CJEU clarifies DPAs' legal grounds for issuing fines under GDPR
The Court of Justice of the European Union reaffirmed the conditions data protection authorities can issue fines to data controllers under the EU General Data Protection Regulation.
Discover the latest industry insights and developments with our News from Around the Web page. We curate feeds from a variety of reputable organizations, bringing you a comprehensive overview of relevant news and trends. Stay informed and connected with the most current updates from across the web.
US House committee to markup FISA Section 702 reform bill
The U.S. House Committee on the Judiciary will hold a 6 Dec. markup session on a bill to renew Section 702 of the Foreign Intelligence Surveillance Act. The Protect Liberty and End Warrantless Surveillance Act would impose search warrant requirements for intelligence and law enforcement to review citizens' electronic communications and enact tighter restrictions for purchasing communications data from third parties.
ICO highlights data protection in housing sector
The U.K. Information Commissioner's Office posted a blog discussing how sufficient data protection can support the housing sector. The post covered common data protection issues in the sector, including inappropriate data disclosures, inaccurate record keeping and noncompliant data sharing activities.
23andMe data breach affected millions
TechCrunch reports genetic testing company 23andMe's October data breach swept up 6.9 million individuals after the company initially reported approximately 14,000 individuals were affected.
George Washington University Law School adds tech law center
George Washington University Law School announced the creation of its Center for Law and Technology.
New York's DFS announces $1M cybersecurity settlement
The New York State Department of Financial Services announced a USD1 million cybersecurity settlement with First American Title Insurance Company for violating cybersecurity regulation 23 NYCRR Part 500.
CPPA proposes revised CCPA regulations
The California Privacy Protection Agency published proposed revisions to existing California Consumer Privacy Act regulations that will be discussed at its 8 Dec. board meeting. The proposed updates could increase applicability thresholds and potential fines while updating provisions on dark patterns and obligations around data subject rights.
Meta faces 550M euro lawsuit alleging 'systematic' GDPR violations
Meta is facing a lawsuit in Spain brought by an association of more than 80 newspapers alleging "systematic and massive non-compliance" with the EU General Data Protection Regulation, TechCrunch reports. The association, AMI, seeks 550 million euros in damages because Meta allegedly did not establish a legal basis for processing users' data for several years, which constituted a breach of competition rules.Full story
ICO resists calls to investigate genetic research company
The U.K. Information Commissioner's Office is rebuffing calls by members of Parliament to investigate a Chinese genetic research company, Reuters reports.
European Commission supports political agreement on Cyber Resilience Act
The European Commission endorsed the political agreement struck between European Parliament and the Council of the European Union on the Cyber Resilience Act. The law will impose mandatory cybersecurity requirements for hardware and software. Manufactures will be required to develop cybersecurity measures for the entire life cycle of products. Full story