As 2020 begins, Congress continues on a path toward providing consumers with greater protections for their data, lawmakers have exhibited a rare willingness to work toward consensus on the issue. Bills introduced by members of Congress in 2019 often shared more in common than not. But a hearing (https://www.commerce.senate.gov/2019/12/examining-legislative-proposals-to-protect-consumer-data-privacy) held late in the year by the Senate Committee on Commerce, Science and Transportation revealed differences that remain to be resolved before any bill will pass. The Committee brought together a diverse panel of five witnesses that included former FTC Commissioners, Vice Presidents of major technology companies and a representative of a civil liberties organization. The panelists largely agreed…
The European Data Protection Board (EDPB) has issued new guidelines about the intersection between online services and processing based on the necessity of performance of a contract.
The Dutch Data Protection Authority has announced a new policy for determining the fines to be imposed for violations of the General Data Protection Regulation (GDPR) and its national implementing act. The policy reaffirms the importance given by the GDPR to the Principle of Accountability.
Achieved Compliance joined regulators, policymakers and privacy practitioners gathered in Washington on March 27-28 for the International Association of Privacy Professionals’ (IAPP) Annual Summit.
“Legitimate business interest” is one of several legal bases to process data articulated by the EU’s General Data Protection Regulation (GDPR) – and probably the least understood.