Agencies must get better at privacy, New Zealand Privacy Commissioner Michael Webster said Tuesday as his office published reports on how government agencies protected personal information for the 2023 census and COVID-19 vaccination program, as well as an independent investigation of allegations of misuse of 2023 census information.
South Korea’s privacy regulator temporarily suspended DeepSeek on Saturday, the Personal Information Protection Commission (PIPC) said Monday.
South Korea's Personal Information Protection Commission fined software company Sectana Co., Ltd. $15,440 for failing to protect consumers from data breaches and not reporting the breaches in a timely manner.
The Korean Ministry of Trade, Industry and Energy reportedly temporarily blocked access to Chinese AI tool DeepSeek Wednesday over data protection concerns. The government decided that the way DeepSeek processes personal information and transfers it to third parties is opaque, it said. The ministry said it plans to allow access once DeepSeek strengthens its personal data protections.
Thailand’s Personal Data Protection Committee (PDPC) released clarifications on notification requirements for data breaches to assist organizations aiming to comply with data protection laws, DLA Piper staff noted in a Privacy Matters blog Monday.
The New Zealand Office of the Privacy Commissioner (OPC) is writing guidance for organizations on requirements of an upcoming amendment to the country’s privacy law, the office said Friday.
Digital ministers from the Association of Southeast Asian Nations (ASEAN) unveiled three privacy guides this week that detail new policies and clarify existing regulations. Singapore's Personal Data Protection Commission announced their release Friday.
South Korea's Personal Information Protection Commission and the California Privacy Protection Agency agreed to cooperate on safeguarding the privacy and personal information of their citizens and consumers and to recognize the need for better cross-border collaboration. Among other things, they will now share best practices on procedures and methods; share annual enforcement plans; and enable meetings between their respective staff members.
India's Ministry of Electronics and Information Technology published draft rules for the Personal Digital Data Protection Act of 2023 (English version begins on page 28). They contain guidance related to key parts of the act, including what notice must be given by data fiduciaries (controllers) to data principals (subjects) to obtain consent for the use of personal information; what steps fiduciaries should take to keep data secure; and how to deal with data breaches. The rules also address fiduciaries' responsibilities regarding the processing of children's personal data; the rights of data subjects; and the establishment of a Data Protection Board. Comments on the proposed rules are due Feb. 18.