Having trouble receiving the Privacy Advisor in your inbox? Click here for troubleshooting tips.
Global Privacy Dispatches
ITALY—Garante Addresses Medical Research, Welfare Positions Issues
The Garante, Italy’s Data Protection Authority (IDPA), has released three decisions related to research and a register of welfare positions.
ITALY—Garante Releases Enforcement Activity Report
The Garante, the Italian Data Protection Authority (IDPA), has released information on enforcement activity in Italy in 2013 and its relevant plan of inspections for the first semester of 2014.
CANADA—Anti-Spam Legislation To Come Into Force
After much discussion and consultation on the accompanying Regulations, Canada’s anti-spam legislation is about to take full effect. While the CRTC had previously published its regulations on March 28, 2012, the Electronic Commerce Protection Regulation was finally published on December 4, 2013.
UK—Government Department Fined 185,000 GBPs After Terrorist Incident Data Sold at Auction
A government department has been fined after a filing cabinet containing personal information relating to victims of a terrorist incident was sold at auction.
NEW ZEALAND—Privacy Reflections/Predictions for 2014
The high-profile privacy breaches of 2012-13 have shed an unprecedented light on personal information in New Zealand. Outgoing Privacy Commissioner Marie Shroff is leaving the role at a time when protecting personal information, a cause she has actively championed over the past 10 years, is at the forefront of public awareness and is top-of-mind for policy analysts, legislators and businesses alike.
NEW ZEALAND—Will the Tide Turn in 2014?
Last year was not a good one for New Zealand privacy-wise. While Australia forged ahead enacting legislation covering issues such as cross-border controls for personal data and introducing measures to implement breach notification, the government in New Zealand, by contrast, has been dragging its feet and instead adopted a raft of measures diminishing existing privacy protections. This article briefly reviews developments in New Zealand in 2013 and ventures some predictions as to what may lie in store in 2014.
AUSTRALIA—Australia Legislates for Privacy by Design
In March, Australia will be overhauling its privacy laws. One of the key features of the new regime means Australia will become one of the first jurisdictions to effectively legislate for the concept of Privacy by Design.
Federal District Court Rejects FTC Opinion on Attorneys' Gramm-Leach-Bliley Act Coverage (August 1, 2003)
On August 11, 2003, the U.S. District Court for the District of Columbia issued a lengthy ruling in the suit brought by the American Bar Association (and other bar groups) against the Federal Trade Commission challenging the FTC's position that attorneys were subject to the privacy notification provisions of the 1999 Gramm-Leach-Bliley Act. (N.Y. State Bar Ass'n v. FTC, Civ. Actions 02-810 and 02-1883, 2003 LEXIS 13939). In denying the FTC's motion for summary judgment dismissing the bar associations' complaint, the court gave the FTC a refresher course in the basics of statutory interpretation.
Binding Corporate Rules: The Answer to Global Processing? (August 1, 2003)
Article 25 of the 1995 directive on the protection of individuals with regard to the processing of personal data and on the free movement of such data placed a controversial requirement on the governments of EU member states: to ban the transfer of personal data to any country outside the European Union unless that third country ensures an adequate level of privacy protection.
The FTC and Online Privacy: Where are We Now? (August 1, 2003)
The Federal Trade Commission became active in protecting the privacy of Internet users in the late 1990s. Rather than promulgate a policy setting rules for the collection, use, and disclosure of users' information by Web sites, or recommend legislation to Congress, and except for the Children's Online Privacy Protection Act of 1998, the FTC adopted a policy of enforcing the privacy policies announced by the Web sites themselves.
New Rules for Fax Advertising (August 1, 2003)
The federal Telephone Consumer Protection Act prohibits the transmission of an advertisement to a business's or individual's fax machine without the prior express permission or invitation of the recipient. The act directed the Federal Communications Commission to promulgate a rule implementing this and other provisions of the act.
Dale Skivington, Chief Privacy Officer, Kodak (August 1, 2003)
Dale E. Skivington is Kodak's chief privacy officer and as such has worldwide responsibility for company policies relating to consumer, employee and supplier privacy. She is also a member of the Employment and Personnel Law Legal Staff at Kodak, chaired the New York State Business Council's Labor and Human Resources committee, and also served on the New York Governor's Task Force on Independent Contractors and on the Governor's Task Force on Sexual Harassment.
Password or PKI? (August 1, 2003)
Public Key Infrastructure — PKI — hasn't had good press in recent months. After a lot of early hype, PKI's reputation has been tarnished as a technology that is too complicated and too expensive, requiring high levels of control and management.
Notes from the Executive Director (August 1, 2003)
There's plenty to talk about in the world of privacy these days and the best place to keep ahead of these developments is IAPP's upcoming Privacy Academy.