News stories posted during October 2011
06/10/2011
by:
Swedish DPA warns about DP risks involved in cloud services Colombia’s data protection law approved by the Constitutional Court Canadian bill introduces mandatory data breach notification 1. Swedish DPA warns about DP risks involved in cloud...
Comments:
0
26/09/2011
by:
DP regime proposed in Singapore: Bill expected in early 2012 Article 29 Working Party sceptical over advertising industry’s Self-Regulatory Code Costa Rica adopts a DP law PL&B publishes comprehensive table of privacy laws in 76 jurisdictions...
Comments:
0
16/08/2011
by:
Hungary adopts new data protection law Important amendments to Russia’s DP law Consultation on data breach notification EU writes to countries that fail to implement e-Privacy 1. Hungary adopts new data protection law Hungary’s legislature adopted...
Comments:
0
14/07/2011
by:
Nordic DPAs question Facebook on privacy Mexico consults on regulations Netherlands’ cookie clause stricter than EU Directive requires Peru adopts data protection law Sweden: Cookie clause in force 1 July Hungary submits new Data Protection Bill a...
Comments:
0
14/06/2011
by:
Qatar consults international privacy experts on innovative privacy law Peru: Congress approves DP Bill US aims for federal data breach law Ireland sees 350% increase in data breach notifications 1. Qatar consults international privacy experts on...
Comments:
0
16/05/2011
by:
Obama administration proposes US federal data breach law EU consults on cloud computing Disney subsidiary to pay $3 million COPPA fine in the USA Canadian bill fails, Commissioner calls for substantial fines 1. Obama administration proposes US...
Comments:
0
11/04/2011
by:
CNIL’s new enforcement and audit strategy announced at PL&B’s Privacy Officers Network Roundtable with the CNIL in Paris EU Article 29 Data Protection Working Party finds New Zealand adequate New agreement on RFID use DP Authorities call for...
Comments:
0
23/03/2011
by:
France: CNIL fines Google a record 100,000 euros for Streetview, Latitude EU Justice Commissioner outlines DP reforms US FTC gives evidence on Do-Not-Track 1. France: CNIL fines Google a record 100,000 euros for Streetview, Latitude On 17 March...
Comments:
0
01/02/2011
by:
New infringements and fines adopted under Spain’s Data Protection Law Portugal’s Data Protection Authority implements an electronic notification system Portugal’s Data Protection Authority states its position on the Agreement for the sharing of...
Comments:
0
20/01/2011
by:
Online Behavioural Advertising: Compliance seal to be introduced France: Companies to be publicly named and shamed Binding Global Codes suggested as a solution to data transfers outside the European Economic Area Spain: Google to go to court over...
Comments:
0
22/12/2010
by:
US Department of Commerce proposes Canada adopts law on online data protection German DPAs set minimum requirements for DPOs More detail needed for EU Data Protection Directive revision US FTC: Self-regulation has failed to provide meaningful...
Comments:
0
03/11/2010
by:
Privacy Commissioners adopt Privacy by Design resolution Commissioners accept FTC and Mexico as new members EU publishes its plans for revision of the Data Protection Directive 1. Privacy Commissioners adopt Privacy by Design resolution The...
Comments:
0
21/10/2010
by:
EU approves Israel's Adequacy Status Google Wi-Fi: Spain takes Google to court, Canada asks for improvements by February 2011 EDPS comments on EU law enforcement DP review Uruguay adequate, says EU Art. 29 DP Working Party 1. EU approves Israel'...
Comments:
0
03/09/2010
by:
Germany’s Federal Government approves new Bill on employee data Enforcement network strengthened by new DPA members US Federal Trade Commission joins the Asia Pacific Privacy Authorities Forum EU Art. 29 DP Working Party adopts opinions on RFID, a...
Comments:
0
20/08/2010
by:
Changes to Spanish Decree Revision of the European Union’s Data Protection Directive on track Hong Kong Commissioner may investigate telecoms companies 1. Changes to Spanish Decree Spain’s Supreme Court decided in July to void three articles in th...
Comments:
0
26/07/2010
by:
Asia-Pacific Enforcement network launched 1. Asia-Pacific Enforcement network launched Following several DP Commissioners’ move to start a Global Privacy Enforcement Network, some Asia-Pacific countries have now, on 16 July, launched a Cross-Borde...
Comments:
0
14/06/2010
by:
Germany prepares amendment to DP Act on employee data Taiwan passes amendments to DP Act Swiss-US pact to disclose personal banking details rejected by Swiss parliament EU Data Protection Working Party requires opt-in for cookies Switzerland agree...
Comments:
0
21/05/2010
by:
Exports from Germany of personal data under the United States Safe Harbor now face obstacles from the regulators DPAs suspect that Google’s wireless data collection and retention practices in breach of DP law Facebook replies to critics 1. Exports...
Comments:
0
12/04/2010
by:
Liechtenstein Court sets multi-million precedent for data breach liability HSBC Swiss data breach Landmark Israeli Supreme Court Case: Online anonymity is a constitutional right New Zealand’s Law Commission wants new privacy laws Privacy...
