Communications, Data collection, Government and Personal data

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

Data Matters

DECEMBER 9, 2021

Department of Commerce (Commerce) issued a notice of proposed rulemaking (Proposed Rule) implementing Executive Order 14034 on Protecting Americans’ Sensitive Data from Foreign Adversaries (EO 14034). ownership, control, or management by persons that support a foreign adversary’s military, intelligence, or proliferation activities.

Communications

Communications Manufacturing Risk Data collection

Privacy in an open-data world: Why government agencies need to be proactive

Collibra

JUNE 23, 2023

Government agencies — from DC to Duluth, NYC to LA — are struggling. The ever-growing digitalization of our world has raised significant concerns about data privacy and security, particularly for agencies that manage and process sensitive and confidential information. There’s no going back. They must choose both.

Privacy

Privacy Government Data Privacy Data breaches

Florida Comprehensive State Privacy Law Sent to Governor for Signature

Hunton Privacy

MAY 17, 2023

On May 4, 2023, the Florida Senate and House of Representatives voted in favor of sending the Florida Digital Bill of Rights (“FDBR”) and other amendments related to government moderation of social media and protection of children in online spaces ( S.B. Government Moderation of Social Media S.B. Related Statutory Amendments in S.B.

Privacy

Privacy Personal data Sales Government

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

GDPR compliance checklist

IBM Big Data Hub

JANUARY 22, 2024

The General Data Protection Regulation (GDPR) is a European Union (EU) law that governs how organizations collect and use personal data. Any company operating in the EU or handling EU residents’ data must adhere to GDPR requirements. A data subject is the human being who owns the data.

GDPR

GDPR Compliance Personal data Privacy

FINLAND: PARLIAMENT APPROVES NEW ACT ON THE SECONDARY USE OF SOCIAL AND HEALTH CARE PERSONAL DATA

DLA Piper Privacy Matters

APRIL 8, 2019

The Finnish Parliament has approved the new general Act on the Secondary Use of Social Welfare and Health Care Data (Laki sosiaali- ja terveystietojen toissijaisesta käytöstä, based on government proposal HE 159/2017) in March 2019. The Act shall become effective within the following weeks.

Personal data

Personal data GDPR Healthcare Compliance

Austrian DPA Finds Data Transfers Resulting from Analytics Cookie Use to Be in Violation of GDPR Data Transfer Requirements

Hunton Privacy

JANUARY 24, 2022

On August 17, 2020, NOYB filed 101 identical complaints before 30 European Economic Area (“EEA”) data protection authorities regarding the use of Google Analytics and Facebook Connect by various companies. The complaints related to the question of whether transfers of EU personal data to Google and Facebook in the U.S.

Analytics

Analytics GDPR Personal data Data collection

HONG KONG: Increased Enforcement Action?

DLA Piper Privacy Matters

NOVEMBER 17, 2022

On 14 November 2022, the Office of the Privacy Commissioner for Personal Data (“PCPD”) published two investigation reports for non-compliance of the Personal Data (Privacy) Ordinance (“PDPO”): EC Healthcare’s failure to obtain consent for the use, disclosure, and transfer of patient’s personal data across its group entities; and.

Personal data

Personal data Data Privacy Compliance Privacy

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Hunton Privacy

DECEMBER 1, 2020

On November 26, 2020, the French Data Protection Authority (the “CNIL”) announced that it imposed a fine of €2.25 million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies.

GDPR

GDPR Personal data Data collection Marketing

Reflecting on APAC Data Protection and Cyber-security Highlights for 2019 (and what lies ahead!)

Data Protection Report

JANUARY 20, 2020

In addition, 2019 saw regulators publishing findings in respect of some of the largest data incidents of 2018. Singapore’s Personal Data Protection Commission (“ PDPC ”) imposed the highest fines to date in respect of a cyber-attack on SingHealth’s patient database system affecting 1.5 million patients.

Personal data

Personal data Security Data Privacy GDPR

DCMS Consults on National Data Strategy

Hunton Privacy

SEPTEMBER 15, 2021

On September 10, 2021, the UK Government Department for Digital, Culture, Media & Sport (“DCMS”) launched a consultation on its proposed reforms to the UK data protection regime. Organizations are encouraged to provide input on a range of data protection proposals, some of which are outlined below.

