1 & 1 Telecom fined $10.6M for GDPR violations; company fights back
A German federal privacy watchdog has fined 1 & 1 Telecom €9.55 million (U.S. $10.6 million) for violations of the EU’s General Data Protection Regulation, but the company says it won’t accept the penalty.
FTC settles with four over alleged EU-U.S. Privacy Shield deception
Four companies have reached settlements with the Federal Trade Commission for allegedly misrepresenting their participation in the EU-U.S. Privacy Shield framework.
Republicans, Democrats spar over federal privacy bill
Republicans and Democrats have differing opinions on the rights and role of a federal privacy law, but both sides agreed at a Senate Commerce Committee hearing Wednesday the time to act is now.
Introducing ‘The Excellence in Compliance Awards’
Compliance Week is making some changes to its annual awards for 2020, evolving the “Top Minds” recognition into a full-blown, specifically targeted awards program dubbed “The Excellence in Compliance Awards.”
Senate Dems propose ‘clear as a bell’ U.S. privacy law
Senate Democrats have proposed a new federal data privacy bill that seeks to empower consumers and support their civil rights in the digital economy.
Regulators wary of crypto as digital assets go mainstream
Federal agencies struggle to categorize digital coins as currency, securities, commodities, property, or something else—but even as they dither, some big companies strive forward in the digital assets arena.
‘Femtech’ wanders into uncharted regulatory territory
Applications that serve women’s health needs could soon be held to a higher standard of accountability for protecting users’ data if they become classified as “covered entities” under HIPAA.
Regulators need experts in AI, too
Machine learning isn’t something that’s going to happen—it’s already happened. Ali Shah, head of tech policy at the U.K. Information Commissioner’s Office, discusses how artificial intelligence will impact regulators.
U.S. consumers express unease over personal data collection
A recent survey says a majority of Americans don’t trust data privacy policies and procedures, even while U.S. companies are hastening to enhance them in advance of the California Consumer Privacy Act’s implementation.
Privacy warfare: Competitors, consumers pose new risks
With a new wave of privacy laws empowering consumers to police their own data, companies are facing increased risk in areas they might not have considered.
Ireland vs. Big Tech: The wait continues
It’s been 18 months since the General Data Protection Regulation went into effect, and still no violations have come out of Ireland. Is the Emerald Isle dragging its feet? CW Editor in Chief Dave Lefort attempts to answer that question.
Regulators sympathetic to GDPR growing pains but expect maturity
Officials from a pair of EU data privacy sanctioning bodies stressed importance of data protection officers and good-faith efforts to comply with GDPR.
10 things you need to know about CCPA compliance
It’s go-time for compliance as the clock ticks toward the Jan. 1 effective date of the California Consumer Privacy Act.
Best practices for choosing the right data privacy software
Don’t expect a plug-and-play technology solution to this complex new problem.
Data-driven compliance can create business success
Smart uses of data analytics show companies can not only improve their compliance programs with technology, but actually create bottom-line results for their companies as well.
Microsoft updates cloud contract privacy amid EDPS probe
Microsoft has updated the privacy provisions of its commercial cloud contracts amid a European Data Protection Supervisor investigation that revealed “serious concerns” in its preliminary findings.
Proactive approach needed in today’s cyber-crime environment
An expert sheds light on behavioral science-driven solutions that help businesses prepare for a breach before it happens.
Google, Ascension defend partnership amid federal inquiry
Criticism from lawmakers in addition to a federal inquiry regarding Google’s controversial partnership with Ascension has both the tech giant and the non-profit healthcare provider firing back.
From sea to shining CCPA: Microsoft to extend privacy law across U.S.
In a blog post this week, Microsoft announced its intention to extend the core rights of the upcoming California Consumer Privacy Act to its customers across the United States.
Take our CCPA survey for a chance at a $100 Amazon gift card
How does your company’s preparation for California’s data privacy law compare to that of your peers? Are you where you need to be in terms of understanding the key parts of the regulation? Help benchmark your program by taking part in this survey.
Mistrust mars Google’s acquisition of Fitbit
Fear and frustration were prevalent among Fitbit owners after its pending acquisition by Google was announced. Given the tech giant’s recent privacy lapses, it’s tough to blame them.
Ask Amii mailbag: Steps to encourage employees to speak up
This edition of the Ask Amii mailbag offers tips on how to ensure your employees feel safe blowing the whistle, suggestions for encouraging collaboration, and advice for data managers on how to manage data ethically and responsibly in a segmented firm.
Survey: Consumers OK with retail privacy quid pro quo
Nearly three-fourths of respondents in a recent retail privacy survey said they are willing to share personal data in exchange for better pricing, special discounts, or exclusive offers.
Data protection compliance lessons from UniCredit breach
UniCredit announced its cyber-security team has identified a data breach that compromised the personal records of approximately three million clients in Italy, highlighting critical compliance lessons for those in the financial services industry.
Google facing privacy lawsuit from Australian regulator
Australia’s competition regulator has filed a lawsuit against Google for alleged misrepresentations regarding user data collected in relation to location services on Android devices.