Comments:
0
01/03/2010
by:
EU Article 29 DP Working Party publishes opinion on processor and controller 1. EU Article 29 DP Working Party publishes opinion on processor and controller The European Union’s Art. 29 Data Protection Working Party, (the group of national Data...
Comments:
0
02/02/2010
by:
European Union set to revise the DP Directive New EU controller-processor contractual clauses 1. European Union set to revise the DP Directive Incoming EU Justice Commissioner Viviane Reding has announced plans to modernise the EU Data Protection ...
Comments:
0
14/01/2010
by:
Israel and Andorra receive positive assessment on adequacy from EU Art. 29 DP Working Party China: data protection construed as tort 1. Israel and Andorra receive positive assessment on adequacy from EU Art. 29 DP Working Party The European Union’...
Comments:
0
24/11/2009
by:
EU and US to sign secret SWIFT agreement before 1 December 1. EU and US to sign secret SWIFT agreement before 1 December The EU and the US are racing to sign an agreement for the US to see EU banking details before the Lisbon Treaty gives the...
Comments:
0
06/11/2009
by:
eBay’s BCR application approved 1. eBay’s BCR application approved 14 EU Data Protection Authorities have approved eBay’s Binding Corporate Rules application. The BCR’s, which apply both to customer and employee data, were formally approved by the...
Comments:
0
30/10/2009
by:
Deutsche Bahn fined 1.1 million Euros for employee monitorin 1. Deutsche Bahn fined 1.1 million Euros for employee monitoring On 19 October the Berlin data protection commissioner, Otto Dix, imposed a fine of 1.1 million Euros on Deutsche Bahn, th...
Comments:
0
22/10/2009
by:
Financial police help Italy’s DPA to use its strong enforcement powers EU lobbyists must be named South African data protection bill introduced Hong Kong consults on a review of the Personal Data (Privacy) Ordinance New Zealand publishes guidance ...
Comments:
0
24/09/2009
by:
UK ICO approves Hyatt Hotels’ Binding Corporate Rules application EU Data Protection Supervisor’s annual report addresses privacy issues relevant to all sectors 1. UK ICO approves Hyatt Hotels’ Binding Corporate Rules application The UK Informatio...
Comments:
0
15/09/2009
by:
FTC takes enforcement action on Safe Harbor breach Germany publishes draft Employee Data Protection Act France proposes data breach notification Netherlands, Spain now have tighter TPS rules Denmark issues guidance on whistleblowing lines Swiss...
Comments:
0
17/07/2009
by:
Germany amends data protection law French “three strikes” law unconstitutional Swedish privacy party elects Member of European Parliament 1. Germany amends data protection law On 10th July, the second chamber of Germany’s legislature passed...
Comments:
0
05/06/2009
by:
Morocco adopts data protection law US Safe Harbor reinforced President Obama announces Cybersecurity Co-ordinator office, to include privacy officer Guatemala enacts FOIA Chile enacts FOIA 1. Morocco adopts data protection law Morocco adopted a da...
Comments:
0
29/05/2009
by:
India: new law on liability for personal data breaches Three more EU Member States Join BCR Mutual Recognition Club EU acts against Sweden on data retention 1. India: new law on liability for personal data breaches In February India adopted a new...
Comments:
0
11/05/2009
by:
European Parliament adopts legislative resolution on data breach amendments to the European Union’s E-Privacy Directive for all sectors and all types of data 1. European Parliament adopts legislative resolution on data breach amendments to the...
Comments:
0
01/05/2009
by:
UK’s Information Commissioner approves Atmel’s and Accenture’s Binding Corporate Rules in successive weeks EU starts legal action against UK over Phorm EU close to data breach notification law France: close to adopting law to cut off Internet for...
Comments:
0
18/03/2009
by:
Yahoo fined by Belgian court for refusing to disclose personal data EU Art. 29 DP WP publishes decision on data controller to data processor standard contractual clauses for international transfers European Court of Justice orders disclosure of...
Comments:
0
19/02/2009
by:
Swiss Court rules for DP Commissioner with restraining order against Dun & Bradstreet Swiss/US Bilateral Safe Harbor agreement now in force EU Art. 29 DP Working Party adopts strong Opinion on broadening the scope of EU data breach proposals EU Ar...
Comments:
0
11/02/2009
by:
Google executives face criminal charges in Italy 1. Google executives face criminal charges in Italy Four Google executives are facing criminal charges in Italy for failing to control information posted to Google which included a video of teenager...
Comments:
0
29/01/2009
by:
European Data Protection Supervisor adopts Opinion on ePrivacy Directive review, and security breach notification US Heartland Payment Systems admits illegal access to its customers’ credit card information Sony BMG Fined $1 million for Violating ...
Comments:
0
24/12/2008
by:
Peter Hustinx reappointed as EU Data Protection Supervisor and Giovanni Buttarelli appointed as Assistant EU DP Supervisor 1. Peter Hustinx reappointed as EU Data Protection Supervisor and Giovanni Buttarelli appointed as Assistant EU DP Superviso...