GDPR

GDPR Personal data Risk Communications

Article 29 Working Party Issues Opinion on Surveillance of Electronic Communications for Intelligence and National Security Purposes

Hunton Privacy

APRIL 16, 2014

The Opinion analyzes the implications of electronic surveillance programs on the right to privacy and provides several recommendations for protecting EU personal data in the surveillance context. Intelligence services should be subject to effective and independent supervision involving the relevant national data protection authorities.

Communications

Communications Personal data Security Data collection

Indonesia Publishes Proposed Data Protection Rule

Hunton Privacy

JULY 17, 2015

On July 14, 2015, pursuant to an implementation requirement of Government Regulation 82 of 2012, the Indonesian government published the Draft Regulation of the Minister of Communication and Information (RPM) of the Protection of Personal Data in Electronic Systems (“Proposed Regulation”). 82 of 2012.

Personal data

Personal data Archiving Financial Services Communications

Data protection strategy: Key components and best practices

IBM Big Data Hub

MAY 28, 2024

Data breach victims also frequently face steep regulatory fines or legal penalties. Government regulations, such as the General Data Protection Regulation (GDPR), and industry regulations, such as the Health Insurance Portability and Accounting Act (HIPAA), oblige companies to protect their customers’ personal data.

Data breaches

Data breaches GDPR Compliance Encryption

Essential guidance for employers implementing COVID-19 measures at the workplace

Data Protection Report

SEPTEMBER 16, 2021

As Singapore moves towards living with COVID-19 as an endemic disease, the Government has issued guidance for employers on the COVID-19 measures to be implemented at the workplace. PDPC advisory on the collection of personal data at the workplace for COVID-19 contact tracing.

Personal data

Personal data Data collection Risk Access

Safely adopting technology in the hospitality industry

IT Governance

DECEMBER 20, 2018

They also offer other compelling benefits, such as unlimited data storage, encryption, technical support and reduced demand for internal hardware. . With so much personal data collected and used to inform business decisions, it’s vital that your team has the necessary understanding of cyber and information security.

Customer Experience

Customer Experience IoT Information Security Data collection

China’s First Data Protection Measures Lifting Its Veils

HL Chronicle of Data Protection

JUNE 13, 2019

The scope of application of the Data Security Measures. The data covered by the Data Security Measures includes personal data and important data. Requirements for personal data collection statements. Other items required by laws and administrative regulations.

Personal data

Personal data IT Data collection Compliance

Make data protection a 2023 competitive differentiator

IBM Big Data Hub

JANUARY 19, 2023

Data privacy regulations, such as the General Data Protection Regulation (GDPR) in the European Union or the California Consumer Privacy Act (CCPA) in the state of California, are inescapable. A lot of organizations aren’t as mature in this area of data ethics. Take Apple, for example.

Data Privacy

Data Privacy Customer Experience Privacy Compliance

EU Council Agrees on Proposed ePrivacy Regulation

Data Matters

MARCH 10, 2021

On February 10, 2021, the Council of the European Union (which includes representatives of the European Union (EU) member states, hereinafter Council) reached an agreement on the ePrivacy Regulation proposal that governs the protection of privacy and confidentiality of electronic communications services (ePrivacy Regulation).

GDPR

GDPR Metadata Communications Privacy

The servant of two masters: ICO and OFCOM Joint Statement on Online Safety and Data Protection – coordination so service providers can comply with both

Data Protection Report

DECEMBER 1, 2022

On 25 November 2022, the UK Information Commissioner’s Office ( ICO ) and the Office of Communications ( OFCOM ) (together, the Regulators ) released a joint statement setting out their shared views on the interactions between online safety and data protection (the Statement ). generally not allowed without a separate further consent).

Personal data

Personal data Compliance Privacy Risk

Federal Trade Commission Hosts Panels Related to Consumer Privacy and Data Security at PrivacyCon

Data Matters

SEPTEMBER 28, 2021

This panel primarily focused on voice-activated devices, and argued that consumers are often unaware about how much of their personal data is captured and disclosed to third-parties. Panelists discussed how phishers have capitalized on people’s fear of the COVID-19 pandemic to lure them into disclosing personally sensitive information.

