Global News Roundup: April 5–12, 2021

In this week’s global legislative roundup, IAPP Staff Writer Joe Duball provided an update on the Florida Senate’s efforts to pass privacy legislation. Data protection authorities from around the world have taken action in the wake of Facebook’s data breach involving more than 530 million users. The European Data Protection Board and European Data Protection Supervisor offered a joint opinion on privacy associated with a potential EU vaccine passport scheme. And Belarus is the latest country to take up privacy legislation.

THE LATEST

The Brazilian government submitted guidance on the minimum requirements and obligations necessary for information security and privacy in contracting for IT solutions under the General Data Protection Law.
More

In an op-ed for the South China Morning Post, Wang Xiangwei discusses how China’s draft Personal Information Protection Law could potentially alleviate some privacy issues but may not stand up against national security and business matters.
More

Russia’s Federal Antimonopoly Service fined Post Bank 300,000 rubles for sending advertising messages without retaining consent from the recipient prior to receiving advertisements.
More

ICYMI

For Privacy Tracker, IAPP Staff Writer Joe Duball detailed the revisions to Florida Senate Bill 1734, which killed the private right of action and changed which companies would be subject to the law.
More

ENFORCEMENT

Data protection authorities in France, Italy, Hong Kong and Russia each ordered Facebook to come forward with details regarding the breach and reassess its data security measures. Meanwhile, Ireland’s Data Protection Commission released a statement saying it is in the process of gathering information on the incident, and Turkey’s data protection authority, KiÅŸisel Verileri Koruma Kurumu, launched an investigation into the incident, Hürriyet Daily News reports.

Former Vice President of the European Commission Viviane Reding raised questions about the Luxembourg data protection authority’s handling of allegations against Amazon regarding the company’s data practices, Politico reports.
More

CANADA

The Royal Canadian Mountain Police unit in Saskatchewan intends to take part in the Violence Disclosure Protection Act, also known as Clare’s Law, according to Yahoo News.
More

EUROPE

The European Data Protection Board and European Data Protection Supervisor released a joint opinion on a proposal for Digital Green Certificates to “facilitate free movement during the COVID-19 pandemic.”
More

The European Parliamentary Research Service released a report on private sector data transfers between the EU and U.K. following Brexit.
More

CNBC reports on how the EU General Data Protection Regulation is influencing other countries as the law reaches its three-year anniversary.
More

Belarus’ House of Representatives adopted a draft personal data protection law, Pravo.by reports. The draft law defines categories of personal data, determines the process for cross-border transfers, establishes the creation of an authorized oversight body and sets responsibilities for violations.
More

A bill enabling the creation of a database for an automated biometric identification system has been approved by the Estonian government, Estonian Public Broadcasting reports.
More

Data protection authorities for federal and state governments in Germany called for a temporary federal law related to the use of vaccine passports.
More

US

The U.S. 21st Century Cures Act took effect April 5, Health IT Buzz reports. Health care providers, health IT developers and health information networks must now follow the law, which defines “information blocking� and establishes penalties for practices that interfere with the access to, exchange of or use of electronic health information.
More

Oregon state senators introduced Senate Bill 293, which would implement privacy measures for IT services in the state government, Government Technology reports.
More