Privacy Advisor

Having trouble receiving the Privacy Advisor in your inbox? Click here for troubleshooting tips.

Global Privacy Dispatches

POLAND—DPA vs. Google on the Information Security Administrator
The Supreme Administrative Court, in its judgment of 21 February, supported the position adopted by the Polish Data Protection Authority (DPA) in its decision issued towards Google, Inc. Read More
UK—ICO Issues 50,000 GBP Fine for Unsolicited Calls
The Information Commissioner’s Office has fined home improvement company Amber Windows 50,000 GBP after an investigation discovered they had made unsolicited marketing calls to individuals who had registered with the Telephone Preference Service. Read More
UK—ICO Publishes Plans for 2014-17
The UK Information Commissioner’s Office has published its three-year corporate plan, setting out how it intends to address and tackle the challenges it faces in information regulation. Read More
UK—Disclosure and Barring Service Warned After Collecting Unnecessary Sensitive Data
The UK Information Commissioner’s Office has ruled that the Disclosure and Barring Service breached the Data Protection Act after failing to stop the collection of information about convictions that were no longer required for employment checks. Read More
FRANCE—Expansion of CNIL Investigation Powers Confirmed
In the past few years, the French data protection authority (CNIL) has made itself known for its on-site investigation powers by coming unannounced to the premises of businesses to perform interviews and searches in order to assess compliance with the French Data Protection Act. Read More
FRANCE—The End of Aggressive Cold-Calling?
The new consumer act of March 17 is now in force. Among its key measures, it plans the creation of a centralized do-not call list. Read More
HUNGARY—Hungarian DPA Suggests Refinements in IT Policies
In a recent case, the Hungarian Authority for Data Protection and Freedom of Information (Nemzeti Adatvédelmi és Információszabadság Hatóság or NAIH) investigated a case where a company had to access its employee’s laptop for compliance reasons and imposed a fine of HUF 1,500,000 (approximately 5,000 euros) for unlawful data processing. Read More
UK—Marketing Companies Punished for Hiding Identity While Making Nuisance Calls
The Information Commissioner's Office (ICO) has ordered two telephone marketing companies to change their practices after more than 100 complaints were made to the ICO that the companies were making nuisance marketing calls. Read More
UK—British Pregnancy Advice Service Fined for Serious Data Breach
The British Pregnancy Advice Service (BPAS) has been fined 200,000 GBPs after a serious breach of the Data Protection Act (DPA) revealed thousands of people's personal details to a malicious hacker. Read More
Senator Snowe Recevies IAPP Leadership Award (April 1, 2009)
Maine Senator Olympia J. Snowe received the 2009 IAPP Privacy Leadership Award on Capitol Hill last month. The award recognizes her ongoing efforts on behalf of citizens in the areas of privacy and data protection.
German Data Protection Act Reform (April 1, 2009)
Proposed reforms to the German Federal Data Protection Act (FDPA), if adopted, will have a considerable impact on companies doing business in that country. The changes would strengthen the authority of data protection officers, tighten restrictions on data transfers, raise fines for noncompliance, and introduce breach notification rules. In this article author Christoph Rittweger details the proposed reforms which may move quickly through the legislative process.
Eye on Ottawa (April 1, 2009)
As Canada’s federal privacy commissioner, Jennifer Stoddart confronts the privacy concerns that are evolving rapidly as information technologies advance. In this Privacy Advisor Q&A interview, she discusses the social networking revolution and her office’s work in helping Canada’s youth understand the potential consequences of their online posts. Commissioner Stoddart also addresses privacy’s potential as a barrier to free trade, the growing prevalence of cybercrime, and the costs to business of cleaning up a data spill.
California's model approach to privacy (April 1, 2009)
California has merged its Office of Privacy Protection with its State Information Security Office. The new Office of Information Security and Privacy Protection strives to unite separate-but-related privacy/security interests and promote effective cross-collaboration among professionals managing these areas. Matthew P. Barach, Esq., CIPP/G illustrates the benefits of this configuration, and contrasts it with the overall privacy leadership void extant in most other states. Analyses of state privacy programs in Wisconsin, West Virginia, Ohio, and Arizona are presented, along with recommendations for future state privacy offices.
Privacy Filters for Whole Body Imaging (April 1, 2009)
Ontario Information and Privacy Commissioner Ann Cavoukian has released a whitepaper on privacy filters for Whole Body Imaging (WBI) technologies. WBI technologies are being deployed in airport security scanners worldwide and, although their use is voluntary, have become controversial due to the naked images of passengers produced by the scanners.
GAPP Changes Proposed (April 1, 2009)
The Canadian Institute of Chartered Accountants (CICA) and the American Institute of Certified Public Accountants (AICPA) have released an exposure draft of proposed changes to their Generally Accepted Privacy Principles (GAPP), reports the Journal of Accountancy.
PCI Council Offers Tools for Compliance (April 1, 2009)
The Payment Card Industry Security Standards Council™ has developed a roadmap to PCI Data Security Standard compliance.
Parnes Joins Wilson sonsini Goodrich & Rosati (April 1, 2009)
Lydia Parnes has joined Wilson Sonsini Goodrich & Rosati. Parnes joins the firm’s Washington, DC office after 28 years with the Federal Trade Commission, most recently as the FTC’s director of the Bureau of Consumer Protection.