On August 20, 2021, China’s 13th Standing Committee of the National People’s Congress passed the country’s first comprehensive data protection law, the Personal Information Protection Law (the “PIPL”). The law is modeled, in part, on other jurisdictions’ omnibus data protection regimes, including the EU General Data Protection Regulation (“GDPR”). When it comes into effect on November 1, 2021, The PIPL will govern personal information processing activities carried out by companies or individuals within China. Like the GDPR, the PIPL also will apply to a company’s processing activities conducted outside of China. A company not established in China is also covered by the law if it processes personal information about…
United Arab Emirates to introduce new data protection law, a step towards a UAE data protection regime that would provide adequate level protection for the purposes of data transfers from the EU and other regulated jurisdictions.
Pres. Biden to nominate to FTC Alvaro Bedoya, Georgetown Law professor and founding director of GU’s Center on Privacy & Technology where his work has focused on surveillance technologies including facial recognition.
.@DPCIreland to fine #WhatsApp Ireland Ltd €225 million for failure to meet the #transparency requirements of #GDPR Articles 12-14. This fine increases the €30-50 million proposed in the DPC’s December draft decision. https://edpb.europa.eu/system/files/2021-09/dpc_final_decision_redacted_for_issue_to_edpb_01-09-21_en.pdf