Advocate General of the Court of Justice of the European Union Priit Pikamäe ruled automated processing to determine an individual's probability of obtaining a loan constitutes profiling under the EU General Data Protection Regulation.
Belgium's data protection authority, the APD, voluntarily suspended the six-month implementation period of IAB Europe's Transparency and Consent Framework action plan. While the APD validated IAB's plan to bring the TCF into compliance with the EU General Data Protection Regulation, outstanding points are being reviewed by the Court of Justice of the European Union and an appeal is before the Belgian Market Court.
The U.S. Federal Trade Commission's new Office of Technology published analysis and subsequent guidance on third-party tracking pixels. The office unpacked recent enforcement work by the FTC on tracking in the cases of digital health providers GoodRx and BetterHelp.
Germany's Federal Commissioner for Data Protection and Freedom of Information published its 2022 activity report.
New Zealand citizens are suffering the repercussions of a data breach of Australian financial services company Latitude Financial, 1News reports. Latitude Financial officials said a hacker stole employee login credentials and accessed personally identifiable information belonging to approximately 328,000 people stored by two of the company's service providers.
U.S. House Committee on Energy and Commerce Chair Cathy McMorris Rodgers, R-Wash., announced a hearing set for March 23 with TikTok CEO Shou Chew regarding the platform's privacy and data security practices. Rodgers said U.S. TikTok users "deserve to know the extent to which their privacy is jeopardized and their data is manipulated" by the platform.
The Office of the Privacy Commissioner of Canada opened an investigation into the Canadian Broadcasting Corporation after employees discovered sensitive personal information was added to their personnel files, the National Post reports. Employees who participated in a "voluntary, confidential" diversity survey found that data collected from the survey such as sexual orientation and religious affiliation was added to their employment records.
Amendments to Japan's Telecommunications Business Act, including the External Data Transmission Rule, take force June 16. This new transmission rule will apply to certain businesses offering online services and may require companies to update existing policies or establish new ones.
Iowa is on the verge of becoming the sixth U.S. state to pass comprehensive privacy legislation. Both chambers of the Iowa Legislature unanimously voted to approve Senate File 262, including final approval from the Iowa House on a 97-0 vote Wednesday, and potential enactment could come shortly after transmission to the governor. SF 262 falls into the patchwork of existing state privacy legislation, carrying notable similarities and differences.