Weekly Privacy News Update – Episode 21


Norway’s DPA comments on the proposed EU Digital Services Act

Norway’s data protection authority, Datatilsynet, sent their input on the EU’s proposed Digital Services Act to the European Commission (EC). Datatilsynet acting Director Janne Stang Dahl suggested the EC conduct additional research on restrictions on behavioral advertising and the sharing of personal data between services and companies. The Datatilsynet behavioral marketing to children should be banned in the final DSA.

Source: IAPP, Datatilsynet

German state DPA announces updated cookie guide

The Baden-Württemberg Commissioner for Data Protection and Freedom of Information publishes a third-party cookie FAQ document for website operators and mobile app developers. Commissioner Stefan Brink noted an encroachment on civil rights, commenting that cookies and other trackers have turned the internet and smartphones “into intensively monitored spaces.” The FAQ gives examples of how common cookie consent banner errors can be corrected, along with other examples and advice for consent banners, data protection, and cookie use

Source: IAPP, German DPA

Proposed bill to strengthen California’s data broker law

State Sen. Josh Becker, D-Calif., introduced a bill to enhance California’s data broker laws. Senate Bill 1059 would set stricter registration and reporting requirements for data brokers and also increase penalties for noncompliance. The bill would also expand the definition of data broker to include businesses that share personal data, even if they don’t sell it. The bill will “better protect Californians from potential misuse of our personal data,” Becker said, adding that brokers consider personal data a “prized commodity.”

Source: IAPP, Sen. Josh Becker, California Legislative Information

Children’s privacy lawsuit moves forward in UK Court

The UK High Court of Justice permitted a class-action style privacy lawsuit to proceed against TikTok over its handling of children’s data. The lawsuit was filed in December 2020 and seeks damages on behalf of millions of children for unlawful processing of their information. A TikTok spokesperson said the claims “lack merit,” and the company has “robust policies, processes and technologies in place to help protect all users, and our teenage users in particular.” A similar lawsuit was filed against TikTok in the Netherlands in 2021.

Source: IAPP, TechCrunch

Masha Komnenic CIPP/E, CIPM, CIPT, FIP
More about the author

Written by Masha Komnenic CIPP/E, CIPM, CIPT, FIP

Masha is an Information Security and Data Privacy Specialist and a Certified Data Protection Officer. She has been a Data Protection Officer for the past six years, helping small and medium-sized enterprises achieve legal compliance. She has also been a privacy compliance mentor to many international business accelerators. She specializes in implementing, monitoring, and auditing business compliance with privacy regulations (HIPAA, PIPEDA, ePrivacy Directive, GDPR, CCPA, POPIA, LGPD). Masha studied Law at Belgrade University, and she passed the Bar examination in 2016. More about the author

Related Articles

Explore more resources