Privacy

Privacy Security IoT Data breaches

UK ICO Publishes New Guidance on the Use of Cookies and Similar Technologies

Data Matters

JULY 11, 2019

Whilst the rules on cookies derive from the e-Privacy Directive which is implemented in each EU Member State (for example, in the UK, by the Privacy and Electronic Communications Regulations (PECR)), a number of important related concepts (e.g., consent and transparency) and the collection of personal data by cookies are governed by the GDPR.

GDPR

GDPR Analytics Privacy Personal data

Guest Post: France’s Digital Republic Act Strengthens Privacy Safeguards

IGI

OCTOBER 18, 2017

Zasio provides agile, innovative technology solutions and consulting services to help businesses of all sizes build and maintain a successful Information Governance program. France’s new Digital Republic Act [1] significantly strengthens protections that control how French businesses use and retain personally identifying data.

Privacy

Privacy Personal data GDPR Communications

CNIL Publishes Six Step Methodology and Tools to Prepare for GDPR

Hunton Privacy

MARCH 17, 2017

Step 1: Appointing a Data Protection Officer (“DPO”) or “Pilot”. The CNIL’s methodology first stresses the need for organizations to appoint a leader to pilot governance of data protection within their structure. This person will internally carry out informational, advisory and control tasks.

GDPR

GDPR Personal data Compliance Privacy

U.S. CLOUD Act and International Privacy

Data Protection Report

AUGUST 1, 2019

The CLOUD Act resolved the issue by amending the federal Stored Communications Act to state that a criminal warrant served on a U.S.-based The executive agreements are intended to work in both directions so that, for example, the Australian government could require production of data stored in the U.S. Amending 18 U.S.C.

Cloud

Cloud Privacy e-Discovery Personal data

UK-BREXIT- EU Withdrawal Agreement

DLA Piper Privacy Matters

NOVEMBER 15, 2018

Yesterday evening the UK Government and the EU Commission jointly published an agreement on the terms of the UK’s withdrawal from the EU (the “ Withdrawal Agreement “). This means that transfers of personal data from the EU to the UK will not be restricted under Chapter V during the transition period.

GDPR

GDPR Personal data Privacy Data collection

Coronavirus Risks – U.S. and European Employment and Privacy Law Issues

Data Matters

MARCH 5, 2020

In the current COVID-19 environment, key action items include these: Monitoring relevant public heath guidance and communication protocols. Employers should make sure they communicate any key recommendations to employees and update these communications as the situation develops. Data Protection and Privacy Law Issues.

Risk

Risk Privacy GDPR Communications

How to Take Your Business to The Next Level with Data Intelligence

erwin

JUNE 11, 2020

This is where businesses and IT companies move forward with using natural associations within the data and use associative technology to derive better data for decision making. DataOps will make business data processes more efficient and agile. Data literacy as a service. Data quality management.

Analytics

Analytics Blockchain Artificial Intelligence Big data

Centre Reports on 36th International Conference of Data Protection and Privacy Commissioners

Hunton Privacy

OCTOBER 16, 2014

Key observations contained in the Declaration issued by the host and the Conference’s Executive Committee included: The Internet of Things further magnifies the risks already inherent in big data. Data derived from Internet of Things devices should be considered personal data. Be transparent about data collection and use.

Privacy

Privacy Big data Data collection Personal data

New Chinese Legislation Includes Provisions Protecting Personal Information

Hunton Privacy

NOVEMBER 8, 2011

The Regulation imposes different restrictions on how government agencies and other organizations or individuals may collect personal information. The Regulation does not provide for civil liabilities as, according to the drafters, other Chinese laws (such as the Tort Liability Law ) already include suitable remedies.

Government

Government Marketing Data collection Education

IAPP Explores the Future of the Privacy Profession

Hunton Privacy

MARCH 15, 2010

Over the past 10 years, the exponential increase in data collection and retention have propelled the privacy professional into senior levels of management. Since the 1990s, however, the ability to collect and store data electronically has led to greater regulation concerning how data are collected and used.

Privacy

Privacy Paper Compliance Marketing

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Hunton Privacy

OCTOBER 14, 2021

Genetic Data: California Data Breach Notification and Data Security Law Amendment Bill. AB-825 : This bill amends California’s (1) data breach notification law (for both government agencies (Cal. Code Section 1798.82))and (2) data security law (Cal. This bill becomes effective January 1, 2022.

