On May 2, 2021, the Norwegian data protection authority, Datatilsynet, notified a U.S. company of its intention to issue a fine of 25 million Norwegian Krone (approximately 2.5 million Euros). The preliminary fine was issued for failure to comply with the General Data Protection Regulation’s accountability, lawfulness and transparency requirements, primarily due to the company’s tracking of website visitors.
Continue Reading Norwegian DPA Issues 2.5M EUR Preliminary Fine for U.S. Company Utilizing Web-Tracking IDs

The National Information Security Standardization Technical Committee of China has published a draft standard on Security Requirements of Facial Recognition Data. The Standard, which is non-mandatory, details requirements for collecting, processing, sharing and transferring data used for facial recognition.
Continue Reading China Publishes Draft Security Standard on Facial Recognition

As reported on the Hunton Retail Law Blog, the U.S. Court of Appeals for the Second Circuit has affirmed the dismissal on Article III standing grounds of a data breach class action predicated on an alleged increased risk of identity theft. Notably, the district court that dismissed the action raised the issue of standing sua sponte in advance of a scheduled class settlement fairness hearing.
Continue Reading Second Circuit Affirms Dismissal of Data Breach Class Action on Article III Standing Grounds

The Centre for Information Policy Leadership at Hunton Andrews Kurth has submitted its response to the European Data Protection Board consultation on draft guidelines on virtual voice assistants. The Guidelines were adopted on March 12, 2021 for public consultation.
Continue Reading CIPL Submits Response to the EDPB Guidelines on Virtual Voice Assistants

Building upon its April 2020 business guidance on Artificial Intelligence and Algorithms, the FTC has published new guidance focused on how businesses can promote truth, fairness and equity in their use of AI. In the guidance, the FTC recognizes the potential benefits of AI, but stresses the need to harness these benefits without inadvertently introducing bias or other unfair outcomes.
Continue Reading FTC Reiterates AI Best Practices

The European Commission has published its Proposal for a Regulation on a European approach for Artificial Intelligence. The Proposal follows a public consultation on the Commission’s White Paper on AI published in February 2020. The Commission simultaneously proposed a new Machinery Regulation, designed to ensure the safe integration of AI systems into machinery.
Continue Reading European Commission Publishes Proposal for Artificial Intelligence Act

The Biden administration announced it intends to nominate Chris Inglis, a former Deputy Director of the National Security Agency, to be the first U.S. National Cyber Director, subject to Senate confirmation. The newly-established position, which will serve as the President’s principal cybersecurity policy and strategy advisor, and the Office of the National Cyber Director were created under the National Defense Authorization Act for Fiscal Year 2021, which became law on January 1, 2021.
Continue Reading White House to Nominate First National Cyber Director

On April 9, 2021, the First-Tier Tribunal of the General Regulatory Chamber stayed proceedings in Ticketmaster UK Limited’s (“Ticketmaster’s”) appeal against a fine issued by the UK Information Commissioner’s Office (“ICO”) until 28 days after a judgment in civil litigation brought by 795 customers against Ticketmaster. The group action, which relates to the breach for which Ticketmaster was fined by the ICO, is currently before the High Court in England. As a result of the stay in proceedings, the appeal likely will not be heard before the Tribunal until mid to late 2023.

Continue Reading Ticketmaster Appeal of ICO Fine Stayed by UK Tribunal Until 2023

Hunton Privacy Chair Lisa Sotto and MLaw Chief Global Digital Risk Correspondent Mike Swift led a webinar on Everything You Need to Know About the California Privacy Rights Act. This post includes a link to watch the full program.
Continue Reading Lisa Sotto Leads LexisNexis’ Emerging Issues Webinar on Everything You Need to Know About the CPRA