As reported by Russian law firm Alrud, on November 21, 2019, the Russian State Duma passed a bill that would increase the minimum fines that may be imposed for violations of Russia’s data protection laws.
Continue Reading
Personal Data
EDPB Publishes Guidelines on Data Protection by Design and by Default
Posted on
Posted in European Union, International
On November 13, 2019, the European Data Protection Board published its draft guidelines 4/2019 on the obligation of Data Protection by Design and by Default set out under Article 25 of the EU General Data Protection Regulation. …
Continue Reading
Senate Democrats Unveil Privacy and Data Protection Framework
Posted on
Posted in Information Security, U.S. Federal Law
On November 18, 2019, the ranking members from four Senate Committees¬ (Senator Maria Cantwell (WA) from Commerce, Senator Dianne Feinstein (CA) from Judiciary, Senator Sherrod Brown (OH), and Senator Patty Murray (WA) from Health, Education, Labor and Pensions) released a set of “core principles” for federal privacy legislation. …
Continue Reading
Austrian DPA Fines Österreichische Post AG 18 Million Euros
Posted on
The Austrian Data Protection Authority imposed an 18 million EUR fine on the Austrian Postal Service.…
Continue Reading
Representatives Eshoo and Lofgren Introduce Online Privacy Act
Posted on
Posted in Online Privacy, U.S. Federal Law
On November 5, 2019, Representatives Anna G. Eshoo (CA) and Zoe Lofgren (CA) introduced the Online Privacy Act, which is sweeping legislation that would create federal privacy rights for individuals, require companies to adhere to data minimization and establish a federal Digital Privacy Agency.…
Continue Reading
CJEU Rules “Right to be Forgotten” on Google Limited to the EU in Landmark Case
Posted on
On September 24, 2019, the Court of Justice of the European Union released its judgments in cases C-507/17, Google v. CNIL and C-136/17, G.C. and Others v. CNIL regarding (1) the territorial scope of the right to be forgotten, and (2) the conditions in which individuals may exercise the right to be forgotten in relation to links to web pages containing sensitive data.…
Continue Reading
Dutch DPA Releases Complaints Report for First Half of 2019
Posted on
Posted in European Union, International
On September 9, 2019, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens, the “Dutch DPA”) published a report on the privacy complaints it received between January 2019 and June 2019 (the “Report”).
…
Continue Reading
Majority of CCPA Amendment Bills Passed by California Legislature
Posted on
California marked the end of the 2019 legislative session this past Friday, September 13, by passing five out of six pending bills to amend the California Consumer Privacy Act of 2018. This blog entry provides a summary on the bills.…
Continue Reading
Cayman Islands Data Protection Law Goes into Force This Month
Posted on
Posted in International
The Cayman Islands Data Protection Law, 2017, which was published in June 2017, will go into force on September 30, 2019. The DPL includes requirements for the protection of personal data and is centered upon eight data protection principles.…
Continue Reading
Swedish Data Protection Authority Issues First Fine Under GDPR
Posted on
On August 21, 2019, the Swedish Data Protection Authority imposed its first fine since the EU General Data Protection Regulation came into effect, fining a school 200,000 Swedish Kroner for creating a facial recognition program in violation of the GDPR.…
Continue Reading