Last Week in Privacy- July 17, 2018

Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts will give you the top international privacy industry highlights from last week.

Here’s a quick recap of last week’s top five privacy industry headlines:

  1. Austria now holds the presidency of the Council of the European Union, and has already issued revisions to the proposed ePrivacy Regulation. The revisions include updated provisions around the processing of metadata, a full deletion of a provision about browser privacy settings, and a call for a “more future-proof” regulation that would provide flexibility for technological developments in artificial intelligence and the Internet of Things. The Council’s telecommunications committee is expected to convene on July 17th to discuss Austria’s proposed revisions.
  2. In the wake of the passage of the California Consumer Privacy Act of 2018, opponents of the law are gearing up to make a push for changes to the law before it goes into effect in 2020. In fact, recently, California lawmakers already voted to issue some “technical corrections” to the law, and the California legislature is expected to begin work on those corrections next month. Organizations such as the Association of National Advertisers have written to lawmakers urging them to hold off on such amendments until businesses have had more time to digest and respond to the law.
  3. The state of Vermont has enacted a new law regulating data brokers. The law introduces new requirements around transparency and disclosure of data broker activities, an annual registration requirement, free consumer credit security freezes, and requirements for implementing comprehensive information security programs. The law includes layered effective dates, with some requirements (such as the free credit freezes) having already gone into effect, while other requirements not going into effect until January 1st, 2019.
  4. In a push to reform New Zealand’s 25 year-old Privacy Act, New Zealand’s privacy commissioner, John Edwards, has told lawmakers that privacy is a “fundamental human right” and spoke of concerns that the Act’s currently proposed replacement would not be enough to ensure that New Zealand’s adequacy determination would be renewed.
  5. As part of the continued push for a soft Brexit, the UK government has published a white paper asking the EU for an “association agreement” following Brexit, calling for free trade, looser financial services arrangements, and continued membership within EU agencies. The white paper states that the UK would adhere to EU regulations and product standards, and includes a proposal for the creation of a joint EU-U.K. committee that would be tasked with monitoring the arrangement. One of the stated goals of the proposed agreement would be for one that “provides for the continued exchange of personal data between the UK and the EU with strong privacy protections for citizens; and allows for ongoing cooperation between Data Protection Authorities.”

That’s all for this week, be sure to join us next week for Last Week in Privacy.

Wanting more from our privacy team? Read Brian Philbrook and Andrew Clearwater’s latest posts in CPO Magazine and in IAPP The Privacy Advisor.