German Data Protection Authority. No Grace Period on EEA Data Transfers to the US On July 28, 2020, German supervisory authorities (Datenschutzkonferenz, the “DSK”) issued a statement emphasizing that organizations that rely on Standard Contractual Clauses (“SCCs”) or Binding Corporate Rules (BCRs”) must implement additional safeguards to lawfully transfer personal data to third countries. In keeping with the Court of Justice of the European Union CJEU’s judgment of 7/16, and the European Data Protection Board EDPB FAQ Memo of 7/20, the German DSK statement affirmed it’s intent of enforcing GDPR under the framework of the Court’s ruling, and with no grace period to comply. The highlights of the German DSK statement are: Organizations receiving transfers of EU Personal Data outside of the European Economic Area…
(1/2) Senate Republicans @SenatorWicker, @SenJohnThune, @VoteMarsha & @SenatorFischer introduced consumer #privacy bill requiring businesses to honor consumer #data rights, obtain consent for data transfer, be more transparent abt data collection, provide for access & correction
Today, Brazil’s President signed a bill from Brazil’s Congress bringing the new Brazilian data protection law into effect retroactive to August 16, 2020.The #LGPD’s sanctions provisions will apply beginning August 1, 2021.
.@guardian reports that Zenhua Data -a Chinese tech company with reported links to military and intelligence networks- swept into a database based mostly on open source data from social networks including personal details of 2.4 million people worldwide. https://www.theguardian.com/world/2020/sep/14/zhenhua-data-full-list-leak-database-personal-details-millions-china-tech-company