Tag Archives: Personally Identifiable Information

Australian Data Breach Notification Bill Re-Introduced

On March 20, 2014, a breach notification bill was re-introduced in the Australian Senate after having lapsed at the end of the previous Parliament. If passed, the bill would impose a mandatory breach notification requirement for data breaches that pose a "real risk of serious harm" to affected individuals. … Continue Reading

FTC Acts on Several Industry COPPA Proposals

The Federal Trade Commission recently acted on three industry proposals in accordance with the new Children's Online Privacy Protection Rule that came into effect July 1, 2013. Specifically, the FTC determined that it was unnecessary to rule on a proposed parental consent mechanism, approved a proposed "safe harbor" program and is seeking public comment on a separate proposed "safe harbor" program.… Continue Reading

Senators Renew Efforts to Pass Data Privacy Legislation

On January 8, 2014, Senator Patrick Leahy reintroduced comprehensive information security legislation that would establish a national standard for data breach notification and require businesses to safeguard customers' sensitive personal information from cyber threats. The bill also would establish criminal penalties for individuals who intentionally or willfully conceal security breaches, and would authorize the FTC to write and enforce rules regarding the protection of personal information and breach notification. … Continue Reading

FTC Approves COPPA Parental Consent Mechanism Proposal

On December 23, 2013, the Federal Trade Commission announced that it had approved Imperium, LLC's proposed mechanism for obtaining verifiable parental consent to collect personal information from children online in accordance with the Children's Online Privacy Protection Rule that came into effect July 1, 2013. … Continue Reading

China’s Supreme People’s Court Releases Provisions on the Online Issuance of Judgment Documents by People’s Courts

On November 21, 2013, the Supreme People's Court of China passed the Provisions on the Online Issuance of Judgment Documents by People's Courts, which will take effect on January 1, 2014. The Provisions generally focus on improved implementation of the principles of standardizing the online issuance of judgment documents, promoting judicial justice and enhancing the public credibility of the judiciary.… Continue Reading

Supreme Court of Canada Declares Alberta PIPA Invalid

On November 15, 2013, the Supreme Court of Canada declared the Alberta Personal Information Protection Act invalid because the legislation interfered with the right to freedom of expression in the labor context under Section 2(b) of the Canadian Charter of Rights and Freedoms.… Continue Reading

FTC Denies COPPA Parental Consent Mechanism Proposal

On November 13, 2013, the Federal Trade Commission announced that it denied a proposal submitted in August by AssertID, Inc. for a mechanism to obtain verifiable parental consent in accordance with the new Children's Online Privacy Protection Rule.… Continue Reading

State AGs Reach Settlement with Google on Safari Tracking

On November 13, 2013, Google entered into a $17 million settlement agreement with the attorneys general from 37 states and the District of Columbia related to allegations that the company bypassed users’ cookie-blocking settings on Apple’s Safari browser in 2011 and 2012. The settlement requires Google to refrain from bypassing cookie controls in the future … Continue Reading

Kazakhstan Enacts Data Privacy Law

Kazakhstan's new data privacy law, which was passed on May 21, 2013, is scheduled to come into effect on November 26, 2013. Kazakhstan joins the Kyrgyz Republic, becoming the second Central Asian country to enact a data privacy law.… Continue Reading

Senate Commerce Committee Broadens Data Broker Investigation

On September 25, 2013, Senator Jay Rockefeller expanded his investigation of the data broker industry by sending letters to twelve popular health and personal finance websites requesting information about their data collection and sharing practices. Responses are due by October 11, 2013.… Continue Reading

Chinese State Council Releases Opinion on Personal Data Protection

On August 8, 2013, the State Council of the People's Republic of China released Opinions containing high-level guidelines to encourage development of the information sector. The State Council's interest in this issue provides further evidence of the Chinese government's growing recognition of the importance of data protection.… Continue Reading

South Africa Passes Comprehensive Personal Data Protection Legislation

On August 22, 2013, the South African Parliament passed the Protection of Personal Information Bill, South Africa's first comprehensive data protection legislation. Among other requirements, the law includes provisions regarding notice and consent for data processing, breach notification requirements and restrictions on cross-border data transfers.… Continue Reading

Court Approves 20 Million Dollar Facebook Settlement

On August 26, 2013, the U.S. District Court for the Northern District of California approved a settlement with Facebook related to the company’s alleged misappropriation of certain Facebook members’ personal information in connection with its Sponsored Stories program.… Continue Reading

New EU Breach Regulation in Force

On August 24, 2013, a new breach notification regulation takes effect across the EU. The new regulation is intended to foster a consistent, pan-European approach to breach notification by Internet service providers, telecommunications providers and other public electronic communications service providers.… Continue Reading