Privacy Advisor

Having trouble receiving the Privacy Advisor in your inbox? Click here for troubleshooting tips.

Global Privacy Dispatches

FRANCE—Expansion of CNIL Investigation Powers Confirmed
In the past few years, the French data protection authority (CNIL) has made itself known for its on-site investigation powers by coming unannounced to the premises of businesses to perform interviews and searches in order to assess compliance with the French Data Protection Act. Read More
FRANCE—The End of Aggressive Cold-Calling?
The new consumer act of March 17 is now in force. Among its key measures, it plans the creation of a centralized do-not call list. Read More
HUNGARY—Hungarian DPA Suggests Refinements in IT Policies
In a recent case, the Hungarian Authority for Data Protection and Freedom of Information (Nemzeti Adatvédelmi és Információszabadság Hatóság or NAIH) investigated a case where a company had to access its employee’s laptop for compliance reasons and imposed a fine of HUF 1,500,000 (approximately 5,000 euros) for unlawful data processing. Read More
UK—Marketing Companies Punished for Hiding Identity While Making Nuisance Calls
The Information Commissioner's Office (ICO) has ordered two telephone marketing companies to change their practices after more than 100 complaints were made to the ICO that the companies were making nuisance marketing calls. Read More
UK—British Pregnancy Advice Service Fined for Serious Data Breach
The British Pregnancy Advice Service (BPAS) has been fined 200,000 GBPs after a serious breach of the Data Protection Act (DPA) revealed thousands of people's personal details to a malicious hacker. Read More
UK—ICO Publishes Updated PIA Guidance
The UK Information Commissioner's Office has published its updated Privacy Impact Assessment (PIA) Code of Practice to help organisations comply with their data protection law obligations when they change the way that they use personal data. Read More
ITALY—Garante Addresses Medical Research, Welfare Positions Issues
The Garante, Italy’s Data Protection Authority (IDPA), has released three decisions related to research and a register of welfare positions.

Read More
ITALY—Garante’s Provision on Mobile Payment Services
On December 12, 2013, the Italian Data Protection Authority (Garante) issued a draft general provision on the processing of personal data in the context of mobile remote payment services. This new provision sets the rules for the processing of information about users who purchase digital services and products and pay for them remotely via their phone bills. Read More
ITALY—Garante Addresses Medical Research, Welfare Positions Issues
The Garante, Italy’s Data Protection Authority (IDPA), has released three decisions related to research and a register of welfare positions. Read More
Cross-National Enforcement Actions Are Reality in Europe (July 1, 2007)
The European Article 29 Working Party published its findings on the coordinated audit of the health insurance sector by the European national DPAs.
Privacy News (July 1, 2007)
Morrison & Foerster has launched a free online resource library that provides links to privacy laws, regulations, reports, multilateral agreements and government authorities for more than 90 countries around the world.
IAPP in the News (July 1, 2007)
Network World magazine recently published an article titled, "Why Your Company Needs a Chief Privacy Officer." The article profiles IAPP Treasurer Chris Zoladz, CIPP, who spoke to security professionals at The International Information Systems Security Certification Consortium's 2007 SecureAmericas conference.
Notes from the Executive Director (July 1, 2007)
As I reflect this week on the success of the IAPP's first Delegate Tour to Europe, I am reminded that the IAPP predictably again delivered an unparalleled mix of strong programming and unmatched networking for our members who joined us in Berlin, Paris and London.
IAPP Quickly Convenes Experts to Detail Group's Comprehensive ID Theft Report (July 1, 2007)
The President's Identity Theft Task Force is recommending that Congress adopt a national breach notification standard to supersede the existing 37 state laws, according to a Federal Trade Commission (FTC) official who spoke during a May 3 IAPP audio conference.
Attention Privacy Leaders: The IAPP Needs You! (July 1, 2007)
Education Advisory We are looking for privacy leaders with diverse expertise to serve the privacy profession. As the IAPP continues to grow as the central forum for active, involved privacy pros, we seek to offer greater participation in the strategies, programs and products the association evaluates and develops.
Global Privacy Dispatches (July 1, 2007)
The Australian Privacy Commissioner has recommended that the existing credit reporting provisions in the Privacy Act (notably Part IIIA) and the Code of Conduct should be repealed and replaced by the National Privacy Principles (NPPs) operating in tandem with an enforceable code. The recommendations were included in her submission to the Australian Law Reform Commission's (ALRC) Review of Privacy (Issues Paper 32).
How Privacy Scanning Can Keep Your Company Out of the Regulatory Minefield (July 1, 2007)
In a recent Jupiter Research report titled Online Privacy: Managing Complexity to Realize Marketing Benefits, Jupiter analysts advised companies to allocate budgets for consumer security and privacy education, and to treat online privacy as a strategic marketing differentiator, rather than a compliance exercise.
Identity Linkage and Privacy (July 1, 2007)
The subject of privacy and identity is by no means new, and many countries have legislation geared towards the protection of personal information. There exist nonetheless inconsistencies between countries regarding the right for privacy. Information gathering engines are prevalent wherever we go online, gathering our personal data as quickly as we share it — wittingly or unwittingly.