fbpx

Download free GDPR compliance checklist!

Tag Archives for " US "

How Photos of Your Kids Are Powering Surveillance Technology

One day in 2005, a mother in Evanston, Ill., joined Flickr. She uploaded some pictures of her children. Years later, their faces are in a database that’s used to test and train some of the most sophisticated artificial intelligence systems in the world called MegaFace.

By law, most Americans in the database don’t need to be asked for their permission. However, residents of Illinois are protected by one of the strictest state privacy laws on the books: the Biometric Information Privacy Act, a 2008 measure that imposes financial penalties for using an Illinoisan’s fingerprints or face scans without consent.

Full article: How Photos of Your Kids Are Powering Surveillance Technology – The New York Times

Debt Collection Agency to Pay $267 Million in Robocall Lawsuit

On September 10, 2019, California federal judge entered a $267 million judgment against a debt collection agency, Rash Curtis & Associates.

Rash Curtis & Associates contacted consumers via robocall without their prior express consent, a violation of the Telephone Consumer Protection Act (TCPA). The jury found that the debt collection company made more than 534,000 such unsolicited robocalls.

Source: Verdict: Debt Collection Agency to Pay $267 Million in Robocall Lawsuit | Top Class Actions

EU and US work on electronic evidence agreement

European Commission and U.S. Department of Justice officials met on September 25 to begin formal negotiations on an EU-U.S. agreement to facilitate access to electronic evidence in criminal investigations.

There was agreement to regular negotiating rounds with the view to concluding an agreement as quickly as possible. Progress will be reviewed at the next EU-U.S. Justice and Home Affairs Ministerial in December.

Source: European Commission – PRESS RELEASES – Press release – Criminal justice: Joint statement on the launch of EU-U.S. negotiations to facilitate access to electronic evidence

Amazon is writing facial recognition law

Amazon’s Chief Executive Jeff Bezos said the company’s public policy team is working on proposed regulations around facial recognition, a fledgling technology that has drawn criticism of the technology giant’s cloud computing unit.

Critics have pointed to technology from Amazon and others that struggled to identify the gender of individuals with darker skin in recent studies. That has prompted fears of unjust arrests if the technology is used by more law enforcement agencies to identify suspects.

Source: Amazon CEO says company working on facial recognition regulations – Reuters

New US ransomware bill passed

The US Senate has passed a bill that is aimed to protect public institutions like schools and law enforcement, from ransomware.

The DHS Cyber Hunt and Incident Response Teams Act would authorise the Department of Homeland Security (DHS) to create teams to help both private and public entities defend against attacks.

Additionally the cyber hunt and incident response teams, will provide support and technical advice, as well as provide incident response assistance.

Source: #Privacy: New US ransomware bill passed

How to manage, monitor and validate third-party data sharing

When companies manage how personal data is shared and transferred to third parties, much of the effort lately has been focused on bringing legal contracts in line with requirements under the EU General Data Protection Regulation and now, increasingly, the California Consumer Privacy Act.

How can organizations effectively ensure they have the requisite data knowledge to validate data flows and the purpose of processing, as well as monitor data transfers to flag when personal data is going where it shouldn’t?

Read full article: How to manage, monitor and validate third-party data sharing

Secret FBI Subpoenas Scoop Up Personal Data From Scores of Companies

The F.B.I. has used secret subpoenas to obtain personal data from far more companies than previously disclosed.

The requests, which the F.B.I. says are critical to its counterterrorism efforts, have raised privacy concerns for years but have been associated mainly with tech companies. Now, records show how far beyond Silicon Valley the practice extends — encompassing scores of banks, credit agencies, cellphone carriers and even universities.

Source: Secret F.B.I. Subpoenas Scoop Up Personal Data From Scores of Companies – The New York Times

33% of executives don’t trust their organization to protect employee data

A third of executives in the US are “not confident in their organization’s ability to protect employee data from bad actors,” according to Dell’s 2019 Workplace Security Report, published Tuesday.

The survey of 4,600 executives, conducted with Vanson Bourne, queried business leaders across 42 countries. This is only marginally higher than the global average of 29%. Executives in Belgium (38%) and France (37%) lead distrust in Europe, while executives in South Korea (51%) and Singapore (42%) lead in Asia.

Source: 33% of executives don’t trust their organization to protect employee data – TechRepublic

California Legislature Passes CCPA Amendments and Privacy Bills

Last week, after months of negotiation and speculation, the California legislature passed bills amending the California Consumer Privacy Act (“CCPA”).

This marked the last round of CCPA amendments before the legislature adjourned for the year—and before the CCPA takes effect on January 1, 2020. California Governor Gavin Newsom has until October 13 to sign the bills into law. Separately, the Attorney General’s office is expected to release a draft of proposed CCPA regulations for public input later this Fall.

Source: California Legislature Passes CCPA Amendments and Privacy Bills

EU and US issue joint statement on the Third Annual EU-U.S. Privacy Shield Review

U.S. Secretary of Commerce Wilbur Ross and EU Commissioner for Justice, Consumers, and Gender Equality Věra Jourová made the joint statement regarding the third annual joint review of the EU-U.S. Privacy Shield Framework.

Officials stated that Privacy Shield ensures that participating companies and relevant government authorities provide a high level of protection for the personal data of EU individuals. The Department of Commerce will revoke the certification of companies that do not comply with Privacy Shield’s vigorous data protection requirements.

The European Commission will publish a report on the functioning of the Privacy Shield. This report will conclude this year’s review process.

Source: Joint Press Statement from Commissioner Věra Jourová and Secretary of Commerce Wilbur Ross on the Third Annual EU-U.S. Privacy Shield Review | U.S. Department of Commerce

>