Privacy

Privacy Insurance Security Data breaches

Belgian DPA decision on IAB Transparency and Consent Framework

DLA Piper Privacy Matters

MARCH 2, 2022

The TC String allows the relevant vendors to analyse the preferences of the user to see whether there is a legal basis to process the personal data of the user for the relevant marketing purposes. Processing of personal data within TCF?

GDPR

GDPR Personal data IT Compliance

Wednesday LTNY 2018 Sessions: eDiscovery Trends

eDiscovery Daily

JANUARY 30, 2018

Discussion points will include how to adequately understand the technology from a governance and controls point of view to be able to withstand regulatory scrutiny. The panel will also review how professionals are integrating big data and machine learning in e-discovery, compliance, and regulatory matters.

e-Discovery

e-Discovery Artificial Intelligence GDPR Education

Gaining control of personal information ahead of CPRA

Collibra

JANUARY 25, 2022

Although the CPRA comes into effect on January 1, 2023, one year from now, it applies to personal information collected on or after January 1, 2022, driving businesses to gain control of their data collection and processing. The protected data has a new category of sensitive personal information (SPI).

Data Privacy

Data Privacy Privacy Personal data Government

The Burden of Privacy In Discovery

Data Matters

SEPTEMBER 29, 2021

Most of that focus has centered on data collection, storage, sharing, and, in particular, third-party transactions in which customer information is harnessed for advertising purposes. Could a party, for instance, decline to produce, review, or even collect certain types of data due to privacy concerns?

Privacy

Privacy e-Discovery Computer and Electronics e-Delivery

EU: New EDPB Guidelines on the territorial scope of the GDPR

DLA Piper Privacy Matters

NOVEMBER 28, 2018

Under Article 3(1), the GDPR applies to “ the processing of personal data in the context of the activities of an establishment of a controller or a processor in the Union, regardless of whether the processing takes place in the Union or not ”. However, the Guidelines do not address other key interpretive questions arising from Art.

GDPR

GDPR Personal data Sales Communications

FRANCE : THE CNIL ADOPTS REVISED GUIDELINES AND FINAL RECOMMENDATIONS ON COOKIES AND OTHER TRACKERS

DLA Piper Privacy Matters

OCTOBER 6, 2020

While cookies and trackers used for advertising purposes and social networks features remain subject to consent, the Revised Guidelines provide additional examples of categories of cookies and trackers that are exempt from consent, under Article 82 of the French Data Protection Act. 1] Conseil d’Etat, 19 June 2020, No.

GDPR

GDPR Communications Access Data collection

Data collection cheat sheet: how Parler, Twitter, Facebook, MeWe’s data policies compare

Security Affairs

JANUARY 13, 2021

While these alt platforms largely position themselves as “free speech” alternatives, we at CyberNews were also interested in how these alt social platforms compare in terms of data collection. Users would need to read both Triller’s and Quickblox’ privacy policies to get a good idea of how their data is being collected and processed.

Data collection

Data collection Privacy Analytics Access

California Consumer Privacy Act: The Challenge Ahead — Key Terms in the CCPA

HL Chronicle of Data Protection

SEPTEMBER 14, 2018

Although the CCPA does not explicitly refer to “controllers” and “processors,” which are the terms used by Europe’s General Data Protection Regulation (GDPR) to distinguish between the decision-making power for personal data processed by different types of entities, the act does define the term “service providers.” Collection.

Privacy

Privacy Sales GDPR Personal data

Two new CJEU judgments further tighten limits of government surveillance – significant for impending UK adequacy decision and “Schrems II country assessments”

Data Protection Report

OCTOBER 15, 2020

On 6 October 2020, the Court of Justice of the European Union ( CJEU ) published two decisions that further define the permitted scope of governmental access to personal data. traffic and location data, not message content) collected by telecommunications providers. What is the background to this case?

Metadata

Metadata Government Communications Personal data

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Data Matters

MARCH 4, 2021

Rather, to be covered by the VCDPA, an entity must either “(i) during a calendar year, control or process personal data of at least 100,000 consumers or (ii) control or process personal data of at least 25,000 consumers and derive over 50 percent of gross revenue from the sale of personal data.”. Exemptions.

Personal data

Personal data GDPR Sales Privacy

Privacy law in the context of pandemics

Privacy and Cybersecurity Law

APRIL 9, 2020

The ongoing COVID-19 pandemic illustrates and confirms the immense pressures both public and private entities face to widely collect, use and share individuals’ personal health data in order to facilitate a coordinated pandemic response. Employers must also apply any special considerations unique to their business.

