Privacy Advisor

Having trouble receiving the Privacy Advisor in your inbox? Click here for troubleshooting tips.

Global Privacy Dispatches

FRANCE—Expansion of CNIL Investigation Powers Confirmed
In the past few years, the French data protection authority (CNIL) has made itself known for its on-site investigation powers by coming unannounced to the premises of businesses to perform interviews and searches in order to assess compliance with the French Data Protection Act. Read More
FRANCE—The End of Aggressive Cold-Calling?
The new consumer act of March 17 is now in force. Among its key measures, it plans the creation of a centralized do-not call list. Read More
HUNGARY—Hungarian DPA Suggests Refinements in IT Policies
In a recent case, the Hungarian Authority for Data Protection and Freedom of Information (Nemzeti Adatvédelmi és Információszabadság Hatóság or NAIH) investigated a case where a company had to access its employee’s laptop for compliance reasons and imposed a fine of HUF 1,500,000 (approximately 5,000 euros) for unlawful data processing. Read More
UK—Marketing Companies Punished for Hiding Identity While Making Nuisance Calls
The Information Commissioner's Office (ICO) has ordered two telephone marketing companies to change their practices after more than 100 complaints were made to the ICO that the companies were making nuisance marketing calls. Read More
UK—British Pregnancy Advice Service Fined for Serious Data Breach
The British Pregnancy Advice Service (BPAS) has been fined 200,000 GBPs after a serious breach of the Data Protection Act (DPA) revealed thousands of people's personal details to a malicious hacker. Read More
UK—ICO Publishes Updated PIA Guidance
The UK Information Commissioner's Office has published its updated Privacy Impact Assessment (PIA) Code of Practice to help organisations comply with their data protection law obligations when they change the way that they use personal data. Read More
ITALY—Garante Addresses Medical Research, Welfare Positions Issues
The Garante, Italy’s Data Protection Authority (IDPA), has released three decisions related to research and a register of welfare positions.

Read More
ITALY—Garante’s Provision on Mobile Payment Services
On December 12, 2013, the Italian Data Protection Authority (Garante) issued a draft general provision on the processing of personal data in the context of mobile remote payment services. This new provision sets the rules for the processing of information about users who purchase digital services and products and pay for them remotely via their phone bills. Read More
ITALY—Garante Addresses Medical Research, Welfare Positions Issues
The Garante, Italy’s Data Protection Authority (IDPA), has released three decisions related to research and a register of welfare positions. Read More
Truste Acquires Haute Secure (May 1, 2009)
Privacy trustmark provider TRUSTe has acquired Haute Secure. Haute Secure develops Web site scanning and anti-malware technology. The purchase allows TRUSTe to expand its services; among other additions, the company will begin offering reputation and anti-malware scanning services for browsers, Web sites, and online communities.
Enterprise data management: the privacy professional's role in this emerging trend (May 1, 2009)
Enterprise data management is about breaking down the silos that can constrain the success of an organization's overall data governance efforts. Maria Villar explains the role of the privacy professional in the emerging trend toward EDM.
Employee monitoring technologies and data privacy - no one-size-fits-all globally (May 1, 2009)
When it comes to protecting intellectual property, ensuring productivity, and identifying bad behavior, the tools available to employers are many and powerful. But their use poses legal risks and challenges. In this article, Lothar Determann and Lars Brauer shed light on the legal environment surrounding employee monitoring. This is the first article in a Privacy Advisor series on workplace and employee privacy. In future months we'll explore the privacy-related concerns surrounding background checks, employee surveillance, safekeeping HR data, and more.
AEPD Releases 2008 Report (May 1, 2009)
The director of the Spanish Agency for Data Protection (AEPD), Artemia Rallo, has released his annual report for 2008. The agency filed 2,362 claims in 2008, an increase of 45 percent over 2007 figures. The sectors garnering the highest number of claims were telecommunications, financial, and video. Complaints related to Internet search engines saw the biggest increase overall.
VLRC on CCTV (May 1, 2009)
The use of closed-circuit television cameras (CCTV) in public places has grown rapidly in Melbourne and other areas of Australia, prompting the Victorian Law Reform Commission (VLRC) to propose regulations on its use. “Surveillance affects all Victorians, whether we are shopping, catching public transport, driving on major roads, or attending a sporting event,” said VLRC chairperson Neil Rees.
New Privacy Blogs (May 1, 2009)
Two new privacy blogs have entered the sphere. THE COGITATIO PRIVATIM BLOG features regular postings from Camouflage Software’s recently CIPP/C-certified Director of Privacy Research David Morgan.
Curran Heads NAI (May 1, 2009)
Charles Curran is the new executive director and general counsel of the Network Advertising Initiative (NAI). Curran joins the organization after a 12-year stint as AOL’s chief counsel for policy and regulatory matters. Before AOL he was a trial attorney for the U.S. Department of Justice.
Wolf joins Hogan & Hartson (May 1, 2009)
Christopher Wolf has joined Hogan & Hartson’s Washington, DC office as a partner. Wolf will co-chair the firm’s privacy group.
OPC Publishes DPI Research (May 1, 2009)
The privacy commissioner of Canada has released a series of essays on the subject of deep packet inspection. The essays are intended to give Canadians more insight into a method that the Office of the Privacy Commissioner (OPC) has received a number of complaints about.