Comments:
0
22/12/2008
by:
Switzerland joins the EU in accepting the US Safe Harbor Framework EU Art. 29 Data Protection Working Party announces four more countries for its Binding Corporate Rules mutual recognition procedure 1. Switzerland joins the EU in accepting the US...
Comments:
0
16/12/2008
by:
US Safe Harbor found to present privacy risks to consumers Society for Worldwide Interbank Transfers (SWIFT) approved by Belgian DPA EU DP Superivisor says IP addresses are protected Israel’s new anti-spam law now in force 1. US Safe Harbor found ...
Comments:
0
08/12/2008
by:
European Court of Human Rights rules that the United Kingdom’s DNA storage violates privacy right 1. European Court of Human Rights rules that the United Kingdom’s DNA storage violates privacy right A Grand Chamber of 17 judges of the European Cou...
Comments:
0
21/11/2008
by:
US President-elect Obama states his policies on privacy and transparency Large Australian fine for ignoring the Do Not Call Register Israeli database bill introduced European Commission appoints group to advise on its review of the EU Data...
Comments:
0
28/10/2008
by:
DP Commissioners call for global rules US SEC fines broker-dealer Deutsche Telekom leaks customer data Germany's new national data protection amendments Uruguay gets new DP law EU data retention directive is legal, probably Spanish DP authority...
Comments:
0
08/10/2008
by:
Article 29 WP announces 9-country mutual recognition BCR club French tax searches breach European Convention on Human Rights, again Article 29 Data Protection Working Party has many doubts about US electronic visas Google reduces data retention...
Comments:
0
01/08/2008
by:
Council of Europe DP Treaty now open to non-European countries EU in Negotiations with US to hand over more personal data Japanese DP Law does not give private right of access to personal data 1. Council of Europe DP Treaty now open to non-Europea...
Comments:
0
23/07/2008
by:
Israel announces twinning programme with Spain EU DP Working Party endorses speedier BCRs Strasbourg Court rules against British telephone-tapping 1. Israel announces twinning programme with Spain On 20th July, Israel’s Data Protection Authority...
Comments:
0
08/05/2008
by:
Turkey’s legislature to debate a government data protection bill 38 million Italian tax returns published on-line CNIL orders shut down of France’s new police database 1. Turkey’s legislature to debate a government data protection bill Turkey’s...
Comments:
0
30/04/2008
by:
EU Data Protection Supervisor supports data breach notification and legal action against spammers EU Article 29 Working Party sets short retention limit for search engines Online Rating of Employers – a Beginning? French court bans teacher rating...
Comments:
0
22/02/2008
by:
Art. 29 DP Working Party decides that IP addresses are personal data European Court decides on copyright vs. privacy right 1. Art. 29 DP Working Party decides that IP addresses are personal data The Art. 29 Data Protection Working Party (the group...
Comments:
0
12/02/2008
by:
China proposes a Data Protection Bill European Court decides on copyright vs. privacy right France’s CNIL enters conflict between EU privacy laws and US information demands Data Protection Authorities generally in favour of national data breach la...
Comments:
0
24/01/2008
by:
European Court orders access over national veto EU Treaty confirms data protection and freedom of information Spain adopts new data protection regulation 1. European Court orders access over national veto The European Court of Justice, on 18th...
Comments:
0
14/12/2007
by:
Lobbyists must be named - EU court rules that names of those attending meetings with the European Commission must be named 1. Lobbyists must be named - EU court rules that names of those attending meetings with the European Commission must be name...
Comments:
0
22/11/2007
by:
The Netherlands Announces Binding Corporate Rules Innovation 1. The Netherlands Announces Binding Corporate Rules Innovation Developments to improve BCRs and outsourcing were announced at a meeting in The Hague of the Privacy Laws & Business...
Comments:
0
08/11/2007
by:
Netherlands proposes heavy fines for ignoring stricter website rules SWIFT: Surprise decision by the Spain’s Data Protection Agency on its data processor status 1. Netherlands proposes heavy fines for ignoring stricter website rules The Netherland...
Comments:
0
05/10/2007
by:
SWIFT announces new operating centre in Switzerland to avoid DP problems 1. SWIFT announces new operating centre in Switzerland to avoid DP problems SWIFT, the international financial communications body with headquarters in Belgium, has announced...
Comments:
0
20/09/2007
by:
Luxembourg lightens data protection law 1. Luxembourg lightens data protection law On 1 September, Luxembourg modified its data protection law, removing some obligations to notify data processing to the CNPD (the national data protection authority...
Comments:
0
12/09/2007
by:
New Zealand Privacy Commissioner Launches Draft Security Breach Guidelines 1. New Zealand Privacy Commissioner Launches Draft Security Breach Guidelines New Zealand Privacy Commissioner Marie Shroff has published a draft guide to help the public a...