Privacy

Privacy Risk Communications Government

Privacy law in the context of pandemics

Privacy and Cybersecurity Law

APRIL 9, 2020

The ongoing COVID-19 pandemic illustrates and confirms the immense pressures both public and private entities face to widely collect, use and share individuals’ personal health data in order to facilitate a coordinated pandemic response. Employers must also apply any special considerations unique to their business.

Privacy

Privacy Risk Communications Government

In Midst of COVID-19 Pandemic, Senators Propose Privacy Bill Aimed At Businesses’ Use of Consumer Data

Data Matters

MAY 7, 2020

According to the April 30 Senate press release regarding the COVID-19 Consumer Data Protection Act , the legislation would “provide all Americans with more transparency, choice, and control over the collection and use of their personal health, geolocation, and proximity data” for data processing related to fighting the COVID-19 pandemic.

Privacy

Privacy Compliance Data collection Education

U.S. Commerce Department Proposes Expansion of Information and Communications Technology and Services Review Process

Privacy in an open-data world: Why government agencies need to be proactive

Webinars

Trending Sources

Florida Comprehensive State Privacy Law Sent to Governor for Signature

Webinars

GDPR compliance checklist

FINLAND: PARLIAMENT APPROVES NEW ACT ON THE SECONDARY USE OF SOCIAL AND HEALTH CARE PERSONAL DATA

Austrian DPA Finds Data Transfers Resulting from Analytics Cookie Use to Be in Violation of GDPR Data Transfer Requirements

HONG KONG: Increased Enforcement Action?

CNIL Fines Two Companies of the Carrefour Group €3.05 Million for GDPR and Cookie Violations

Reflecting on APAC Data Protection and Cyber-security Highlights for 2019 (and what lies ahead!)

DCMS Consults on National Data Strategy

Article 29 Working Party Issues Opinion on Surveillance of Electronic Communications for Intelligence and National Security Purposes

Indonesia Publishes Proposed Data Protection Rule

Data protection strategy: Key components and best practices

Essential guidance for employers implementing COVID-19 measures at the workplace

Safely adopting technology in the hospitality industry

China’s First Data Protection Measures Lifting Its Veils

Make data protection a 2023 competitive differentiator

EU Council Agrees on Proposed ePrivacy Regulation

The servant of two masters: ICO and OFCOM Joint Statement on Online Safety and Data Protection – coordination so service providers can comply with both

Federal Trade Commission Hosts Panels Related to Consumer Privacy and Data Security at PrivacyCon

UK ICO Publishes New Guidance on the Use of Cookies and Similar Technologies

Guest Post: France’s Digital Republic Act Strengthens Privacy Safeguards

CNIL Publishes Six Step Methodology and Tools to Prepare for GDPR

U.S. CLOUD Act and International Privacy

UK-BREXIT- EU Withdrawal Agreement

Coronavirus Risks – U.S. and European Employment and Privacy Law Issues

How to Take Your Business to The Next Level with Data Intelligence

Centre Reports on 36th International Conference of Data Protection and Privacy Commissioners

New Chinese Legislation Includes Provisions Protecting Personal Information

IAPP Explores the Future of the Privacy Profession

California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

Belgian DPA decision on IAB Transparency and Consent Framework

Wednesday LTNY 2018 Sessions: eDiscovery Trends

Gaining control of personal information ahead of CPRA

The Burden of Privacy In Discovery

EU: New EDPB Guidelines on the territorial scope of the GDPR

FRANCE : THE CNIL ADOPTS REVISED GUIDELINES AND FINAL RECOMMENDATIONS ON COOKIES AND OTHER TRACKERS

Data collection cheat sheet: how Parler, Twitter, Facebook, MeWe’s data policies compare

California Consumer Privacy Act: The Challenge Ahead — Key Terms in the CCPA

Two new CJEU judgments further tighten limits of government surveillance – significant for impending UK adequacy decision and “Schrems II country assessments”

East Coast Meets West Coast: Enter the Virginia Consumer Data Protection Act

Privacy law in the context of pandemics

Privacy law in the context of pandemics

In Midst of COVID-19 Pandemic, Senators Propose Privacy Bill Aimed At Businesses’ Use of Consumer Data

Stay Connected