The Privacy Advisor Podcast: Ready, set, GDPR

(Jan 19, 2018) Gabe Maldoff is a young guy. He graduated law school in 2015, got himself a fellowship at the IAPP's Westin Center, and then immediately went to work at London's Bird & Bird. And just as he was adjusting to life in the real world, the world itself was adjusting to what would be expected of it under Europe's new privacy regime via the GDPR. In this episode of The Privacy Advisor Podcast, Maldoff talks to host Angelique Carson, CIPP/US, about how his early experiences in Tanzania shaped his fu... Read More

Canada-US data sharing agreement leads to immigration crackdown

(Jan 19, 2018) A cross-border data sharing agreement between Canada and the U.S. led to the Canadian federal government flagging at least 1,000 immigration violations between June 2013 and October 2015, CBC News reports. Canada and the U.S. began the agreement in 2011, where the two countries track the entry and exit information of travelers, collecting names, nationalities, dates of birth, gender and other travel information. The Canadian Parliament is currently debating a bill allowing the government to coll... Read More

ODSI accepting APEC Accountability Agent applications

(Jan 17, 2018) The U.S. International Trade Administration's Office of Digital Services Industries is accepting applications for organizations interested in serving as Accountability Agents in the Asia Pacific Economic Cooperation Privacy Recognition for Processors system. Accountability Agents are third-party organizations that conduct verification services to companies seeking PRP certification. The ODSI is seeking Accountability Agents to provide PRP certifications to U.S. processors subject to the enforcem... Read More

France's Macron: Europe needs to define its big data model

(Jan 11, 2018) Financial Times reports on comments made by French President Emmanuel Macron on the need for Europe to compete with China and the U.S., specifically with regard to big data. Calling it a priority for France, Macron said plans for a new "silk road" between the EU and China must be a two-way street, where businesses from each region can take part in the other all the while respecting personal data protection. "To advance sufficiently and be competitive with the American and Chinese players, we nee... Read More

European Commission releases notice to stakeholders on Brexit

(Jan 10, 2018) The European Commission's Directorate-General for Justice and Consumers has issued a "Notice to stakeholders: withdrawal of the United Kingdom and EU rules in the field of data protection." The notice states the U.K. will soon "become a 'third country,'" meaning "all stakeholders processing personal data are reminded of legal repercussions, which need to be considered when the United Kingdom becomes a third country." The Commission points out that all rules for the transfer of personal data to a... Read More

How the GDPR will impact US health care providers

(Jan 10, 2018) To find out how U.S. health care providers must comply with the upcoming EU General Data Protection Regulation, GovInfoSecurity interviewed Stephen Wu, a regulatory attorney with the Silicon Valley Law Group. Wu explained that U.S. health care providers operating strictly within the U.S., making no attempts to market toward residents in the EU and with no operations in the territory, will not fall under requirements of the GDPR. The interview covers a range of topics, including insight on the EU... Read More

Op-Ed: Why Section 702 reform has big economic consequences

(Jan 10, 2018) In a column for The Hill, Twilio General Counsel Karyn Smith points out the economic consequences that are attached to reforming Section 702 of the Foreign Intelligence Surveillance Amendments Act. The law is set to expire Jan. 19, but there are competing reforms in Congress. One such proposal, H.R. 4478, which was passed by a partisan majority in the House Select Committee on Intelligence, "risks reversing progress that has been made" through the EU-U.S. Privacy Shield framework. The EU's Artic... Read More

EU-U.S. Privacy Shield Annex I Binding Arbitration Mechanism

(Jan 9, 2018) The International Centre for Dispute Resolution, the international division of the American Arbitration Association, manages the Privacy Shield Annex I Arbitration Mechanism and Arbitral Fund. This website offers information for the Annex I Binding Arbitration Mechanism. The ICDR’s primary functions in this regard are to administer arbitrations that may arise under Annex I, and to establish and manage an Arbitral Fund to cover the arbitral costs.Access site... Read More

Privacy Shield Notice Requirements

(Jan 9, 2018) The U.S. Department of Commerce spells out 13 details of an organization's privacy practices that must be provided "in clear and conspicuous language when individuals are first asked to provide personal information to the organization or as soon thereafter as is practicable ... " in order to comply with the EU-U.S. Privacy Shield.Read Now... Read More

The Privacy Advisor Podcast: Was 2017 just the amuse-bouche for 2018?

(Jan 5, 2018) By any measure, 2017 was a banner year for privacy. Here at the IAPP, we saw an incredible surge of activity, from attendance at IAPP KnowledgeNets and Privacy After Hours to certifications to podcast listens. The most obvious push behind that surge was that four-letter word, the GDPR. But interpreting the text of the EU's new data protection regime wasn't the only news that mattered in 2017. In this episode of The Privacy Advisor Podcast, the IAPP Publications Team sits around the microphone on... Read More