The fourth annual Global Privacy Enforcement Network sweep, which focused on Internet of Things devices, found that privacy communications in relation to such devices were generally poor and companies demonstrating good practice were in the minority. Here, we summarize and explore the key findings of the fourth annual GPEN sweep .
A number of data protection authorities around the globe have issued press releases confirming their involvement in the 2016 global privacy “sweep”, which kicked off on April 11th. This year’s initiative involves a coordinated investigation by 29 DPAs into the practices of internet-connected devices, such as fitness and health trackers, thermostats, smart meters and TVs and connected cars. The work is being coordinated by the Global Privacy Enforcement Network under the leadership of the UK Information Commissioner’s Office.
In May 2013, the Hong Kong Privacy Commissioner for Personal Data joined the Global Privacy Enforcement Network to conduct a privacy review to evaluate the transparency in the collection and use of personal data online, with a focus on Apps. This follows from the Privacy Commissioner’s issuance of an Information Leaflet in November 2012, which provides practical guidance aimed at App developers on how to comply with the Hong Kong Personal Data (Privacy) Ordinance Cap. 486. There is clearly a rising concern among both the Privacy Commissioner and the public on the collection and use of personal data through the use of Apps by App providers, both in Hong Kong and worldwide.