Privacy Advisor

Having trouble receiving the Privacy Advisor in your inbox? Click here for troubleshooting tips.

Global Privacy Dispatches

FRANCE—Expansion of CNIL Investigation Powers Confirmed
In the past few years, the French data protection authority (CNIL) has made itself known for its on-site investigation powers by coming unannounced to the premises of businesses to perform interviews and searches in order to assess compliance with the French Data Protection Act. Read More
FRANCE—The End of Aggressive Cold-Calling?
The new consumer act of March 17 is now in force. Among its key measures, it plans the creation of a centralized do-not call list. Read More
HUNGARY—Hungarian DPA Suggests Refinements in IT Policies
In a recent case, the Hungarian Authority for Data Protection and Freedom of Information (Nemzeti Adatvédelmi és Információszabadság Hatóság or NAIH) investigated a case where a company had to access its employee’s laptop for compliance reasons and imposed a fine of HUF 1,500,000 (approximately 5,000 euros) for unlawful data processing. Read More
UK—Marketing Companies Punished for Hiding Identity While Making Nuisance Calls
The Information Commissioner's Office (ICO) has ordered two telephone marketing companies to change their practices after more than 100 complaints were made to the ICO that the companies were making nuisance marketing calls. Read More
UK—British Pregnancy Advice Service Fined for Serious Data Breach
The British Pregnancy Advice Service (BPAS) has been fined 200,000 GBPs after a serious breach of the Data Protection Act (DPA) revealed thousands of people's personal details to a malicious hacker. Read More
UK—ICO Publishes Updated PIA Guidance
The UK Information Commissioner's Office has published its updated Privacy Impact Assessment (PIA) Code of Practice to help organisations comply with their data protection law obligations when they change the way that they use personal data. Read More
ITALY—Garante Addresses Medical Research, Welfare Positions Issues
The Garante, Italy’s Data Protection Authority (IDPA), has released three decisions related to research and a register of welfare positions.

Read More
ITALY—Garante’s Provision on Mobile Payment Services
On December 12, 2013, the Italian Data Protection Authority (Garante) issued a draft general provision on the processing of personal data in the context of mobile remote payment services. This new provision sets the rules for the processing of information about users who purchase digital services and products and pay for them remotely via their phone bills. Read More
ITALY—Garante Addresses Medical Research, Welfare Positions Issues
The Garante, Italy’s Data Protection Authority (IDPA), has released three decisions related to research and a register of welfare positions. Read More
Experts: ECPA Reform Is Essential (September 24, 2010)
The experts agree: 24 years is long enough without a revision of the Electronic Communications Privacy Act (ECPA).
Notes from the Executive Director (September 1, 2010)
We are busy with final preparations for the upcoming Privacy Academy, and I am very excited to let you know that in addition to FTC Bureau of Consumer Protection Director David Vladeck and European Parliamentarian Alexander Alvaro, media commentator Bob Garfield will join us to deliver a keynote address.
Practical strategies for creating a privacy culture in your organization (September 1, 2010)
Some of the most common privacy breaches happen when personal information is stolen, lost or mistakenly disclosed. Most of these breaches could have been avoided if the individual involved simply thought about privacy before acting. What’s needed is an environment, or “culture,” where protecting clients’ privacy is top of mind for every employee whenever that person handles personal information—a privacy culture.
CANADA: OPC report on mortgage broker audit (September 1, 2010)
In her 2009 Annual Report to Parliament, the Privacy Commissioner of Canada reported on an audit of selected mortgage brokers conducted by her office. Within a few months during 2008, 14 mortgage brokers in Ontario advised the Office of the Privacy Commissioner (OPC) of breaches involving personal information, raising concerns about the privacy practices of these mortgage brokers.
GERMANY: Additional requirements for data transfers to Safe Harbor recipients (September 1, 2010)
German data protection authorities have recently issued guidelines on the transfer of personal data from Germany to the U.S. under the U.S. Department of Commerce Safe Harbor framework (Safe Harbor Principles).
GERMANY: Draft law regarding Google Street View (September 1, 2010)
On July 9, the German Bundesrat (i.e., the Assembly of the Bundesländer) adopted a draft law that aims to extend the Federal Data Protection Act to usage of people's images and that of their homes in online street panoramas such as Google Street View.
ISRAEL: ILITA imposes heavy fine, heavier fines soon to come (September 1, 2010)
The Information, Law and Technology Authority (ILITA) imposed a fine of 258,000 NIS (about $67,000) for an illegal use and distribution of a database encompassing data on Israeli citizens.
Maureen Cooney joins Sprint (September 1, 2010)
Maureen Cooney, CIPP, CIPP/G, has joined Sprint as its deputy chief privacy officer. In her new role, Cooney will lead Sprint’s privacy office.
Name the vanguard (September 1, 2010)
Do you know someone whose work in the privacy profession outshines that of most? Nominate that person for the IAPP Privacy Vanguard Award. Each year, the IAPP honors the individual professional who has best demonstrated outstanding leadership, knowledge and creativity in the field of privacy and data protection with this award.
Privacy Maturity Model comments welcome (September 1, 2010)
The Privacy Task Force of the Canadian Institute of Chartered Accountants (CICA) and the American Institute of Certified Public Accountants (AICPA) is inviting comments on its newly developed Privacy Maturity Model (PMM).
Broaden your privacy portfolio (September 1, 2010)
Seven thousand members. Hundreds of volunteers. The privacy profession and the IAPP continue to experience rapid growth. But we need your help! Be one of the hundreds of IAPP members worldwide who are actively engaged in building the privacy profession as advisory board members with the IAPP.
Surveilled (September 1, 2010)
This year's delegate tour—our largest ever—convened on Berlin, Brussels and Paris in June.