Comments:
0
20/07/2007
by:
SWIFT joins US Safe Harbor today 1. SWIFT joins US Safe Harbor today SWIFT announced today that to respond to EU criticisms on its privacy policies, it has joined the US Safe Harbor and plans to move its mirror operating site from the US to Europe...
Comments:
0
28/06/2007
by:
The Art. 29 Data Protection Working Party discusses SWIFT, search engines’ retention policies and the definition of “personal data” Argentina appoints a new Data Protection Commissioner 1. The Art. 29 Data Protection Working Party discusses SWIFT,...
Comments:
0
15/06/2007
by:
Privacy International criticises web company’s privacy policies Spain’s largest ever data protection law fine European Commission reviews Argentina’s adequacy status 1. Privacy International criticises web company’s privacy policies Privacy...
Comments:
0
06/06/2007
by:
Dubai’s Data Protection Commissioner demands registration by 30th June 1. Dubai’s Data Protection Commissioner demands registration by 30th June Dubai is moving quickly to put its data protection regime fully into effect. First came the law (PL&B...
Comments:
0
10/05/2007
by:
France’s CNIL Fines Tyco Healthcare for giving false information and non-cooperation European Court of Human Rights gives judgment on an employer’s monitoring of an employee’s personal communications Italy’s DPA issues legally binding rules on...
Comments:
0
12/02/2007
by:
Dubai Announces New Data Protection Law 1. Dubai Announces New Data Protection Law The Dubai International Financial Centre, in the United Arab Emirates, has a new data protection law, which entered into force on 8 January 2007. The law, designed...
Comments:
0
09/02/2007
by:
EU Data Protection Supervisor Rules on SWIFT Secret Data Protection Breaches 1. EU Data Protection Supervisor Rules on SWIFT Secret Data Protection Breaches Peter Hustinx, the European Data Protection Supervisor, adopted an opinion on 1 February...
Comments:
0
21/12/2006
by:
Luxembourg users of SWIFT assure DPA of compliance with EU DP law 1. Luxembourg users of SWIFT assure DPA of compliance with EU DP law As a follow up to the previous international e-news (November 27th) and report in the December edition of Privac...
Comments:
0
27/11/2006
by:
EU stops banks sending data to USA 1. EU stops banks sending data to USA The EU's Art. 29 Data Protection Working Party (consisting of the 25 member states's Data Protection commissioners) has told European Banks and SWIFT, which handles...
Comments:
0
17/11/2006
by:
Belgian Data Protection Authority finds SWIFT in Breach of DP Law World Data Protection Commissioners urge action Inter-American Court Rules on Right to Know in Convention 1. Belgian Data Protection Authority Finds SWIFT in Breach of DP Law The...
Comments:
0
13/10/2006
by:
Italy’s Data Protection Authority stops TV show on politicians' drug use $1million fine for US child privacy violation France’s CNIL uses its new fining power for the first time (update) US and EU reach interim PNR pact 1. Italy’s Data Protection...
Comments:
0
05/10/2006
by:
1. France’s CNIL uses its new fining power for the first time 2. Canadian Supreme Court Calls for Stronger Privacy Commissioner Powers 3. Russia’s new DP law to enter into force in February 2006 1. France’s CNIL uses its new fining power for the...
Comments:
0
08/08/2006
by:
Russia adopts European-style data protection law 1. Russia adopts European-style data protection law Russia has joined the European data protection club and adopted a ‘need to know’ freedom of information act. On the last two days of its session, ...
Comments:
0
24/07/2006
by:
SWIFT Interbank financial network responds to US regulator’s secret demand for data EU Art. 29 DP Working Party provides clarification to USA’s SEC on whistleblowing UK Information Commissioner issues new guidance on transferring personal data out...
Comments:
0
01/06/2006
by:
European Court of Justice declares the EU/US air passenger data agreement illegal 1. European Court of Justice declares the EU/US air passenger data agreement illegal The European Court of Justice ruled yesterday that the EU/US agreement approving...
Comments:
0
03/05/2006
by:
Ireland’s Minister for Justice, Equality and Law Reform drafts new Privacy Bill First Spam decision in Latin America Agencies are not protecting citizens’ security rights, says the US Government Accountability Office European Data Protection...
Comments:
0
01/03/2006
by:
Art 29 DP Working Party adopts Opinion on whistleblowing schemes PL&B's Washington Director, Jane Horvath, appointed Chief Privacy Officer at US Department of Justice AOL sues gangs in Virginia, USA, over identity thefts, using new law 1. Art 29 D...
Comments:
0
20/02/2006
by:
Honeywell investigates major security breach Hackers attack Greek government mobile phones ChoicePoint receives largest civil penalty in FTC history Nicole Kidman’s paparazzo avoids giving DNA sample Review of Australian Privacy Act 1998 US Bill...
Comments:
0
30/01/2006
by:
New Italian law requires Internet cafes to record ID information on clients Australia to introduce legislation to aid information exchange in an emergency Federal Trade Commission releases progress report on US Congress’s antispam law Google fight...
