Canadian regulators bemoan inability to apply GDPR-style fines

A small B.C. [British Colombia, Canada] company involved in a scandal that saw the personal information of millions of voters illicitly collected for the purpose of shaping political events around the world will not face financial penalties in Canada for its misuse of data. A joint investigation by the privacy commissioners of British Columbia and […]

California privacy law to have big impact on business insurance

The evolving privacy regulation environment is likely to have reverberations for the cyber insurance space, especially as one of the strictest privacy laws in the United States is just around the corner. One cyber expert [Michael Palotay, Tokio Marine HCC] says the California Consumer Privacy Act (CCPA) will have “a big impact” on this line […]

Irish DPA’s decision on fines for WhatsApp delayed by company lawyers

Those waiting for Europe’s tough privacy laws to seriously bite Big Tech will have to keep waiting a while longer. Ireland’s privacy watchdog was due to say next month whether WhatsApp had broken the General Data Protection Regulation (GDPR) by not giving people enough clear information about how it uses their personal data. The draft decision was […]

India’s Parliament to consider Data Protection Bill

The Indian government is all set to table Personal Data Protection Bill – which proposes to put restriction on use of personal data without explicit consent of citizen – in the current session of Parliament. As per the proposal, hefty penalties on entities found violating privacy of users will be imposed. “The Data Protection Bill […]

Microsoft to apply tough new California privacy law across the United States

You know California’s Consumer Privacy Act (CCPA), the tough new privacy law? The sweeping, GDPR-esque legislation set to go into effect on the first day of the new year that’s set off palpitations within the breasts of tech companies and lawmakers, what with its specter of fines and compliance costs? Microsoft’s cool with it. In fact, the company […]

German privacy authorities agree on fine guidelines, increasing possible exposure for companies

In October 2019, the German Conference of Federal and State Data Protection Authorities (DSK) published its long-awaited guidelines for the determination of fines in privacy violation proceedings against companies. The Fining Concept applies to the imposition of fines by German Data Protection Authorities within the scope of the European General Data Protection Regulation. According to […]

Consumers should live in a world where they are paid for their data, says Professor Dawn Song

Data is valuable — something that companies like Facebook, Google and Amazon realized far earlier than most consumers did. But computer scientists have been working on alternative models, even as the public has grown weary of having their data used and abused. Dawn Song, a professor at the University of California, Berkeley, and one of […]

Edward Snowden underwhelmed by GDPR, says more fines are needed

“This is a good piece of legislation in terms of the effort they are trying to do. Is GDPR the correct solution? I think no and I think the mistake it makes is actually in the name; the General Data Protection Regulation misplaces the problem,” Snowden told the Web Summit tech conference in Lisbon. “The […]

Irish Department of Children and Youth Affairs potentially facing a EUR 1 million data privacy fine

The Department of Children and Youth Affairs (DCYA) is facing a possible investigation and potential €1m fines over the mandatory requirement to hold a public services card in order to access the new National Childcare Scheme. The Irish Examiner has learned that the Data Protection Commissioner has written to the department seeking “certain information” regarding […]

Kenya passes new data protection law, with 3 million shilling fines for breaches

Signed on Friday, the law provides for the legal framework for the protection of a person’s privacy in instances where personal information is collected, stored, used or processed by another person. The Bill follows the path taken by the European Union in enacting the General Data Protection Regulation (GDPR) in May 2018 and makes Kenya […]