Global News Roundup — Nov. 4–Nov. 11, 2019

(Nov 11, 2019) In this week's Privacy Tracker global legislative roundup, IAPP Research Director Caitlin Fennessy, CIPP/US, analyzes this year's review of the EU-U.S. Privacy Shield agreement and its potential to impact the Schrems II case. IAPP Legal Extern Mitchell Mantley breaks down a settlement between the U.S. Federal Trade Commission and “stalking app” developer Retina-X Studios. The Office of the Privacy Commissioner of Canada announced a joint resolution with privacy commissioners across the country o... Read More

Web con: 'Trends in Changing Data Breach Notification Laws'

(Nov 11, 2019) Privacy professionals have a lot to keep up with in the ever-changing regulatory landscape, from an increase in U.S. state privacy laws to expanding definitions of personal information. Join the IAPP Nov. 14 for this sponsored web conference as RadarFirst CEO and Founder Mahmood Sher-Jan and Dentons Counsel Deborah Rimmler discuss data breach notification laws on a U.S. and international level. The speakers will cover data breach notification trends they saw from legislative movement in 2019 and... Read More

Roundup: Canada, Kenya, Netherlands, Spain, US and more

(Nov 11, 2019) In this week's Privacy Tracker global legislative roundup, IAPP Research Director Caitlin Fennessy, CIPP/US, analyzes this year's review of the EU-U.S. Privacy Shield agreement and its potential to impact the Schrems II case. IAPP Legal Extern Mitchell Mantey breaks down a settlement between the U.S. Federal Trade Commission and “stalking app” developer Retina-X Studios. The Office of the Privacy Commissioner of Canada announced a joint resolution with privacy commissioners across the country on... Read More

Privacy pros see more intersection with privacy, ethics

(Nov 11, 2019) Compliance in the privacy space focuses on meeting the requirements of the law and abiding by its language. However, both scopes start and end with ethical considerations. "Ethics is doing the right thing even when no one is watching," Akami Technologies General Counsel and Chief Data Protection Officer James Casey, CIPP/E, said at the IAPP's Privacy. Security. Risk. conference in Las Vegas. "It's the umbrella set of concepts that apply to your compliance, legal and trust efforts." IAPP Staff Wr... Read More

New ePrivacy draft released ahead of WP TELE meetings

(Nov 11, 2019) Ahead of meetings with the Working Party on Telecommunications and Information Society, the Finnish Presidency of the Council of the European Union has released a new version of the proposed ePrivacy Regulation. The latest draft includes modifications related to “the scope and the third-party concept,” protecting children’s data, cookies and consideration toward the European Data Protection Board. The document also has changes on recitals covering “machine-to-machine” electronic communications a... Read More

Spanish DPA issues 12K euro fine for GDPR violations

(Nov 11, 2019) The Spanish data protection authority, the Agencia Española de Protección de Datos, has fined Madrileña Red de Gas 12,000 euros for alleged violations of the EU General Data Protection Regulation. The agency found the gas company did not have the proper measures in place to validate a data subject’s identity. The individual who filed the complaint alleges the company sent out their information to a third-party via email in response to an inquiry. The DPA lists the criteria it considered for the ... Read More

DOJ's antitrust chief: Big tech data practices considered in competition concerns

(Nov 11, 2019) The Washington Post reports U.S. Department of Justice Assistant Attorney General for the Antitrust Division Makan Delrahim has warned big tech companies that ongoing mass data collection and data misuse will draw the attention of federal regulators. Delrahim said, "It would be a grave mistake to believe that privacy concerns can never play a role in antitrust analysis." Delrahim added that personal information carries more value than "oil" to organizations, which he believes will opt for decrea... Read More

Facebook, Mass. attorney general spar over records disclosure

(Nov 11, 2019) Facebook has asked a Massachusetts Superior Court judge to allow records related to data misuse to remain withheld from a privacy probe into the social network by the Massachusetts attorney general, Reuters reports. The attorney general's office is seeking to obtain records on 10,000 apps that Facebook believes are putting user data at risk. While Massachusetts Assistant Attorney General Sara Cable, CIPP/US, argued the records were needed to examine Facebook's "blind eye" to data misuse, Faceboo... Read More

Kenya approves data protection law

(Nov 11, 2019) Kenyan President Uhuru Kenyatta has signed new data protection legislation, Reuters reports. The law is in line with the EU General Data Protection Regulation and will regulate the use, storage and sharing of personally identifiable information by organizations and government agencies. Those that violate the law will be subject to a maximum fine of 3 million shillings or a two-year jail sentence. The government will establish an independent office to police and investigate privacy violations.Ful... Read More

Spanish DPA releases guide on cookies

(Nov 8, 2019) The Spanish data protection authority, the AEPD, released a new guide on the use of cookies. The agency jointly published the document with IAB Spain and other associations, such as Adigital and Autocontrol. The guide covers organizations' cookie requirements under Section 2 of Article 22 of Law 34/2002, as well as their legal obligations under the EU General Data Protection Regulation and Spain’s Organic Law 3/2018, of December 5, on the Protection of Personal Data. The document explains the or... Read More