Comments:
0
28/11/2005
by:
The European Court of Justice’s Advocate General calls for annulment of European Council and Commission decisions regarding airline passenger data Medical records must not be used as film props France’s CNIL publishes new regulations on...
Comments:
0
12/09/2005
by:
Australian Privacy Commissioner calls for review of Privacy Act Argentine court permits webcam Germany: Instant dismissal for private use of the internet during working hours 1. Australian Privacy Commissioner calls for review of Privacy Act...
Comments:
0
14/07/2005
by:
France’s CNIL refuses to authorize whistle-blowing to US HQs Sweden responds to the changing interface of DP and IT Dutch libraries weigh RFID benefits against privacy threats 40 million credit cards vulnerable to fraud 1. France's CNIL refuses to...
Comments:
0
06/04/2005
by:
Japan’s data protection comes into force EU approves guidelines for anti-fraud databases Europe urged to promote data protection officers Spain teams up with US in fight against spam US agencies publish security response guidelines 1. Japan’s data...
Comments:
0
17/02/2005
by:
European regulators launch privacy consultations European Commission mulls internal privacy restructuring Hungary’s privacy chief speaks out against data protection law Europe launches anti-spam initiative Former Sonera executive face illegal...
Comments:
0
14/01/2005
by:
EU to toughen up privacy controls Industry data transfer contracts get official approval Dutch regulator levies record spam fines 1. EU to toughen up privacy controls Data Protection Authorities across Europe have promised to get tough on...
Comments:
0
29/10/2004
by:
EU backs business-friendly data transfer contracts 1. EU backs business-friendly data transfer contracts The European Commission is expected shortly to give official backing to a new set of contractual clauses that will help businesses meet their...
Comments:
0
27/10/2004
by:
Safe Harbor privacy programme flawed says EU report UK set to respond to European Commission charges Telecoms operators cannot hide behind data protection law Ontario prepares for health privacy law 1. Safe Harbor privacy programme flawed says EU...
Comments:
0
13/10/2004
by:
European regulators rethink data protection strategy Verizon wins privacy protection case British Columbia toughens privacy law California governor terminates privacy bills 1. European regulators rethink data protection strategy The EU's Data...
Comments:
0
03/09/2004
by:
Indian outsourcing firms to undergo security checks California legislature approves outsourcing bill More US consumers asserting privacy rights Australian Privacy Commissioner investigates inaccurate credit records 1. Indian outsourcing firms to...
Comments:
0
08/11/2011
by:
The US Federal Trade Commission, FTC, is seeking comments on proposed revisions to Children’s Online Privacy Protection Rule. The FTC’s Rule implements the Children’s Online Privacy Protection Act (COPPA), which provides protection for the...
Comments:
0
08/11/2011
by:
A spokesperson at the Irish Data Protection Commission told PL&B on 7 November that the office commenced a comprehensive audit of Facebook Ireland at the end of October. ‘This will assess Facebook's compliance with the requirements of the Irish...
Comments:
0
10/11/2011
by:
EU Justice Commissioner Viviane Reding confirmed on 7 November that the timetable for publishing proposals on the revision of the EU Data Protection Directive has been delayed, and proposals will be ready by the end of January 2012. Reding and...
Comments:
0
17/11/2011
by:
The United States Federal Trade Commission (FTC) has welcomed the approval of APEC cross-border-privacy rules by APEC (Asia-Pacific Economic Cooperation) members in meeting in Hawaii on 13 November. The APEC privacy system aims at harmonising...
Comments:
0
30/11/2011
by:
According to a 24th November decision by the European Court of Justice (ECJ), Spain’s data protection secondary regulations are not in compliance with the EU Data Protection Directive. The case, which was brought by ASNEF (National Association of...
Comments:
0
08/12/2011
by:
The draft proposal of the EU Commission, leaked to the press at the beginning of December, proposes a General Data Protection Regulation, thus repealing EU Data Protection Directive 95/46, and a Police and Criminal Justice Data Protection Directiv...
Comments:
0
22/12/2011
by:
In response to the audit conducted on Facebook Ireland (FB-I) by Ireland’s Data Protection Commissioner, FB-I has committed to either implement, or to consider positively, specific “best practice” improvements. A key focus of the audit was to...
Comments:
0
03/01/2012
by:
Andrea Klara Soos (Attorney-at-law, Sooslaw, Budapest, Hungary, E-mail: andrea.soos@sooslaw.hu ) writes that Hungary replaced its Labour Code with a new legislation (“NLC”) which will enter into effect from 1 July 2012. The NLC’s purpose is to mak...
Comments:
0
03/01/2012
by:
Andrea Klara Soos (Attorney-at-law, Sooslaw, Budapest, Hungary, E-mail: andrea.soos@sooslaw.hu ) writes that Hungary has adopted a new data protection act with effect from 1 January 2012 (the “Info Act”) and is establishing a new authority for the...
Comments:
0
11/01/2012
by:
The regulations of Mexico’s Federal Law for the Protection of Personal Data entered into force on 22 December 2011. The regulations deal with data subjects’ rights, security and breach notification provisions, cloud computing, consent and notice...
