Latest roundup in global data protection and privacy

Thailand PDPC publishes criteria for personal data deletion, destruction, and de-identification  On June 14, 2024, the Personal Data Protection Committee (PDPC) released a draft notification under the Personal Data Protection Act 2019 (PDPA), outlining the criteria for data controllers on how to delete, destroy, or de-identify personal data.  According to the PDPA, a data [...]

By |2024-06-28T10:26:52+01:0027th June, 2024|DPO, Governments, News|

UK general election: What the major parties are saying about data protection and AI

When Prime Minister Rishi Sunak announced that the UK would hold a general election on 4 July, he also—incidentally—killed the government’s long-running attempt to reform the UK’s data protection and privacy framework, the Data Protection and Digital Information Bill (DPDIB).  Regardless who wins the election, the DPDIB is unlikely to return. But the UK’s [...]

By |2024-06-28T11:31:59+01:0025th June, 2024|DPO, Governments, News|

Jamaica begins data controller registration under Data Protection Act

On June 1, 2024, Jamaica's Office of the Information Commissioner (OIC) began accepting applications for data controller registration as mandated by section 15 of the Data Protection Act of 2020. This marks the start of a phased compliance process following the Act's initial enforcement in December 2021 and further sections activated in December 2023.  [...]

By |2024-06-28T10:23:02+01:0024th June, 2024|DPO, Governments, International, News|

Texas Data Privacy and Security Act: The most significant US privacy law yet?

The Texas Data Privacy and Security Act (TDPSA) takes effect on 1 July. So far, around 20 US states have passed comprehensive privacy legislation, but only five such laws have taken effect.   Like most other states, Texas has adopted a law similar to the Virginia Consumer Data Protection Act (VCPDA)—but the “Lone Star State” [...]

By |2024-06-28T10:20:58+01:0023rd June, 2024|DPO, Governments, International, News|

Latest regulatory roundup in global data protection and privacy

Costly cyber attack hits UnitedHealth Group Subsidiary  Earlier this year, a cyber attack on a UnitedHealth Group subsidiary, Change Healthcare, caused significant disruption and financial loss for one of the largest employers in the US. The attack is reported to have started with hackers exploiting a server which lacked multi-factor authentication. Recently, UnitedHealth Group [...]

By |2024-05-30T08:52:00+01:0029th May, 2024|Cybersecurity, Data Transfer, DPO, News, Nigeria, Spain, US|

How laws, regulators, and gatekeepers are reshaping digital advertising

Since the first banner ads, the world wide web has largely run on ads. To fund online services, the digital advertising industry collects detailed information about billions of people. But substantial change is imminent.  New laws targeting digital advertising  The ePrivacy Regulation, a long-awaited update to the EU’s rules on direct marketing and cookies, [...]

By |2024-05-30T08:02:03+01:0027th May, 2024|Biometric, Digital Age, DPO, Governments, News|

Navigating privacy regulations on the use of biometric data

As a security measure, nothing beats biometrics for convenience. We carry our fingerprints and facial features everywhere we go. Unlike a password, your iris print is always unique—and you can’t forget it. But biometrics are sensitive because of their convenient and immutable nature. You can change a breached password in minutes, but changing your biometrics [...]

By |2024-05-30T08:38:47+01:0024th May, 2024|Biometric, DPO, Governments, News|

As the European Council adopts the AI Act, here are three recent AI developments from outside the EU

The European Council adopted the AI Act on 21 May, marking one of many steps on the path towards stronger AI regulation. The law will be published in the EU’s Official Journal in the coming weeks and will start to take effect 20 days later.  The AI Act’s first substantial impact will come six months [...]

By |2024-05-30T08:52:45+01:0022nd May, 2024|Artificial Intelligence, DPO, Governments, News|

April’s global data protection and privacy regulatory roundup

Ethiopia’s Parliament approves Personal Data Protection Bill The House of Peoples Representatives (HoPR) of the Federal Democratic Republic of Ethiopia has taken a historical step by ratifying the Personal Data Protection Proclamation during its 20th ordinary session held on April 4, 2024. This development represents a major step forward in Ethiopia’s digital transformation journey [...]

By |2024-04-29T14:29:40+01:0029th April, 2024|DPO, Governments, News|

Brazilian ANPD seeks views on high-risk processing: Here’s a round-up of the regulator’s activities 

Brazil’s Autoridade Nacional de Proteção de Dados (ANPD) is calling for views on the definition of “high-risk processing” under the country’s federal data protection law, the Lei Geral de Proteção de Dados Pessoais (LGPD). The consultation is the latest in a long series of ordinances, resolutions, and guidance notes produced by the ANPD since the [...]

By |2024-04-29T19:14:33+01:0028th April, 2024|DPO, Governments, News|
Go to Top