iapp.org iapp.org

Privacy self-assessment toolkit for SMEs in Ukraine

On Feb. 23, 2021, Ukraine's Ministry of Digital Transformation, in cooperation with the United Nations Development Program, NGO "Privacy Hub," and other partners, launched a data protection self-assessment tool. Aimed at aligning personal data protection with international and European standards, Ukraine developed a framework to help Ukrainian small- to medium-sized enterprises understand Ukrainian privacy laws and the EU...

iapp.org iapp.org

NIS representation in the EU and UK — Was the March 31 deadline a turning point?

Under the recent amendments to the U.K. Network and Information System Regulations, digital service providers needed to appoint a NIS representative by March 31, 2021, in the U.K. The NIS Directive (EU 2016/1148 – NISD) aims to achieve a high standard network and information systems security in the European Union, including the U.K. when initiated. It applies to two types of organizations: operators of essential services and DSPs....

iapp.org iapp.org

Japan updates enforcement rules for amended APPI

On March 24, 2021, the Cabinet of Japan issued an order to enforce the amended Act on Protection of Personal Information and the Enforcement Rules for the amended APPI.  Updates to the status of the amended APPI The amended APPI was enacted June 5, 2020, and promulgated June 12, 2020. It will become effective April 1, 2022. However, stricter statutory penalties have already become effective, and the transitional measures for...

iapp.org iapp.org

House committee advances WPA with limited private right of action

House lawmakers in Washington state on Friday advanced an amended version of the Washington Privacy Act that adds a limited private right of action and incorporates changes in alignment with California privacy law. In a partisan 11–6 vote, the House Civil Rights & Judiciary Committee approved a striking amendment that adds a private right of action for consumers alleging a violation of the bill’s consumer data rights,...

iapp.org iapp.org

Global News Roundup: March 22–29, 2021

In this week's global legislative roundup, learn about the proposed privacy laws coming out of Florida, West Virginia and Nevada. Also in the U.S., Sen. Brian Schatz, D-Hawaii, led a group of 17 senators in reintroducing a federal privacy law. Negotiations on an enhanced EU-U.S. Privacy Shield framework are intensifying, and Privacy Commissioner of Canada Daniel Therrien said the proposed Consumer Privacy Protection Act does not give...

iapp.org iapp.org

For DHS' Lynn Parker Dupree, CPO role is a homecoming

After spending time working in the private sector, Lynn Parker Dupree, CIPP/G, CIPP/US, is heading home. Dupree has been named the new chief privacy officer of the U.S. Department of Homeland Security after a stint as the director of governance and controls at Capital One. She returns to DHS after previously serving in the Privacy Office and the Office of the General Counsel at the agency. "I am very honored to be the new chief...

iapp.org iapp.org

Why some data subject request services create compliance concerns

If you are responsible for handling data subject requests made pursuant to the EU General Data Protection Regulation or verified consumer requests made pursuant to the California Consumer Privacy Act, chances are you have come across one or more of the myriad companies that purport to be advocating for consumers in making requests on their behalf.  These companies include Mine, Privacy Bee, DeleteMe and Revoke. While...

iapp.org iapp.org

How one organization raises awareness over connected vehicle privacy

Legendary golfer Tiger Woods was driving a Genesis GV80 when he suffered a horrific rollover crash that resulted in his hospitalization and surgery on his leg. The Genesis features the same technology many vehicles have today, which allows drivers to sync their phones to the cars to make phone calls, send texts and listen to music. Should Woods have done that with the Genesis he was loaned, Andrea Amico said a lot of personal...

iapp.org iapp.org

DNA is no longer just for 'Law and Order' reruns anymore

Maybe it's just me, but it seems like it's nearly impossible to keep track of all the different TV shows debuting on streaming services nowadays. Sure, Disney does well promoting its Marvel and Star Wars shows, but they also have enough money to outright own several states in the American Midwest if they wanted to. In addition to the newly released Paramount+, there's Hulu, Netflix, Amazon Prime Video, Disney+, Apple TV+, HBO Max,...