fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " regulation "

ICO’s draft Age Appropriate Design Code could seriously impact child data processing

On 15 April 2019, the ICO opened a public consultation on a draft code of practice titled Age Appropriate Design. The Code will remain open for public consultation until 31 May 2019.

The consultation document is described as a “code of practice for online services likely to be accessed by children.” However, its potential impact is in fact wider, and is perhaps better described as applying to all online services that are not demonstrably unlikely to be accessed by children, which it controversially defines as individuals under 18.

Full article: ICO’s draft Age Appropriate Design Code could seriously impact processing of under 18’s personal data

An overview of the proposed US Privacy Bill of Rights

On April 12, Senator Edward J. Markey (D-MA) sponsored the Privacy Bill of Rights Act, one of the most comprehensive pieces of data privacy legislation introduced in the U.S.

The Act provides certain protections and rights for individuals. The guiding principles of the Act are heavily influenced by the General Data Protection Regulation and California Consumer Privacy Act.

Full article: An overview of the proposed Privacy Bill of Rights (Part One)

GDPR Drives Changes, but Privacy by Design Proves Elusive

One year later, the EU mandate’s biggest impact has been to focus more attention on data protection and privacy.

Many organizations have set up or refreshed their legal framework for data privacy, improved defenses against data breaches, and begun managing user consent more rigorously. But significant gaps toward compliance are generally still to be addressed.

Full article: GDPR Drives Changes, but Privacy by Design Proves …

Bank Secrecy Rules Get a Rethink After Danske Laundering Shock

Danske Bank A/S is turning into a case study for European regulators, legislators and bankers to rethink fundamental assumptions about how the finance industry should operate.

First up is the principle that bank clients should be protected by secrecy laws. The sheer scale of the Danske money-laundering scandal means those rules may now get a review. The financial regulator in Denmark, the bank’s home, has started lobbying counterparts elsewhere for a broader discussion.

Source: Bank Secrecy Rules Get a Rethink After Danske Laundering Shock – Bloomberg

What GDPR’s first year says about data privacy regulation

Almost a year ago, the European Union’s General Data Protection Regulation (GDPR) went into effect.

In that year, the United States has been engaging in its own debate about what, if anything, should be done to bolster our data privacy protections. What can the first year of the GDPR teach us about what such a regime may do in America?

Read article: What GDPR’s first year says about data privacy regulation | TheHill

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan.

The entering into effect of multiple state laws in this area may present challenges for insurance providers operating in states where such cybersecurity requirements are provided for.

Source: Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

The Five Myths of GDPR

May 2019 marks the first anniversary of the General Data Protection Regulation (GDPR), and early numbers make clear that its implementation has been a success as a breach notification law. As such, GDPR has affected multiple aspects of a business.

There are several myths around who manages data inside an organisation which have been challenged as a result of GDPR regulations. From the shift from an IT-centric to a business process owner model, to educating internal teams and reviewing tools, here are the top five myths around management of data that GDPR effectively busted.

Read article: The Five Myths of GDPR

GDPR has frustrated users and regulators

GDPR is turning one year old this month. It’s been a rocky ride.

The organization that runs the landmark privacy legislation’s implementation is underfunded. And the law itself seems to be better at annoying consumers, parents and anyone who uses the internet than holding tech giants accountable.

Full article: GDPR has frustrated users and regulators

Global recall: How the GDPR impacts product recalls

 

Not all potential consequences of the GDPR (and similarly situated laws) are clearly evident quite yet, but companies nonetheless will encounter challenges in their dealings with consumers in the global marketplace, pursuant to the GDPR and other such regulations.

One of the hidden consequences this new proliferation of consumer data privacy measures throughout the world will affect product liability matters, specifically concerning product recalls.

Source: Global recall: How the GDPR impacts product recalls

The State of Play in European Data Protection Law

On May 1, 2019, WSGR convened a panel of regulators and experts to discuss recent developments in European data protection law. The panel, moderated by Cédric Burton, featured Bruno Gencarelli, head of the International Data Flows and Protection Unit of the European Commission, Isabelle Vereecken, head of the Secretariat of the European Data Protection Board (EDPB), and Dr.

Read the key takeaways from the discussion.

1 2 3 122
>