fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " regulation "

Facebook and Google could be forced to tell you how much your data is worth under new US legislation

Tech companies like Facebook and Google could be forced to reveal how much individual users’ data is worth to them under new legislation in the US, according under new legislation in the US.

Putting a dollar figure on how much people’s data is worth is unlikely to be straightforward for the companies involved and the bill could provoke opposition.

Source: Facebook and Google could be forced to tell you how much your data is worth under new US legislation | Business Insider India

Navigating Privacy and Data Security Issues in Mergers, Acquisitions and Other Transactions

This article discusses how legal frameworks involving U.S. federal and state law, the EU General Data Protection Regulation, antitrust law and other relevant legal regimes may affect how a company can use personal information following a transaction.

The article also addresses key questions companies should ask during the due diligence process, how answers to those questions impact the deal documents and offers post-closing strategies companies should consider.

Source: Navigating Privacy and Data Security Issues in Mergers, Acquisitions and Other Transactions

Draft data protection law submitted to Parliament of Georgia

The State Inspector presented the legislative proposal to the Parliament of Georgia aimed at bringing the Georgia’s personal data protection law to in line with EU legislation.

The Draft Law includes provisions on the principles of data processing, data subject rights, child consent, deceased persons data processing, monitoring, direct marketing, data controller and data processor’s obligations, data transfers, enforcement and penalties for non-compliance.

Source: Personal Data Protection Inspector’s Office

The Data Behind Internet of Things: Threats, Ethics, and Regulation

The Internet of Things (IoT) allows devices, such as cars, lights, video cameras, and personal assistants like Amazon Alexa, to use connectivity to exchange data – often personal and sensitive data.

This article explores how IoT data can be used to prosecute criminal action, to carry out criminal acts, and how regulation can help clean up this complex landscape.

Read article: The Data Behind Internet of Things: Threats, Ethics, and Regulation – DATAVERSITY

Consumer contract law in the age of data

As part of its 2015 Digital Single Market Strategy, the European Commission proposed modernising the rules applicable to sales of goods and introducing similar rules for the supply of digital content (such as digital films, music, e-books, applications) and digital services (such as social media platforms, on-line games, pay-per-view access to films, cloud computing, etc.).

After more than 3 years of negotiations, the EU adopted a package comprising a directive on contracts for the supply of digital content and services and a directive on contracts for the sale of goods, both applicable in B2C relations.

Full article: The EU makes B2C contract law enter the age of data

Hungarian GDPR amendments act enters into force

On 26 April 2019, the Act XXXIV of 2019 on the Legislative Amendments Implementing the European Union Data Protection Reform (‘the Act’) entered into force.

The Act aims to amend national legislation in line with the General Data Protection Regulation (GDPR). Hungary is one of last EU countries to adopt GDPR implementation act.

Access Act here (in Hungarian).

France enacts Decree on application of data protection

On 1 June 2019 Decree No. 2019-536 of 29 May 2019 Enacted For the Application of Act No. 78-17 of 6 January 1978 on Data Processing, Files and Individual Liberties came into force.

The Decree clarifies procedural rules of the French data protection authority, including its control and sanctions, and further specifies data subject rights. It also brings Act on Data Processing, Files and Individual Liberties in line with the General Data Protection Regulation (GDPR) and the Data Protection Directive with Respect to Law Enforcement.

Read the Decree here (in French).

Cybersecurity certification gets an EU revamp

A new EU Regulation on cybersecurity promises a more coordinated approach across Europe. The new law will set up a framework for the establishment of European cybersecurity certification schemes.

The intention is to prevent “certification shopping” based on different levels of stringency among member states. Certification will be voluntary initially, but regular assessments will be carried out to determine whether certification of particular products or services should become compulsory.

Source: Cybersecurity certification gets an EU revamp

US data privacy law talks break down

Debate to create uniform data privacy law across the US has broken down due to senators failing to decide how hard-line the new rules should be.

Politicians in America are in disagreement over the wording of key aspects of the new bill. After months of discussion in the Senate Commerce Committee, the bill is still not ready for publication. Insiders say talks between Democrats and Republicans have ground to a halt.

Tech firms, however, hope for the bill to be passed before the end of 2019, when the California Consumer Privacy Act (CCPA) will also come into being.

Source: US data privacy law talks break down

>