Therrien talks Digital Charter, trans-border consultation at CPS19

(May 24, 2019) Privacy Commissioner of Canada Daniel Therrien believes the question about whether privacy legislation should be amended is in the past. It is no longer should the country's privacy laws be amended, but what is the best way to do so, and with the announcement of the country's Digital Charter, the commissioner said the federal government seems to agree. Therrien covered the latest development during his keynote speech at the IAPP Canada Privacy Symposium. The commissioner also announced his offic... Read More

IAPP releases interactive 'GDPR Genius' tool

(May 21, 2019) As we approach the one-year anniversary of the EU General Data Protection Regulation's implementation date, organizations are still grappling with the detailed framework and all its corresponding guidance and documentation. Keeping track of it all is no small task. That's why the IAPP has compiled the "GDPR Genius," an interactive tool that provides IAPP members with access to critical GDPR-related resources, including relevant recitals, European Data Protection Board guidance, member state guid... Read More

Dixon, Denham hint at sanctions coming soon

(May 3, 2019) It was clear from the keynote stage here Thursday that it wasn't the first time Helen Dixon had heard the question: When are you going to issue a fine?  Because of the number of tech companies headquartered in Dublin, Dixon conceded, "My office is the internet authority." But she was quick to remind the 4,000 privacy professionals from around the globe that a data protection authority isn't only there to enforce. There's complaint-handling, for example. Since the EU General Data Protection Regu... Read More

From keynote stage, regulators hint at coming sanctions

(May 3, 2019) It was clear from the keynote stage at the IAPP Global Privacy Summit 2019 in Washington Thursday that it wasn't the first time Irish Data Protection Commissioner Helen Dixon had heard the question: When are you going to issue a fine? Because of the number of tech companies headquartered in Dublin, Dixon conceded, "My office is the internet authority." But she was quick to remind the 4,000 privacy professionals from around the globe that a data protection authority isn't only there to enforce, b... Read More

EU DPA reviewing Bailiwick's data protection adequacy

(May 2, 2019) The Office of the Data Protection Authority has announced that it will begin reassessing the adequacy of data protection in the Bailiwick upon the request of the European Commission. The Bailiwick, which is the self-governing island territory off the coast of Great Britain, was previously among 13 non-EU jurisdictions that were recognized for their adequate data protection as it relates to EU General Data Protection Regulation standards. The review was necessitated when the Bailiwick was found t... Read More

NSA recommends ending phone-records program

(Apr 25, 2019) Amid a growing belief that the program has become a logistical quagmire and provides limited national security benefit, the U.S. National Security Agency has recommended that the White House abandon a surveillance program that collects data from U.S. phone calls and text messages, The Wall Street Journal reports. Legal compliance issues halted the use of the phone-records program earlier this year, but it is ultimately up to the White House to push for legislation that would renew the program. M... Read More

OPC releases discussion document for trans-border data flow consultation

(Apr 24, 2019) The Office of the Privacy Commissioner of Canada has released a supplementary discussion document to explain its decision to revise its policy position on trans-border data flows. The OPC also lists out eight questions in order to better facilitate the consultation it launched. “Our change in position is based ultimately on our obligation to ensure that our policies reflect a correct interpretation of the current law,” the discussion document reads. “During the Equifax investigation, it became a... Read More

Geist: OPC's trans-border policy reform will be challenging

(Apr 19, 2019) In an op-ed for The Globe and Mail, University of Ottawa Canada Research Chair for Internet and E-Commerce Law Michael Geist writes about the Office of the Privacy Commissioner of Canada's decision to explore privacy law reform related to cross-border data transfers. Geist writes that Canada is moving away from an “accountability principle” relating to safeguards for transfers to third parties outside Canada while placing more emphasis on consent for trans-border data flows. Geist argues the shi... Read More

Jourová: US needs to adopt stronger privacy laws

(Apr 12, 2019) In a post for Politico, EU Commissioner for Justice, Consumers and Gender Equality Věra Jourová explains why the U.S. government needs to adopt stronger privacy laws. Jourová cites the "overwhelmingly positive" effects the EU General Data Protection Regulation has had on both citizens and businesses, as well as how privacy rules can help in the development of artificial intelligence. The commissioner notes tech companies in the U.S. have already voiced their support for stronger legislation. "It... Read More