Privacy Advisor

Having trouble receiving the Privacy Advisor in your inbox? Click here for troubleshooting tips.

Global Privacy Dispatches

FRANCE—Expansion of CNIL Investigation Powers Confirmed
In the past few years, the French data protection authority (CNIL) has made itself known for its on-site investigation powers by coming unannounced to the premises of businesses to perform interviews and searches in order to assess compliance with the French Data Protection Act. Read More
FRANCE—The End of Aggressive Cold-Calling?
The new consumer act of March 17 is now in force. Among its key measures, it plans the creation of a centralized do-not call list. Read More
HUNGARY—Hungarian DPA Suggests Refinements in IT Policies
In a recent case, the Hungarian Authority for Data Protection and Freedom of Information (Nemzeti Adatvédelmi és Információszabadság Hatóság or NAIH) investigated a case where a company had to access its employee’s laptop for compliance reasons and imposed a fine of HUF 1,500,000 (approximately 5,000 euros) for unlawful data processing. Read More
UK—Marketing Companies Punished for Hiding Identity While Making Nuisance Calls
The Information Commissioner's Office (ICO) has ordered two telephone marketing companies to change their practices after more than 100 complaints were made to the ICO that the companies were making nuisance marketing calls. Read More
UK—British Pregnancy Advice Service Fined for Serious Data Breach
The British Pregnancy Advice Service (BPAS) has been fined 200,000 GBPs after a serious breach of the Data Protection Act (DPA) revealed thousands of people's personal details to a malicious hacker. Read More
UK—ICO Publishes Updated PIA Guidance
The UK Information Commissioner's Office has published its updated Privacy Impact Assessment (PIA) Code of Practice to help organisations comply with their data protection law obligations when they change the way that they use personal data. Read More
ITALY—Garante Addresses Medical Research, Welfare Positions Issues
The Garante, Italy’s Data Protection Authority (IDPA), has released three decisions related to research and a register of welfare positions.

Read More
ITALY—Garante’s Provision on Mobile Payment Services
On December 12, 2013, the Italian Data Protection Authority (Garante) issued a draft general provision on the processing of personal data in the context of mobile remote payment services. This new provision sets the rules for the processing of information about users who purchase digital services and products and pay for them remotely via their phone bills. Read More
ITALY—Garante Addresses Medical Research, Welfare Positions Issues
The Garante, Italy’s Data Protection Authority (IDPA), has released three decisions related to research and a register of welfare positions. Read More
Global Privacy Dispatches- Hot Topics of 2008 (January 1, 2008)
The hottest topic within the UK in 2008 will be informational security. The HMRC data loss case in November has generated massive, worldwide publicity, but there are many other reasons why this will be the number one privacy issue at boardroom level in 2008.
Global Privacy Dispatches- Privacy Predictions (January 1, 2008)
The world is currently producing between 1 and 2 exabytes of unique information per year (an exabyte is a billion gigabytes or 1018 bytes). This type of volume of data production, a subset of which is personal information production, creates fundamental controllability issues with respect to data management. Personal information increasingly is stored on a disparate array of storage mediums, from paper archives to optical disks and portable devices, and the challenge of managing this is multiplying.
Global Privacy Dispatches- Netherlands- Personal Data (January 1, 2008)
The Dutch DPA has announced a focus on the publication of personal data on the Internet after releasing draft guidelines in October. It subsequently has discussed these draft guidelines with industry organizations and governmental bodies. The DPA expects to formally establish the guidelines and start active enforcement in 2008.
Debix ID Theft Solution (January 1, 2008)
Debix, the Identity Protection Network, recently announced that it stopped a record 71 identity theft attacks in August while safely opening more than 10,000 new credit accounts for its 275,000 members and banks.
Ontario Privacy Commissioner (January 1, 2008)
The Women's Executive Network, in its annual list of the top 100 most powerful women in Canada, named Dr. Ann Cavoukian, Ontario's Information and Privacy Commissioner, as one of the honorees in the "Trailblazers and Trendsetters" category for her groundbreaking work in protecting privacy. Cavoukian, who has won a number of awards both in Canada and internationally, is recognized as one of the leading privacy experts in the world.
ComputerWorld Poll (January 1, 2008)
For the second year in a row, Hunton & Williams LLP has been named the top firm for privacy by Computerworld. The poll, by columnist Jay Cline, CIPP, surveyed 400 corporate privacy leaders in North America and Europe. In an accompanying article, "The Best Privacy Advisors in 2007," Lisa Sotto, head of the Hunton & Williams Privacy and Information Management practice, was voted "privacy guru" and the top choice for U.S.-based issues.
Operation Virtual Shield (January 1, 2008)
IBM has announced a new project with the City of Chicago Office of Emergency Management and Communications (OEMC) to implement one of the most advanced city-wide intelligent video security systems. The project is a part of Chicago's Operation Virtual Shield.
Best privacy advisers named (January 1, 2008)
Several IAPP members were included in Computerworld's 2008 rankings of the best privacy advisers. The New York-based law firm Hunton & Williams took top honors. The results are based on a survey of 2,000 data protection officers.
IAPP in the News (January 1, 2008)
During a recent (ISC)2 SecureBoston conference in Quincy, Mass., industry experts stressed the importance of aligning the privacy and security resources within an organization — especially in the area of devising an effective breach response plan. SearchSecurity.com covered the event, highlighting comments from IAPP Assistant Director, Peter Kosmala, CIPP.
CompliancePoint (January 1, 2008)
PossibleNOW, a provider of consumer privacy preference management consulting services and technology solutions, has named its direct marketing compliance consulting and audit services division as CompliancePoint.
Globa Privacy Dispatches- Canada- Private Sector Predictions (January 1, 2008)
From 2003 to 2007, increased investment in privacy was intended to achieve compliance with Canada's consent-based privacy laws. Next year, compliance will remain the cornerstone of privacy in Canada, but the focus will shift. In 2008, corporate Canada will invest in privacy management to reduce the likelihood of data breaches.
Data Breach Legislation 2.0 (January 1, 2008)
The passage of state data breach laws has lead to unprecedented public focus on the problem. Where data breaches once went unreported, now they are regularly front page news, and public concern about identity theft is at an all time high. State legislatures are responding by rolling out tough new data breach laws that authorize third party claims against breached parties and impose strict security requirements modeled on the Payment Card Industry Data Security Standards (PCI DSS). Louis Salazar CIPP considers the changing landscape and discusses the new legislation afoot in various states.
Notes from the Executive Director (January 1, 2008)
As we turn the corner on another year, we have an opportunity to consider the privacy issues that may emerge in 2008 or continue to percolate from last year. This special issue is filled with provocative thoughts from some of the top privacy experts from around the world. Not one to miss the fun, here are some of my personal thoughts on what 2008 may bring to the privacy field
2008 Predictions (January 1, 2008)
Leading privacy experts from around the world provide their insights on the privacy challenges that they believe will dominate in 2008. Diverse views on up-and-coming privacy issues in government and legislation, the legal, financial, and healthcare sectors, and in business and advertising are presented.