Having trouble receiving the Privacy Advisor in your inbox? Click here for troubleshooting tips.
Global Privacy Dispatches
ITALY—Garante Addresses Medical Research, Welfare Positions Issues
The Garante, Italy’s Data Protection Authority (IDPA), has released three decisions related to research and a register of welfare positions.
ITALY—Garante Releases Enforcement Activity Report
The Garante, the Italian Data Protection Authority (IDPA), has released information on enforcement activity in Italy in 2013 and its relevant plan of inspections for the first semester of 2014.
CANADA—Anti-Spam Legislation To Come Into Force
After much discussion and consultation on the accompanying Regulations, Canada’s anti-spam legislation is about to take full effect. While the CRTC had previously published its regulations on March 28, 2012, the Electronic Commerce Protection Regulation was finally published on December 4, 2013.
UK—Government Department Fined 185,000 GBPs After Terrorist Incident Data Sold at Auction
A government department has been fined after a filing cabinet containing personal information relating to victims of a terrorist incident was sold at auction.
NEW ZEALAND—Privacy Reflections/Predictions for 2014
The high-profile privacy breaches of 2012-13 have shed an unprecedented light on personal information in New Zealand. Outgoing Privacy Commissioner Marie Shroff is leaving the role at a time when protecting personal information, a cause she has actively championed over the past 10 years, is at the forefront of public awareness and is top-of-mind for policy analysts, legislators and businesses alike.
NEW ZEALAND—Will the Tide Turn in 2014?
Last year was not a good one for New Zealand privacy-wise. While Australia forged ahead enacting legislation covering issues such as cross-border controls for personal data and introducing measures to implement breach notification, the government in New Zealand, by contrast, has been dragging its feet and instead adopted a raft of measures diminishing existing privacy protections. This article briefly reviews developments in New Zealand in 2013 and ventures some predictions as to what may lie in store in 2014.
AUSTRALIA—Australia Legislates for Privacy by Design
In March, Australia will be overhauling its privacy laws. One of the key features of the new regime means Australia will become one of the first jurisdictions to effectively legislate for the concept of Privacy by Design.
Notes From the Executive Director (April 1, 2010)
In a recent Forbes article, Bruce Schneier dismissed claims that the age of privacy is over, asserting that people, even young people, still care about it. What’s different, he said, is that while the privacy attitudes of yesterday were aligned with the notion of secrecy, today privacy is about control. “A privacy failure is a control failure,” he said.
Asia-Pacific Privacy Law: assurance via certification and audit (April 1, 2010)
As discussed in previous articles, many Asia-Pacific countries have implemented privacy statutes. While each has its own unique provisions, they tend to utilize the same core principles as the APEC Privacy Framework (2005). Corporations that operate in the region must comply with the statutes for each country in which they do business and will also want to demonstrate their commitment to the protection of personal information.
Security, fines, and systems-based regulation—the UK’s new legal battleground (April 1, 2010)
The regulation of data protection in the UK enters a new era on 6 April when the Information Commissioner’s power to levy fines of up to £500,000 for breaches of the Data Protection Act (DPA) comes into effect. While the legislation introducing the fine refers to breaches of the data protection principles, we can expect that the fine will be targeted mostly at security breaches and data loss and the other terrors addressed by the seventh data protection principle.
Privacy 50 years from now (April 1, 2010)
How has privacy law evolved in the last 50 years? What will it look like in 2060? On January 29, the California Law Review gathered together some of the world’s top privacy law scholars and practitioners to explore these questions. The symposium, “Prosser’s Privacy at Fifty,” held at UC Berkeley School of Law, celebrated the fiftieth anniversary of Dean William Prosser’s landmark article, “Privacy,” 48 California Law Review 383 (1960), among the most influential law review articles in history.
Anything but irrational (April 1, 2010)
Dan Ariely is the author of Predictably Irrational: The Hidden Forces That Shape Our Decisions
, James B. Duke Professor of Behavioral Economics at Duke University, and visiting professor at the MIT Media Lab. He will present a keynote at the IAPP Global Privacy Summit on April 20. In this Privacy Advisor
Q&A, Dan discusses how his research applies to decisions we make about privacy.
Perfect remembering? Forget about it. (April 1, 2010)
The Privacy Advisor
is pleased to bring you this Q&A with Viktor Mayer-Schönberger, author of Delete: The Virtue of Forgetting in the Digital Age
, and associate professor of public policy and director of the Information and Innovation Policy Research Centre at the LKY School of Public Policy/National University of Singapore. He will present a keynote at the IAPP Global Privacy Summit on April 21.
Cooperation and privacy regulation (April 1, 2010)
When it comes to meeting the challenges of the decade ahead, privacy regulators “cannot function in isolation.” That was one of the key messages Canada Privacy Commissioner Jennifer Stoddart shared in her address, “The Future of Privacy Regulation,” at the 11th Annual Privacy and Security Conference.
Schools team with ICO to teach kids Internet safety (April 1, 2010)
Schools across the UK are teaming up with the Information Commissioner’s Office for a national educational program about online safety. The “i in online” initiative aims to highlight the risks to youths online and provides free interactive training sessions for staff, parents, and children at secondary schools and youth clubs on how to best manage their online privacy.
Consultations on emerging technologies (April 1, 2010)
Earlier this year, the privacy commissioner of Canada, Jennifer Stoddart, announced that her office would host consultations on a number of topics that could create serious privacy challenges for consumers.
EC updates standard contractual clauses (April 1, 2010)
The European Commission (EC) adopted Decision 2010/87/EU on 5 February, updating the standard contractual clauses for international transfers to data processors outside the EU/EEA (hereinafter: decision). The new model clauses incorporate information security requirements and sub-contracting and liability concerns by striking a balance between company concerns and the rights of data subjects.
Court ruling on privacy aspects of geo-information Internet platform (April 1, 2010)
Along with forthcoming services like Google Maps, Google StreetView, Google Earth, and the like, comes the new era of geo-information Web sites. By combining electronic maps with photos and data such as street names, company addresses, descriptions of public buildings, and other points of interest—even the menu of the restaurant at the corner—comprehensive "virtual" realities are created.
10 in 2010: A chat with Alan Chapell, president of Chapell & Associates, LLC (April 1, 2010)
In our continuing series to celebrate the IAPP’s tenth anniversary, this month we check in with long-time member and prolific Privacy Advisor contributor Alan Chapell. Prior to his career in privacy, Alan made a living as a musician. Today he parlays his creative energy into his consulting firm. So, how does one go from rockin’ out on stage with the likes of Echo and the Bunnymen to being appointed privacy ombudsman on some of the largest bankruptcy cases in the U.S.?