Podcast: Does Washington's privacy bill represent meaningful privacy reform?

(Jan 17, 2020) On Wednesday, Washington State Legislature's Senate Environment, Energy & Technology Committee held its first public hearing on a reintroduced version of the Washington Privacy Act. Those who have been following developments on the state's privacy legislation will recall that last year, despite gaining some significant momentum, the bill failed. The new version of the bill has gained praise from many privacy advocates, and lawmakers in Washington have said the bill has significant bipartisan... Read More

The Privacy Advisor Podcast: A debrief on the Washington Privacy Act

(Jan 17, 2020) On Jan. 15, Washington State Legislature's Senate Environment, Energy & Technology Committee held its first public hearing on a reintroduced version of the Washington Privacy Act. Those who have been following developments on the state's privacy legislation will recall that last year, despite gaining some significant momentum, the bill failed. The new version of the bill has gained praise from many privacy advocates, and lawmakers in Washington have said the bill has significant bipartisan s... Read More

European Commission considering 3- to 5-year ban of facial-recognition tech

(Jan 17, 2020) The European Commission may ban facial recognition for three to five years as it figures out how to curb abusive uses of the technology, BBC News reports. In an 18-page document, the commission plans to introduce new rules to enhance existing privacy laws and propose obligations on artificial intelligence users and developers. The document calls for EU countries to create an authority to keep track of those rules. Should the technology be temporarily banned, "a sound methodology for assessing th... Read More

Italian DPA issues 11.5M euro GDPR fine

(Jan 17, 2020) Italian data protection authority, the Garante, has announced an 11.5 million euro fine against gas and electric company Eni Gas e Luce for violations of the EU General Data Protection Regulation. The fine relates to EGL's data processing for telemarketing activities and the activation of unsolicited contracts. In addition to the fine, the Garante has ordered EGL to adopt corrective measures while prohibiting processing data of those on its telemarketing list without explicit consent. (Original ... Read More

FBI nabs website for selling breached records

(Jan 17, 2020) Silicon Republic reports the U.S. Federal Bureau of Investigation has shut down WeLeakInfo.com for selling personal records from data breaches over the last three years. According to the FBI, the website collected personal information from more than 10,000 data breaches and then sold access to the records for as little as $2. Types of records collected and sold included names, email addresses, usernames, phone numbers and unencrypted passwords. Meanwhile, the Federal Trade Commission announced f... Read More

The IAPP's top-5 most-read stories since Jan. 13

(Jan 17, 2020) We know, there's lots of privacy news, guidance and documentation to keep up with every day. And we also know, you're busy doing all the things required of the modern privacy professional. Sure, we distill the latest news and relevant content down in the Daily Dashboard and our weekly regional digests, but sometimes that's even too much. To help, we offer our top-five most-read stories for the week of Jan. 13.Full Story... Read More

Top-5 most-read stories for the week of Jan. 13, 2020

(Jan 17, 2020) We know, there's lots of privacy news, guidance and documentation to keep up with every day. And we also know, you're busy doing all the things required of the modern privacy professional. Sure, we distill the latest news and relevant content down in the Daily Dashboard and our weekly regional digests, but sometimes, that's even too much. To help, we offer our top-five most-read stories of the week. Daily Dashboard: "Chrome to phase out third-party cookies" Resource Center: "US 50-State Stat... Read More

FRA publishes guidance for Eurodac fingerprint processing

(Jan 16, 2020) The European Union Agency for Fundamental Rights has released guidance for data processing related to fingerprints for the European Asylum Dactyloscopy system. The guide aims to help officers explain the Eurodac processing to asylum applicants and detained migrants, who have "the right to understand who is processing their personal data and why." Specific information officers are required to deliver to data subjects and data collection procedures for children are outlined in the guidance.Full St... Read More

Irish DPC releases guidance on body cam use

(Jan 16, 2020) The Irish Data Protection Commission has released guidance on the use of body cameras. The guidance has been created to help body camera users determine whether they are a data controller and must meet the requirements of the EU General Data Protection Regulation. The document also lists out the obligations data controllers must adhere to and steps users can take to ensure the technology is in compliance with data protection law. The agency also mentions body camera use for law enforcement purpo... Read More

NPC warns ride-hailing service of data security problems

(Jan 16, 2020) The Manila Times reports the Philippines National Privacy Commission has called on ride-hailing service Grab Philippines to improve its data security measures. The NPC cited issues with Grab's recent updates to its passenger verification system and a test program for in-car audio and video recordings. NPC Compliance and Monitoring Division Chief Olivia Khane Raza said, "To avoid serious breaches of privacy, the commission must ensure that their new system is compliant with the Data Privacy Act a... Read More