The GDPR’s Article 5 data-processing principles will likely remain intact, but there’s potential for compromise on revisions to other data-processing requirements in forthcoming negotiations, a center-right digital policy advisor for the European Parliament said Friday at the Privacy + Security Forum spring academy.
The global health care and life sciences sectors face major regulatory challenges in the U.S. and Europe from data transfer and cybersecurity laws, speakers said Thursday during an IAPP webinar.
Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching on the title or by clicking on the hyperlinked reference number.
EU plans for cutting red tape in measures such as the General Data Protection Regulation (GDPR) and AI Act, if done pragmatically, will help rather than hamper innovation, lawyers and academics told us.
An Irish Data Protection Commission (DPC) decision to fine TikTok $600 million for General Data Protection Regulation (GDPR) breaches (see 2505020001) highlights the increasing scrutiny on transfers to and from a broader range of countries than just the U.S., EU and U.K., IAPP Research Director Joe Jones said Friday.
TikTok's transfer of Europeans' personal data to China violated the EU General Data Protection Regulation (GDPR), the Irish Data Protection Commission (DPC) announced Friday. It fined the social media platform $600 million (530 million euros) and ordered it to clean up its act within six months or face suspension of its data transfers to China. TikTok said it will appeal.
The increased number of massive data leaks in France last year calls for tightening security when processing large volumes of data, French privacy watchdog CNIL said Wednesday. The incidents involved several million people and both public and private actors, it noted.
Microsoft supports regulatory efforts to simplify compliance with privacy laws globally, said Cari Benn, the company’s associate general counsel-privacy, accessibility and regulatory affairs, in an interview last week at the IAPP Global Privacy Summit. Meanwhile, as Microsoft embraces AI, it's striving to apply privacy principles to the emerging technology.
The U.K. Information Commissioner’s Office (ICO) plans to “relax” online advertising-related privacy enforcement, using the GDPR's "legitimate interest" principles as justification, Executive Director-Regulatory Risk Stephen Almond told us Thursday at the IAPP Global Privacy Summit in Washington.
European Data Protection Supervisor Wojciech Wiewiorowski is worried about what's going on in the U.S. and its potential effect on the EU-U.S. Data Privacy Framework (DPF), he said Wednesday at a streamed Brussels briefing on the EDPS' 2024 annual report.