We’ve compiled the latest in Data Protection and Privacy news for your convenience below.
1) Newly Published Documentation
- The UK Data Protection Authority (the ICO) has approved the first UK GDPR accreditation schemes, in favour of two organisations. The first working for the destruction of personal data on re-used IT equipment and the second working for age verification and the protection of children’s data. Read the ICO’s press release here →
- The Australian government has licensed a startup (called OCR Labs) to be a digital identification provider. The license was issued based on the Digital Transformation Agency’s Trusted Digital Identity Framework. Read about the Australian Trusted Digital Identity here →
- The Hong Kong Privacy Commissioner published a Guidance on AI. Read the press release here →
2) Notable Case Law
- The company Blackbaud is facing several class-actions and allegations that its response to a ransomware attack was in breach of the CCPA. Read more about the case here →
- The Spanish Data Protection Authority issued two fines against a company for being in breach of the principle of data minimisation and for a lack of transparency. The company had notably placed video surveillance cameras in the common areas of a building without the authorisation of the board of owners. It was also pointed out that access to images from a camera on behalf of a third party other than the data controller must be regulated by a contract. Read the decision here →
3) New and Upcoming Legislation
- China – The Personal Information Protection Law (PIPL) is expected to come into effect on November 1st, 2021. It notably allows fines ranging between $7.7 million and up to 5% of the previous year’s business revenue. It also provides that cross-border transfers must be overseen by the Cyberspace Administration of China. TechCrunch reported →
The Chinese authorities have also recently found 43 applications to be in breach of Chinese data transfer rules.
4) Strong Impact Tech
- Several American Senators have requested more information from TikTok on the changes to its Privacy Policy on biometric information.
Other key information from the past weeks
- The UK Data Protection Authority (the ICO) has opened a public consultation on its draft international data transfer agreement and guidance, replacing SCCs.
- The Australian Government opened a consultation on the draft online safety rules 2021. The consultation closes on October 15, 2021.
đź‘Ť Enjoyed this issue? Share it on LinkedIn and subscribe for weekly updates
Latest issues
About us
Attorney-level solutions to make your websites and apps compliant with the law across multiple countries and legislations.