On 26 April 2006 the Council of Europe decided to launch a Data Protection Day to be celebrated each year on 28 January, the date on which the Council of Europe?s data protection convention, known as ?Convention 108?, was opened for signature. That was first legally binding international law in the field of data protection. Data Protection Day is now celebrated globally and is called Privacy Day outside Europe.
The Children?s Online Privacy Protection Act (COPPA) is a law created by the Federal Trade Commission to protect the privacy of children, specifically those under the age of 13. This legislation mainly requires parental consent for the collection or use of personal information of children and then outlines the responsibility of companies and websites in order to best protect these children.
Along with the celebration of the New Year on January 1st, 2020 comes the implementation of the California Consumer Protection Act (CCPA). This date is approximately 10 weeks away, but preparation for these new privacy laws must begin now. In order to make sure your business is fully primed for this new landscape brought by the CCPA, here are the best practices when processing consumer data subject requests.
On January 1st, 2020, the strictest privacy law ever passed in the United States will go into effect: the California Consumer Protection Act (CCPA). This law will establish broad privacy protections and allow consumer interaction with previously private personal data across the United States. Many have questions regarding the potential impact this new law will have on businesses, specifically as to whether these rules will have a positive impact on society. To have a meaningful impact, the CCPA must exude authority and be enforced strictly. Here is how the CCPA will show its teeth if you aren?t complying with the new law.
We have talked at length about GDPR implementation across the European Union in our previous posts. However data protection and privacy has been acknowledged as a concern across the world. Implementation of GDPR like laws is not just a global trend but a requirement to ensure international trade and e-commerce. Data protection laws in different countries may be named differently and may have different levels of stringency, but the basic principles remain the same and can be summarized as follows.
Continue reading »
Following on from the article published on the dataprotection.blog on 24 January 2018 ?French GDPR Implementation Bill ? for French Data Protection Authority (?CNIL?) it could not come soon enough!?, Charlotte Gerrish provides us with the latest update on the status of the French GDPR Implementation Bill which, after surviving an attack of ?unconstitutionality? before the French Constitutional Council, is now on its way into force.
As we stated back in January 2018, the French legislature had been fairly slow in pushing forward with the implementation of the GDPR into French national law. The progress of the Bill had not been without issues. On 16 May 2018, just 9 days before the GDPR was due to come into force, at least 60 French senators referred the Bill to the Constitutional Council claiming that certain provisions were unconstitutional and therefore contrary to French law and public policy (Affaire No. 2018-765 DC).
Continue reading »