The UK Information Commissioner’s Office recently published a package of detailed guidance and checklists for direct marketing activities.
Continue Reading UK ICO Publishes New Direct Marketing Guidance and Checklists
Personal Data
Public Access to Information on Company Beneficial Ownership is a Violation of Privacy According to the CJEU
Posted on
On November 22, 2022, the Court of Justice of the European Union determined in a preliminary ruling that the general public’s access to information on beneficial ownership constitutes a serious interference with the fundamental rights to respect for private life and to the protection of personal data, enshrined in Articles 7 and 8 of the Charter of Fundamental Human Rights. …
Continue Reading Public Access to Information on Company Beneficial Ownership is a Violation of Privacy According to the CJEU
UK Finalizes South Korea Adequacy Decision
Posted on
Posted in European Union, International
On November 23, 2022, the UK government’s Department for Digital, Culture, Media & Sport announced that it had completed its assessment of South Korea’s personal data legislation, and concluded that sufficiently strong privacy laws are in place to protect UK personal data transferred to South Korea while upholding the rights and protections of UK citizens.
Continue Reading UK Finalizes South Korea Adequacy Decision
India Releases Fourth Draft of Data Protection Bill
Posted on
Posted in International
Kochhar & Co. reports that, on November 18, 2022, the Government of India released the long-awaited fourth draft of India’s proposed privacy law, now renamed the Digital Personal Data Protection Bill. …
Continue Reading India Releases Fourth Draft of Data Protection Bill
Indonesia Ratifies Country’s First Comprehensive Legal Framework for Personal Data Protection
Posted on
Posted in Information Security, International
SHIFT Counsellors at Law reports from Indonesia that The People’s Representative Council of the Republic of Indonesia has ratified Indonesia’s draft law on personal data protection. …
Continue Reading Indonesia Ratifies Country’s First Comprehensive Legal Framework for Personal Data Protection
The Information Commissioner’s Office Issues UK Department for Education with Formal Reprimand
Posted on
On November 2, 2022, the ICO issued the UK Department for Education with a formal reprimand following an investigation into the sharing of personal data stored on the Learning Records Service, a database which provides a record of pupils’ qualifications that the DfE has overall responsibility for. …
Continue Reading The Information Commissioner’s Office Issues UK Department for Education with Formal Reprimand
FTC Takes Action Against Chegg for Alleged Security Failures that Exposed Data of Employees and 40 Million Consumers
Posted on
On October 31, 2022, the Federal Trade Commission announced a proposed settlement with education technology provider Chegg in connection with the company’s alleged poor cybersecurity practices. …
Continue Reading FTC Takes Action Against Chegg for Alleged Security Failures that Exposed Data of Employees and 40 Million Consumers
Colorado AG Publishes Draft Colorado Privacy Act Rules
Posted on
Posted in Enforcement, U.S. State Law
Last month, the Colorado Attorney General’s Office submitted an initial draft of the Colorado Privacy Act Rules, which will implement and enforce the Colorado Privacy Act.
Continue Reading Colorado AG Publishes Draft Colorado Privacy Act Rules
NYC DCWP Proposes Rules to Implement New Law Governing Automated Employment Decision Tools
Posted on
On October 24, 2022, the New York City Department of Consumer and Worker Protection proposed rules to implement its new law regarding automated employment decision tools. …
Continue Reading NYC DCWP Proposes Rules to Implement New Law Governing Automated Employment Decision Tools
FTC Takes Action Against Drizly and its CEO for Alleged Security Failures that Exposed Data of 2.5 Million Consumers
Posted on
On October 24, 2022, the Federal Trade Commission announced a proposed consent order with Drizly, an online alcohol ordering and delivery service, and the company’s CEO, for the company’s alleged failure to maintain appropriate security safeguards that led to a data breach that affected 2.5 million consumers’ personal information. …
Continue Reading FTC Takes Action Against Drizly and its CEO for Alleged Security Failures that Exposed Data of 2.5 Million Consumers