fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " regulation "

New US ransomware bill passed

The US Senate has passed a bill that is aimed to protect public institutions like schools and law enforcement, from ransomware.

The DHS Cyber Hunt and Incident Response Teams Act would authorise the Department of Homeland Security (DHS) to create teams to help both private and public entities defend against attacks.

Additionally the cyber hunt and incident response teams, will provide support and technical advice, as well as provide incident response assistance.

Source: #Privacy: New US ransomware bill passed

Ecuador Is Latest Country to Consider GDPR-like Privacy Law

Ecuador is considering a GDPR – like privacy law. A massive data breach in Ecuador has sparked a new push to pass data protection legislation that would mirror the European Union’s privacy regime.

The National Assembly is debating a bill that allows citizens to access, correct, eliminate and oppose the use of their personal data and sets up a new data protection authority to enforce the law and sanction bad actors.  President Lenin Moreno sent the bill for debate shortly after the personal data of 20 million Ecuadorians was discovered on a server in Miami earlier this month.

Source: Ecuador Is Latest Country to Consider GDPR-like Privacy Law

Germany approves “numerous adaptations to German data protection regulations”

The Federal Council (‘Bundesrat’) announced, on 20 September 2019, that it had approved several amendments to the draft law on the adaptation of data protection legislation in relation to the General Data Protection Regulation (GDPR) and the Data Protection Directive with Respect to Law Enforcement (‘the Law Enforcement Directive’).

The Amendments outline, among other things, that the obligation to appoint a data protection officer (DPO) will apply to companies with at least 20 employees, and that employees’ consent to data processing will have to be provided in writing or electronically. The Draft Law will now pass to the President of the Federal Government for signing, and will come into force the day after its promulgation.

Source: Germany: Bundesrat approves “numerous adaptations to German data protection regulations”

EU Council Presidency Published Amended Proposal for Draft ePrivacy Regulation

On September 18, 2019, the Presidency of the European Council published its proposed amendments to the Proposal for a Regulation Concerning the Respect for Private Life and the Protection of Personal Data in Electronic Communications (ePrivacy Regulation).

The Presidency proposed numerous amendments to the draft text, including amendments to the provisions on the processing of electronic communications metadata.

Source: EU Council Presidency Published Amended Proposal for Draft ePrivacy Regulation

California Legislature Passes CCPA Amendments and Privacy Bills

Last week, after months of negotiation and speculation, the California legislature passed bills amending the California Consumer Privacy Act (“CCPA”).

This marked the last round of CCPA amendments before the legislature adjourned for the year—and before the CCPA takes effect on January 1, 2020. California Governor Gavin Newsom has until October 13 to sign the bills into law. Separately, the Attorney General’s office is expected to release a draft of proposed CCPA regulations for public input later this Fall.

Source: California Legislature Passes CCPA Amendments and Privacy Bills

California lawmakers passes ban on facial recognition tech in police body cams

The three-year moratorium prohibits state and local law enforcement from using facial recognition technology.

The bill, AB215, also referred to as the Body Camera Accountability Act got voted by The State Assembly 42-18, and will now head to Governor Gavin Newsom who will decide on signing the bill to law. If he signs, it will go into effect January, 2020.

Source: #privacy: California lawmakers passes ban on facial recognition tech in police body cams

10 reasons why the GDPR is the opposite of a ‘notice and consent’ type of law

A ‘notice and consent’ privacy law puts the entire burden of privacy protection on the person and then it doesn’t really give them any choice. The GDPR does the opposite of this.

Here are 10 reasons why it is so: 10 reasons why the GDPR is the opposite of a ‘notice and consent’ type of law

The role of the UK representative post-Brexit

If the United Kingdom leaves the European Union without a deal Nov. 1, it will automatically cease to be a member of the EU. U.K.-based companies will no longer be regulated under the EU General Data Protection Regulation.

The two most significant effects of this are that data transfers between the U.K. and the EU will be affected, and companies may need to appoint an extra EU representative.

Full article: The role of the UK representative post-Brexit

Tech chiefs ask US Congress to pass consumer privacy law

Bosses from 51 firms in total – including Salesforce, IBM and Amazon – spoke at a business roundtable recently, where they signed a letter to US congressional leaders urging them to put together “a comprehensive consumer data privacy law”.

Representing a wide range of industries, the chiefs said that federal law is needed to “ensure strong consistent protections for American consumers” and to allow “American companies to continue to lead a globally competitive market.”

Source: #privacy: Tech chiefs ask Congress to pass consumer privacy law

Top European Court to Review National Data Retention Laws

The Court of Justice for the European Union will hear challenges to the data retention laws of the UK, Belgium, and France.

The Court previously invalidated European and national data retention laws that required companies to retain communications data for law enforcement purposes. The new challenges, brought by civil society organizations, contend that European national laws fail to comply with the earlier rulings.

Source: Top European Court to Review National Data Retention Laws

>