Voice of Nigeria reports: The Nigeria Data Protection Commission (NDPC) has announced a collaboration with the Federal Ministry of Health and Social Welfare to establish a robust data protection framework within the healthcare sector. This was revealed in a statement issued on Thursday in Abuja by Mr. Itunu Dosekun, Head of the NDPC Media Unit….
Category: Legislation
South Africa Introduces Mandatory e-Portal Reporting for Data Breaches
Dan Cooper, Benjamin Haley, Deon Govender, Ahmed Mokdad, and Mosa Mkhize of Covington and Burling write: On April 7, 2025, South Africa’s Information Regulator announced a new requirement for organizations to report data breaches—referred to under local law as “security compromises”—via an online eServices Portal. The announcement marks a significant procedural shift in how companies must comply with…
Queensland has a new breach notification law going into effect July 1, 2025
Claire Doneley reports: On 4 December 2023, the Queensland Parliament gave assent to the Information Privacy and Other Legislation Amendment Act 2023 (Qld) (Act), with privacy reforms to the Information Privacy Act 2009 (Qld) (IP Act) to commence 1 July 2025. You can read more about that here. In Queensland it has not been compulsory for agencies to notify the…
2024 Year in Review: Data Breach Litigation
Seen at Wilmer Hale: One of the main risks for a company in the event of a data breach is the threat of litigation. Data breach litigation continued to proliferate in 2024, as it has in prior years. In the past year, plaintiffs continued to seek relief following data breaches under state common-law doctrines, and…
UK data centres, hospitals, and energy companies targeted by new cybersecurity laws
Georgia Sweeting reports: The UK government has announced the full scope of its upcoming Cyber Security and Resilience Bill, which aims to strengthen the country’s digital defences and reduce the growing risks posed by cyber threats. Set to be introduced later this year, the bill will place tougher cybersecurity requirements on organisations that provide essential services,…
China Regulator Proposes Amendments to Cybersecurity Law
Hunton Andrews Kurth writes: On March 28, 2025, the Cyberspace Administration of China issued draft amendments to China’s Cybersecurity Law (“Draft Amendment”) for public comment until April 27, 2025. The Draft Amendment aims to harmonize relevant provisions of the Personal Information Protection Law (“PIPL”), Data Security Law (“DSL”) and Law of Administrative Penalties, all of…