Read More