Morocco's National Commission for the Control and the Protection of Personal Data announced the first iteration of its National Register for the Protection of Personal Data will go live Jan. 16. The register will help inform the regulator on data controllers' views on management of personal data and aims to bring "transparency and to best contribute to the climate of digital trust." The final version of the register will go live Feb.
France's data protection authority, the Commission nationale de l'informatique et des libertés, issued a 5 million euro fine to TikTok over alleged cookie consent violations. An investigation by the CNIL revealed the platform's consent mechanism did not give users sufficient options to opt out of cookie settings or information regarding purpose of the cookies.
Canada is poised to potentially pass several major private sector privacy law reforms on both the federal and provincial levels, Dentons Canada Privacy and Cybersecurity National Practice Leader Chantal Bernier writes. She said the provinces of British Columbia and Quebec could implement EU General Data Protection Regulation-level fines and improved privacy rights for individuals.
The European Data Protection Board released its binding decisions on the legal basis used by Meta's Facebook and Instagram for processing data for personalized advertising.
In an op-ed for The Wall Street Journal, U.S. President Joe Biden reiterated calls for U.S. Congress to pass comprehensive federal privacy legislation. Among Biden's "three broad principles for reform" against Big Tech, he said "serious federal protections for Americans’ privacy" topped the list. "That means clear limits on how companies can collect, use and share highly personal data," Biden said, adding "it's not enough" for companies to simply disclose data collection practices.
IAB Europe announced its Transparency and Consent Framework is compliant with the EU General Data Protection Regulation following an action plan approved by the Belgian Data Protection Authority.
The IAPP Privacy List offers members an opportunity to easily connect with thousands of privacy professionals on key topics and happenings. IAPP members can send comments or questions to the Privacy List and receive feedback from peers. User guidelines must be followed.Full Story
Germany's Federal Cartel Office, the Bundeskartellamt, issued a statement of objections against Google's data processing terms. The competition regulator said users are not given "sufficient choice" on the processing of their data across Google services and the company must incorporate new competition rules for large digital companies.
The Court of Justice of the European Union issued a decision forcing data controllers to identify entities they sold personal data to when requested under the EU General Data Protection Regulation. The decision came after an Austrian man sought the companies his personal data was sold to by logistics and postal company Österreichische Post.