Data breach notifications probed by Danish DPA
Datatilsynet, the Danish data protection authority (DPA), initiated a series of reviews on public and private companies about data breach notifications to users. The probe demonstrates whether notifications to the users in case of data breach meet the EU General Data Protection Regulation (GDPR) standards. Datatilsynet emphasizes that notifications from the data controllers should be clear, understandable, and must have vital information.
Source: IAPP, Datatilsynet
Maryland’s privacy legislation
Maryland has passed the Personal Information Act, the data privacy legislation that will address the protection of Maryland consumers’ personal identifying information and will notify them if a data breach occurs. The law has provisions for notifications of consumers in case of data breach and precautions to protect their data. In the legislation, the consumers must get a notice of breach within 45 days.
Source: IAPP, Maryland General Assembly, Maryland Attorney General
Apple CEO Tim Cook uneasy with loss of privacy
At the TIME100 Summit expressed his concern about the loss of privacy with tracking as digital services and technology develops. He questioned whether the continual feeling of user surveillance could affect changes in behavior. He also expressed his interest in individuals’ ownership of their private data.
WhatsApp urged to disclose data practices by EU consumer authorities
WhatsApp has been requested for the second time by the European Commission’s Consumer Protection Cooperation Network and by national consumer authorities to disclose its use of personal data. The CPC network first sent the request in January and received the reply in March but was not convinced by the clarifications and concerns given by WhatsApp due to the company updating its terms of service and privacy notice. The company was given a deadline to reply by July.
Source: IAPP, European Commission