In this week’s Privacy Tracker global legislative roundup, the Irish Data Protection Commission is clamping down on potential violations of the EU General Data Protection Regulation. Contributors to the IAPP posted opinion pieces related to the California Consumer Privacy Act, including thoughts from the law’s co-architect. Canada’s political parties are being scrutinized for their data protection. A German-based data protection authority is preparing a GDPR fine. And the U.S. continues to see a flurry of proposed legislation related to biometric information.
THE LATEST
Despite adopting and publishing privacy policies, Canada’s political parties are still lacking sufficient data protection measures for voters, according to Canadian Privacy Commissioner Daniel Therrien.Â
More
Digital Rights Ireland Chairman TJ McIntyre said his group is considering a civil multi-party lawsuit over the unlawful data retention related to the country’s public service cards.
More
Arizona may consider new legislation to protect against the use of facial-recognition software by private firms.
More
New legislation going into effect in Montana will give parents the option to allow first responders access to a child’s school portrait in the event of an emergency.
More
In Ohio, law enforcement and school officials have shielded the personal records of the Dayton gunman that could shed light on the teen’s motives and show whether his past behavioral issues were addressed properly.
More
A bill has been proposed in Utah that would prohibit police from using fingerprints or facial scans to open a cellphone.
More
ICYMI
Mary Stone Ross, co-architect of the California Consumer Privacy Act, wrote for Privacy Perspectives discussing what she’s got her eye on as lawmakers have one more month to make changes to the CCPA.
More
For Privacy Perspectives, Annie Bai, CIPM, CIPP/US, and Peter McLaughlin, CIPP/US, examine the business risk that comes with the “verified consumer request� within the California Consumer Privacy Act.
More
Robert Gellman wrote a piece for Privacy Perspectives discussing the dilemma that’s developed as U.S. Department of Health and Human Services rulemaking seeks to increase the interoperability of electronic health records.
More
EUROPE
In Germany, the Berlin Commissioner for Data Protection and Freedom of Information plans to issue a large fine to a company for violations of the GDPR.
More
The Greek Ministry of Justice has announced a public consultation on the country’s draft law on the protection of personal data.
More
Ireland’s Department of Employment Affairs and Social Protection may become the first public body to be fined under the GDPR.
MoreÂ
The Irish Data Protection Commission has given Facebook copies of its final investigative reports for some of the 11 cases it opened against the tech company under the GDPR.
More
In the Netherlands, the Dutch data protection authority, Autoriteit Persoonsgegevens, has published a draft decision approving the Data Pro Code for digital trade association Nederland ICT.
More
Poland’s data protection authority published guidance for data controllers on data breach notification compliance.
MoreÂ
US
A class-action suit filed in the U.S. District Court for the Northern District of California claims Facebook did not properly inform users about data risks related to its single sign-on tool that led to a data breach in 2018.
More
U.S. Reps. Elijah Cummings, D-Md., and Jim Jordan, R-Ohio, will introduce a bipartisan bill on facial recognition when the House is back in session.
MoreÂ
U.S. District Judge William Alsup rejected a class-action privacy suit sought against My Pillow because the lead plaintiff, Richard Wuest, could not represent the suit.
More
The U.S. National Association of Attorneys General has pressed Congress on a change to patient privacy rules to help the fight against opioid use in the U.S.
More
