Lukasz Olejnik, an independent cybersecurity and privacy researcher, writes that some provisions in the Indian Data Protection Act of 2019, “like having to store sensitive data in systems that are located within the subcontinent, may put constraints on certain business practices and are considered more controversial by some.” One feature of the bill that’s received less…
Category: Legislation
Germany Publishes Draft Regulation on the Reimbursement of Digital Health Applications
Ulrike Elteste, Kristof Van Quathem and Anna Oberschelp de Meneses of Covington & Burling write: Germany recently enacted a law that enables state health insurance schemes to reimburse costs related to the use of digital health applications (“health apps”), but the law requires the Federal Ministry of Health to first develop the reimbursement process for…
Ottawa considering ‘significant and meaningful’ compensation for privacy breach victims
Catharine Tunney reports: Canadians who fall victim to privacy breaches could soon be eligible for some sort of compensation as the Liberal government works on introducing a new set of online rights. Mandate letters for Innovation, Science and Industry Minister Navdeep Bains and Heritage Minister Steven Guilbeault say they’ve been asked by Prime Minister Justin Trudeau…
Vietnam government drafts decree to protect personal data
Vietnam News/ANN reports: The Ministry of Public Security is drafting a governmental decree on personal data protection in order to protect the legal rights and interests of individuals and organisations. Vietnam is facing increasing cases of personal data theft, with more entities collecting, analysing and processing data for different purposes without notifying customers. […] Several…
Rutledge issues data breach advisories to Arkansas medical providers
Fox16 reports: Arkansas Attorney General Leslie Rutledge today sent an advisory letter to medical licensees throughout Arkansas about their duty to report a data breach under the Personal Information Protection Act (PIPA). The PIPA reporting guidelines, amended in July 2019, mandate that individuals, agencies and businesses notify the Attorney General’s Office at the same time as affected…
Bill to Establish Data Protection Agency Introduced in Congress
From the good folks at EPIC.org: Representatives Eshoo and Lofgren have introduced the Online Privacy Act, a comprehensive framework for data protection in the United States. The bill would establish a data protection agency, create meaningful privacy safeguards for consumers, and hold companies accountable for the collection and use of personal data. The bill is based on Fair…