The Dutch Data Protection Authority issued a EUR 830,000 (approximately USD 937,000) fine against the Dutch Credit Registration Bureau for violating data subject rights. The fine stems from BKR’s practice of charging fees and discouraging individuals who wanted to access their personal data.
The U.S. Department of Commerce’s National Telecommunications and Information Administration (NTIA) issued a Request for Comments (RFC) on a new consumer privacy approach that is designed to focus on outcomes instead of prescriptive mandates. The RFC presents an important opportunity for organizations to provide legal and policy input to the administration, and comments are due October 26.
Words matter. Nowhere is this truer than in legislation, where word choices—often the product of long debate and imperfect compromise—determine the scope and impact of a law. Legislative history can speak volumes about those word choices, and the unique legislative history of the California Consumer Privacy Act of 2018 (CCPA) only highlights the importance of understanding the terms used in the act. We thus focus here on discussing some of the CCPA’s key definitional terms.
In May 2013, the Hong Kong Privacy Commissioner for Personal Data joined the Global Privacy Enforcement Network to conduct a privacy review to evaluate the transparency in the collection and use of personal data online, with a focus on Apps. This follows from the Privacy Commissioner’s issuance of an Information Leaflet in November 2012, which provides practical guidance aimed at App developers on how to comply with the Hong Kong Personal Data (Privacy) Ordinance Cap. 486. There is clearly a rising concern among both the Privacy Commissioner and the public on the collection and use of personal data through the use of Apps by App providers, both in Hong Kong and worldwide.
Details regarding the FTC’s recently released agenda for the first of three privacy round tables it will hold over the course of the next few months.