Comments:
0
19/01/2012
by:
The EU Commission has concerns over the independence of Hungary’s data protection authority. The Commission’s view is that the current law which creates a new National Authority for Data Protection, replacing the Data Protection Commissioner...
Comments:
0
25/01/2012
by:
The European Commission proposes more accountability – no general notification duty – but bigger fines for non-compliance in the official proposals published today by the European Commission. The highest fine that was being planned, 5% of annual...
Comments:
0
08/02/2012
by:
The Confederation of European Data Protection Organisations (CEDPO), established in September 2011, welcomes the introduction of Data Protection Officers (DPOs) for EU Member States, as proposed by the European Commission’s draft Data Protection...
Comments:
0
16/02/2012
by:
Malaysia’s Information, Communications and Culture Minister, Datuk Seri Dr Rais Yatim, announced on 9 February that the Personal Data Act 2010 will be enforced from June 2012. According to Malaysia’s national news agency, Bernama, the minister mad...
Comments:
0
17/02/2012
by:
EPIC, the Electronic Privacy Information Center, based in the US, has sued the Federal Trade Commission (FTC) in an attempt to compel the FTC to act prior to 1 March, when Google plans to make changes to its terms of service so that individuals...
Comments:
0
20/02/2012
by:
Spain's Supreme Court, which had submitted a question for a preliminary ruling to the European Court of Justice (ECJ) on the criteria for the processing of personal data without consent, has now declared void Article 10.2.b of the Spain's data...
Comments:
0
24/02/2012
by:
The Obama administration has issued a Consumer Privacy Bill of Rights with the aim of extending privacy protection to commercial sectors that are not subject to existing Federal data privacy laws. The Bill is based on Fair Information Practice...
Comments:
0
28/02/2012
by:
Isabelle Falque-Pierrotin, President of France's Data Protection Authority, the CNIL, on behalf of the EU's Article 29 Data Protection Working Party, says that Google’s new privacy policy does not meet the requirements of the EU Data Protection...
Comments:
0
19/03/2012
by:
The Belgian Data Protection Authority (DPA) approved, mid-March, J.P Morgan’s Binding Corporate Rules (BCR) application for its international transfers. This was made possible by a protocol agreed between the DPA and the Belgian Ministry of Justic...
Comments:
0
21/03/2012
by:
There are common principles at the heart of both systems, says a joint statement issued at a high level EU Conference on ‘Privacy and Protection of Personal Data’, held on 19 March. The statement, issued by EU Commission’s Vice-President Viviane...
Comments:
0
29/03/2012
by:
The EU Data Protection Authorities says that a 24-hour limit for breach notification, as proposed in the EU DP Regulations, could, under certain circumstances, not be feasible. The DPAs propose a 2-stage process where the controller would notify...
Comments:
0
18/04/2012
by:
The Philippines Senate passed on 20 March the Data Privacy Act, which is now waiting for reconciliation between the two Houses before it can be enacted. The Senate Bill covers both private and public sectors, and provides an exemption for the...
Comments:
0
08/05/2012
by:
Speaking at the European Data Protection Commissioners’ Spring Conference in Luxembourg on 3 May, EU Justice Commissioner, Viviane Reding, explained that the large number of delegated acts in the EU proposals for a Data Protection Regulation leave...
Comments:
0
10/05/2012
by:
The Myspace social network has agreed to regular, independent privacy audits for the next 20 years as required by a settlement with the US Federal Trade Commission (FTC). The FTC found that the company’s privacy policy was misleading. Myspace wa...
Comments:
0
12/06/2012
by:
The EU Data Protection Authorities have analysed the exemptions to the requirement for informed consent in the e-Privacy Directive, and conclude that some cookies can be exempted from informed consent under certain conditions, if they are not used...
Comments:
0
19/06/2012
by:
Facebook Inc has agreed to settle a California lawsuit by paying $10 million to charity. Facebook was accused by five Facebook members of violating user rights in terms of them not having full control of their own names, photographs and likenesses...
Comments:
0
21/06/2012
by:
As the EU Data Protection draft Regulation specifically mentions Binding Corporate Rules (BCR) for processors or 'Binding Safe Processor Rules (BSPR)’, the EU Data Protection Authorities have now adopted a working document on this topic. This...
Comments:
0
26/06/2012
by:
The Council Presidency’s note of 22 June to the Working Party on Data Protection and Exchange of Information reveals that almost all Member States’ delegations would like to see fewer delegated acts in the proposals. Also, several Member States sa...
Comments:
0
06/07/2012
by:
Just a month after the EU Article 29 Data Protection Working Party adopted its Working Document on Processor Binding Corporate Rules, First Data announced at the Privacy Laws & Business 25th Annual International Conference this week that it has...
Comments:
0
14/08/2012
by:
The US Federal Trade Commission (FTC) has imposed its biggest ever fine on Google. Users of Apple’s Safari browser who had a "do not track" privacy setting selected were still being monitored, according to the FTC. According to the FTC’s complaint...