Mastercard encourages unity with data privacy initiative
Mastercard is inviting other companies to join it in addressing individuals’ privacy rights with the launch of its Data Responsibility Imperative.
FTC proposes five amendments to NIST Privacy Framework
The FTC has submitted comment on NIST’s draft Privacy Framework, praising the agency for its proposal to help firms open a privacy dialogue and suggesting five amendments to improve upon the draft.
Seven takeaways: Privacy, Big Tech in spotlight at ICDPPC
The International Conference of Data Protection and Privacy Commissioners offered varying perspectives on the latest in data privacy and technology from the likes of regulators, experts, and campaigners.
Microsoft president: Tech companies must embrace privacy regs
At a recent data privacy event, Microsoft’s president and chief legal officer discussed the evolution of data protection rules and how new technology needs to better align with privacy regulation.
White paper: Committing to Data Privacy Compliance
California’s new data privacy law, The California Consumer Privacy Act of 2018 (CCPA), is ushering in a new era of consumer privacy protections in the U.S.
NIST provides guidance on how to bridge privacy, cyber-security processes
NIST’s new draft Privacy Framework offers much-needed guidance to help companies align their data privacy and cyber-security risk management practices.
Sen. Wyden introduces ‘strongest-ever’ privacy bill
Sen. Ron Wyden (D-Ore.) has introduced an updated version of his previously drafted data privacy bill that threatens jail time for executives at corporations that misuse Americans’ data.
White paper: Mitigate privacy risks and exploit valuable data
The new California Consumer Privacy Act (CCPA) takes effect on January 1, 2020. Ahead of this milestone – and with several States working on new data management regulations – many financial services organizations are concerned with the risks of non-compliance.
California governor gives nod of approval to 7 CCPA amendments
Amendments to the California Consumer Privacy Act add clarity, offer a BTB communication reprieve to businesses, and ensure consumers have a method for submitting more information requests.
California AG’s proposed CCPA regs leave more questions than answers
Companies subject to the California Consumer Privacy Act requirements now have 24 pages of direction on how to comply with the new law. But will that be enough?
Libra Association soldiers on after PayPal withdraws
PayPal leaving Facebook’s Libra project is just a bump in the road in the drive toward developing a global digital currency payments network, a Libra Association spokesperson says.
CCPA compliance costs projected to reach $55B
An economic impact assessment of California’s upcoming privacy law forecasts short-term disadvantages for smaller companies and emerging markets around compliance solutions and data-based product initiatives.
Webcast: Managing cookies for GDPR, CCPA compliance
As consumers’ awareness of the use of cookies and similar tracking technologies has begun to soar, global lawmakers and regulators have taken a keen interest in how companies are using website and mobile tracking – particularly in the area of consent. This has evidenced itself through enforcement actions, new EU ...
Facebook suspends apps over privacy concerns
Facebook announced it has suspended “tens of thousands” of apps as part of an investigation launched in the aftermath of last year’s Cambridge Analytica scandal.
Facebook’s Zuckerberg schmoozes with Trump, lawmakers
Facebook CEO Mark Zuckerberg met with about a half dozen senators at a dinner this week before visiting the White House to meet with President Trump. The key focus of the visit: discussing the future of internet regulation.
Ecuador to expedite privacy law following massive breach
The Ecuadorian government has given itself 72 hours to finish drafting a national privacy law following a massive data breach that put the personal information of perhaps its entire population at risk.
Last-minute CCPA changes strike business-friendly tone
Recently approved tweaks to California’s upcoming privacy law don’t change the fact compliance prep should already be well underway, experts say.
Survey highlights pain points of GDPR implementation
Most organizations failed to meet the May 2018 deadline to comply with the launch of the EU’s tough new privacy rules, and the majority of them still find compliance a challenge, according to a recent survey.
Vestager keeps competition role in new Commission
Margrethe Vestager is staying put as Europe’s leader in the fight against anti-competitive practices, with a continued focus on Big Tech.
Amazon's Bezos among 51 CEOs calling for national data privacy law
CEOs from 51 different companies, including Amazon, Walmart, and Salesforce, have sent a letter to congressional leaders urging the passing of a comprehensive consumer data privacy law.
European Commission still gunning for Big Tech
Coming on the heels of big enforcement actions against Google, Apple, Facebook, and Amazon, the European Commission is vowing to keep fighting against technology giants profiting at others’ expense.
Compliance lessons from the Google/Uber trade secrets mess
A federal grand jury’s indictment of Anthony Scott Levandowski for allegedly stealing trade secrets from Google may be a wake-up call to protect intellectual property more aggressively.
Google, YouTube reach $170M ‘groundbreaking’ settlement for violating children’s privacy
Google and its subsidiary YouTube will pay $170 million to settle allegations that the video-sharing service illegally collected personal information from children without their parents’ consent.
Microsoft facing GDPR probe in Ireland
The Dutch Data Protection Agency has referred Microsoft to its home EU regulator in Ireland regarding new privacy concerns with its Windows 10 operating system.
Mastercard reveals data breaches in third-party loyalty program
Mastercard is investigating two data breaches relating to a loyalty program it ran in Germany following a leak of personal information that saw customers’ names, addresses, and credit card numbers circulating on the internet.