On September 21, 2022, Denmark’s data protection authority Datatilsynet announced its guidance that Google Analytics, Google’s audience measurement tool, is not compliant with the EU General Data Protection Regulation.
Continue Reading Danish DPA Declares Use of Google Analytics Unlawful Without Supplementary Measures
Personal Data
Indonesia Enacts its First Data Protection Act
Posted on
On September 20, 2022, Indonesia’s parliament ratified the Personal Data Protection Act. …
Continue Reading Indonesia Enacts its First Data Protection Act
California Enacts the California Age-Appropriate Design Code Act
Posted on
On September 15, 2022, California Governor Gavin Newsom signed into law the California Age-Appropriate Design Code Act. The Act, which takes effect July 1, 2024, places new legal obligations on companies with respect to online products and services that are likely to be accessed by children under the age of 18.
Continue Reading California Enacts the California Age-Appropriate Design Code Act
Irish Data Protection Commissioner Fines Instagram for Children’s Privacy Violations
Posted on
On September 5, 2022, the Irish Data Protection Commissioner imposed a €405,000,000 fine on Instagram for violations of the EU General Data Protection Regulation’s rules on the processing of children’s personal data. …
Continue Reading Irish Data Protection Commissioner Fines Instagram for Children’s Privacy Violations
New York Becomes First State to Require CLE in Cybersecurity, Privacy and Data Protection
Posted on
Posted in Cybersecurity, Information Security
New York recently became the first state to require attorneys to complete at least one credit of cybersecurity, privacy and data protection training as part of their continuing legal education requirements. The new requirement will take effect July 1, 2023.
Continue Reading New York Becomes First State to Require CLE in Cybersecurity, Privacy and Data Protection
Judge Approves $92 Million TikTok Settlement
Posted on
On July 28, 2022, a federal judge approved TikTok’s $92 million class action settlement of various privacy claims made under state and federal law, which will resolve litigation that began in 2019 and involved claims that TikTok violated the Illinois Biometric Information Privacy Act and the federal Video Privacy Protection Act.
Continue Reading Judge Approves $92 Million TikTok Settlement
Russian Federation Passes Data Protection and Information Governance Reforms
Posted on
In July 2022, Maria Ostashenko from ALRUD Law Firm reports that the Russian Parliament passed, and the President of the Russian Federation signed into law, major reforms in data protection and information governance. The reforms include:
- Significant changes to Federal Law No. 152-FZ on Personal Data, including the scope of its application, new rules for
T-Mobile to Pay $500 Million to Settle Claims Related to 2021 Breach
Posted on
On July 22, 2022, T-Mobile entered into an agreement to settle a class action lawsuit stemming from its 2021 data breach. …
Continue Reading T-Mobile to Pay $500 Million to Settle Claims Related to 2021 Breach
Irish Data Protection Commission Moves to Block Meta Transfers
Posted on
Posted in European Union, International
Only July 7, 2022, the Irish Data Protection Commission sent a draft decision to other European Union data protection authorities, proposing to block Meta’s transfers of personal data from the EU to the United States. …
Continue Reading Irish Data Protection Commission Moves to Block Meta Transfers
Wegmans Agrees to Pay $400,000 Penalty After Cloud Security Lapse
Posted on
On June 30, 2022, the New York Office of the Attorney General announced a $400,000 agreement with Wegmans Food Markets, Inc. in connection with a cloud storage security issue. …
Continue Reading Wegmans Agrees to Pay $400,000 Penalty After Cloud Security Lapse