Comments:
0
15/08/2012
by:
Following a public comment period, the US Federal Trade Commission (FTC) has accepted as final a settlement with Facebook which says the company shall not misrepresent in any manner the extent to which it maintains privacy or security for personal...
Comments:
0
23/08/2012
by:
An independent review into to the privacy breach by the Accident Compensation Corporation (ACC) says that while the breach was a result of a genuine error, it happened due to systematic weaknesses within ACC’s culture, systems and processes. A...
Comments:
0
05/09/2012
by:
The European Commission issued its decision on 21 August on Uruguay’s adequacy for transfers of personal data from the European Union (Official Journal L 227, 23/08/2012). The Commission says that the legal standards for the protection of personal...
Comments:
0
21/09/2012
by:
Ireland's Data Protection Commissioner, Billy Hawkes, says that he is satisfied with the great majority of steps that Facebook Ireland (FB-I) has taken to follow his best practice recommendations. The DPA’s report on its re-audit of Facebook,...
Comments:
0
28/09/2012
by:
The EU’s Data Protection Working Party has analysed the extent to which the Monaco DP regime fulfils the requirements for data transfers under the EU Data Protection Directive, and says that Monaco's DP law provides an adequate level of protection...
Comments:
0
11/10/2012
by:
The EU Art.29 Data Protection Working Party says that it is necessary to adopt a broad definition of personal data in the proposed EU DP Regulation framework. The group suggests that identification numbers, location data, online identifiers or oth...
Comments:
0
16/10/2012
by:
Singapore's parliament passed a personal data protection bill on 15 October, reports Chinadaily.com.cn. The bill, which applies to the private sector, is set to become law in January 2013, with enforcement to begin 18 months later. Singapore will...
Comments:
0
16/10/2012
by:
Google’s controversial changes introduced in March to its European privacy policy have again been met with resistance by the EU Data Protection Authorities. The DPAs says that Google's privacy policy provides incomplete information and makes...
Comments:
0
30/10/2012
by:
The Netherlands’ Independent Post and Telecommunications Authority (OPTA) has issued a decision according to which an opt-in consent for third-party commercial emails is only valid if the third parties are specified, as well as the type of data th...
Comments:
0
07/11/2012
by:
Spain’s national Data Protection Authority, the Agencia Española de Protección de Datos (AEPD), announced on 25th September that it imposed fines of 19,597,906 Euros in 2011. In the most recent years for which data is available, Spain’s fines...
Comments:
0
20/11/2012
by:
A US federal judge in San Francisco on 16th November approved the $22.5 million civil penalty imposed on Google, reports Associated Press. This penalty was announced in August as a settlement between the Federal Trade Commission (FTC) and Google...
Comments:
0
30/11/2012
by:
The UK parliamentary enquiry into culture, practices and ethics of the press, the so called Leveson enquiry, recommends the creation of an independent self-regulatory body, governed by an independent board. Importantly, the Report calls for jail...
Comments:
0
03/12/2012
by:
Malaysia's Personal Data Protection Act 2010 (PDPA) will finally come into force on 1 January 2013, according to reported statements by the Minister of Information, Communications and Culture of Malaysia, Datuk Seri Rais Yatim. From that date, it...
Comments:
0
06/12/2012
by:
The EU Data Protection draft Regulation proposes a one-stop-shop so that companies running a business in more than one EU Member State may, in future, work to one's country's interpretation of the Regulation. The country would be where the company...
Comments:
0
20/12/2012
by:
The European Commission announced on 19th December that it had on that day recognised New Zealand’s Privacy Act as “adequate”. This decision follows more than 10 years of studies, the first of which was conducted by Privacy Laws & Business. These...
Comments:
0
31/12/2012
by:
Data processors will be able to make use of Binding Corporate Rules (BCRs) for processors from 1 January 2013 in order to facilitate international data transfers. While the EU Data Protection Authorities’ Article 29 Data Protection Working Party...
Comments:
0
Please login or register to see this full article.
03/01/2013
by:
Ireland's Data Protection Commissioner, Billy Hawkes, has written to some 80 websites, asking them to provide information on the steps that they have taken to meet the so called "cookie" obligations. The list of companies includes many household...
Comments:
0
Please login or register to see this full article.
18/01/2013
by:
An informal European Union justice ministers’ meeting taking place today in Dublin is discussing areas where the Irish presidency to the Council of the European Union sees scope for changes. The presidency says that the following issues should be...
Comments:
0
Please login or register to see this full article.
23/01/2013
by:
China’s Ministry of Industry and Information Technology (MIIT) in Beijing announced on 21st January that a non-binding guideline urges organisations collecting personal data to obtain permission before collecting and using an individual’s personal...
Comments:
0
Please login or register to see this full article.
31/01/2013
by:
WhatsApp is in breach of data protection law, Canadian and Dutch data protection authorities have revealed. The Office of the Privacy Commissioner of Canada (OPC) and the Dutch Data Protection Authority say that the app violates their privacy laws...
