PH Privacy

Fashion ID: Website Operators Jointly Liable For Data Collection and Transmission Through Social Media Plug-Ins
On July 29, 2019, the European Court of Justice (the “ECJ”) decided that website operators are joint controllers, and thus jointly liable, with plug-in providers when embedding their social media buttons (or other plug-ins) that collect and transmit personal data.
Data Collection Moves Fast: the FTC Seeks Comment on Modernizing the COPPA Rule
The FTC seeks comment on the Rule in light of myriad new ways in which technology allows for personal information to be collected, and has issued specific questions to direct the conversation.
New York Senate Considers Sweeping New Privacy Bill That Would Create a Fiduciary Duty to Consumers
The New York Senate recently took up a paradigm-shifting data privacy bill intended to expand New Yorkers’ rights to control how companies use their personal data, and to force tech companies to make fundamental changes to the way they do business with the state’s residents.
British Airways faced with record fine of £183.39M for personal data breach
The UK’s supervisory authority, acting as case lead on behalf of other EU Member States, has today released its notice of intention to fine British Airways £183.39M for infringements of the General Data Protection Regulation (GDPR).
The European Commission set to take the next step towards cyber regulation
The Cybersecurity Act (the “Act”) will come into effect in Europe on 27 June 2019. The threat of cybercrime and the risks relating to cybersecurity are undoubtedly on the rise. One of the key drivers behind the Act was said to be to help individuals build trust in the devices they use every day, with the idea being that cybersecurity becomes simply another factor consumers take into account when choosing their device - alongside the usual considerations such as price, durability and appearance. This mirrors one of the key drivers behind the GDPR: individuals being given more control over how their personal data is processed.
FTC Zeroes in on False Claims of Certified Participation in Cross-Border Privacy Frameworks
The Federal Trade Commission (“FTC”) announced last week that it has issued a warning letter to more than a dozen unnamed companies for misrepresenting—on their websites, privacy policies, and other public statements—that they are certified participants in the U.S.-EU Safe Harbor and the U.S.-Swiss Safe Harbor agreements.
EU Commission Determined To Raise Awareness of GDPR Among EU Data Subjects
The European authorities want to encourage individuals to take control over the use of their personal data – and, it seems, stop tech companies (be they mobile app providers, internet service providers and social media companies) from gathering excessive amounts of personal data.
UK Information Commissioner calls time on GDPR non-compliance
The message is clear – any unwritten grace period for compliance is over. It is no longer enough for companies to say they will or are taking steps to comply; the accountability principle is live – you either comply or risk being caught out and subject to the sanctions that the regulators are not afraid to impose.
Brexit Update – What does this mean for data privacy?
On 29 March 2019, MPs in the UK rejected the government’s Withdrawal Agreement with a vote of 344 to 286, a margin of 58. This means the UK has missed an EU deadline to delay Brexit to 22 May and faces a new deadline of 12 April to come up with a way forward or leave without a deal.
1 2 3 4 5 6 >