On February 21, 2020, the Presidency of the Council of the European Union published a revised part of the proposed Regulation concerning the Respect for Private Life and the Protection of Personal Data in Electronic Communications and Repealing Directive.
Continue Reading EU Council Presidency Releases Proposed Amendments to Draft ePrivacy Regulation

On February 1, 2020, the Italian Data Protection Authority announced that it had levied a fine of 27.8 Million Euros on TIM S.p.A., a telecommunications company, for several unlawful marketing data processing practices.
Continue Reading Italian Garante Fines Telecom Company 27.8 Million Euros for Unlawful Marketing Practices

Recently, Iowa and Nebraska enacted information security laws applicable to personal information. Iowa’s law applies to operators of online services directed at and used by students in kindergarten through grade 12, whereas Nebraska’s law applies to all businesses doing business in Nebraska who own or license Nebraska residents’ personal information.
Continue Reading Iowa and Nebraska Enact Information Security Laws

On July 27, 2017, the French Data Protection Authority imposed a fine of 40,000 euros on a French affiliate of the rental car company, The Hertz Corporation, for failure to ensure the security of website users’ personal data.
Continue Reading CNIL Fines Rental Car Company for Data Security Failure Attributable to Third-Party Service Provider