Comments:
0
Please login or register to see this full article.
05/02/2013
by:
The US Federal Trade Commission (FTC) has imposed an $800,000 fine on Path, a social networking service. Path was allegedly collecting children's personal information without their parents’ consent, which is a breach of the Children’s Online Priva...
Comments:
0
Please login or register to see this full article.
10/02/2013
by:
The EU Commission issued on 7 February a draft Directive for cyber security. The draft, entitled Directive on Network and Information Security, would oblige market operators and public administrations to report incidents that have a significant...
Comments:
0
Please login or register to see this full article.
21/02/2013
by:
The EU Data Protection Authorities (DPAs) are to decide in their meeting on 26 February about starting joint enforcement action against Google for the faults in the company’s new Privacy Policy. The DP Commissioners aim to establish a working...
Comments:
0
Please login or register to see this full article.
22/02/2013
by:
The Dutch Data Protection Authority (DPA) published, on 19 February, new guidelines on the security of data processing. The new guidelines contain instructions on how to implement the security principles in practice, reports law firm Bird & Bird....
Comments:
0
Please login or register to see this full article.
27/02/2013
by:
Ireland's Data Protection Commissioner, Billy Hawkes, has announced that he will audit major social media companies. Ireland has a significant responsibility for the rest of Europe, as many of these companies have located their European headquarte...
Comments:
0
Please login or register to see this full article.
01/03/2013
by:
The EU draft DP Regulations should take a more risk-based approach, the EU Data Protection Authorities (DPAs) say. The EU Art. 29 DP Working Party considers that some of the provisions in the proposed Regulation may pose a burden on some...
Comments:
0
Please login or register to see this full article.
08/03/2013
by:
Evernote, a web-based app to organise and store business and personal data, revealed on 5 February that hackers had gained access to the personal information of more than 50 million of its users. The information lost included encrypted password...
Comments:
0
Please login or register to see this full article.
14/03/2013
by:
The EU Commissioner for Justice, Fundamental Rights and Citizenship, Viviane Reding, says that while explicit consent is one of the cornerstones of the proposal for a new EU DP framework, it is nothing new. “The current Directive states since 1995...
Comments:
0
Please login or register to see this full article.
19/03/2013
by:
The EU Data Protection Authorities (DPAs) say that in most cases, data controllers’ will have to rely on individuals’ consent as a legal basis for the processing of their personal data, and that consent needs to be obtained before the app starts t...
Comments:
0
Please login or register to see this full article.
22/03/2013
by:
France’s Data Protection Authority, the CNIL, announced on 19 March that it aims to conduct some 400 inspections in 2013, reports law firm, Bird & Bird, Paris. A third of them will result from complaints received. CCTV will feature heavily as a...
Comments:
0
Please login or register to see this full article.
05/04/2013
by:
The EU Art. 29 Data Protection Working Party announced at the end of March that there had been discussions in Jakarta, Indonesia, at the end of January and the beginning of March to find a common approach between the EU’s Binding Corporate Rules a...
Comments:
0
Please login or register to see this full article.
12/04/2013
by:
The EU Member States' Data Protection Commissioners say that individuals’ consent is almost always needed for using personal data for Big Data operations, for example, detecting trends or individuals’ behaviour and attitudes. Consent should be fre...
Comments:
0
Please login or register to see this full article.
17/04/2013
by:
On 12 April 2013 the Council of Europe announced that Uruguay's accession to Convention 108 (and to its Additional Protocol) was complete. It will enter into force regarding Uruguay on 1 August 2013, making it the 45th state to become a party, and...
Comments:
0
Please login or register to see this full article.
22/04/2013
by:
The German city state of Hamburg has today issued a fine of 145,000 euros on Google for its data collection during Street View operations. The DPA says that the company collected personal data during 2008-2010 through unencrypted Wifi connections....
Comments:
0
Please login or register to see this full article.
25/04/2013
by:
In the hearing organised by US Senate Commerce Committee yesterday, its Chairman, Senator John D. Rockefeller, said that Do-Not-Track needs to become a reality, either voluntarily or through legislation. “It is now April 2013, and consumers are...
Comments:
0
Please login or register to see this full article.
09/05/2013
by:
Data Protection Authorities from around the globe are this week organising an “Internet Privacy Sweep” to examine the transparency of companies’ websites. The initiative will help enforcement authorities to identify sites or apps which may warran...
Comments:
0
Please login or register to see this full article.
10/05/2013
by:
The lead rapporteur for the European Parliament’s Committee on Civil Liberties, Justice and Home Affairs (LIBE) announced at a LIBE meeting on 6 May that the committee’s vote on the draft DP Regulation will be delayed due to around 3,000 amendment...
Comments:
0
Please login or register to see this full article.
14/05/2013
by:
The office of the Russian President, Vladimir Putin, has announced that the president has signed the Federal Law on Amendments to Certain Legislative Acts of the Russian Federation following the Adoption of the Federal Law On Ratification of the...
Comments:
0