It has been a relatively quiet week! ICO issues further fines to firms making nuisance calls, EU temporarily permits data transfer to the UK, EU warns Apple to treat all apps equally amid privacy dispute and more.
Here are the top stories from the privacy world this week.
Top Stories and Updates
ICO issues further fines totalling £270,000 to firms making nuisance calls
The Information Commissioner’s Office (ICO) has issued fines totalling £270,000 to 2 separate companies for making nuisance calls to numbers registered with the Telephone Preference Service (TPS) without getting user’s consent.
Read more here
EU temporarily permits data transfers to the UK pending a decision on adequacy
The UK-EU Trade and Co-operation Agreement (Trade Agreement) has agreed to provide a temporary preservation of the current position on the data transfers to the UK pending a decision by the European Commission. Since an adequacy decision was not granted as part of the Trade Agreement. Instead, the continuation of the status quo for a temporary period of up to six months (Temporary Period) was agreed after the end of the Brexit transition period, allowing data transfers to continue for this period without additional safeguards.
Read more here
EU’s Vestager warns Apple to treat all apps equally amid privacy dispute
Europe’s antitrust chief, Margrethe Vestager, has warned Apple Inc to give equal treatment to all apps on its platform amid the iPhone maker’s privacy changes that have drawn charges of anti-competitive practices from rival Facebook Inc.
Read more here
What is a DSAR and how should you manage it?
The right of access for data subjects was one of the rights introduced under the General Data Protection Regulation (GDPR). In general terms, the GDPR provides individuals with the right to request information. This right extends to how companies are handling their personal data. This is what the Data Subject Access Request (DSAR) entails in a nutshell
Read more here
ICO’s Age-Appropriate Design Code of Practice: what should you do to protect children’s privacy?
The United Kingdom’s Information Commissioner’s Office (ICO) finalized a new Code of Practice (the Code) in September 2020, which applies to most companies that offer online services to or otherwise collect personal data from users in the UK, if their service is likely to be accessed by children. Given the finalization of this Code, there is no better time to resolve to stay current on children’s privacy laws.
Read more here.
After CCPA, the CDPA comes into play in the US
The Consumer Data Protection Act (CDPA) is on track to be passed by the Virginia General Assembly. This consumer privacy legislation is similar to both the California Consumer Privacy Act (CCPA) in the US and the General Data Protection Regulation (GDPR) in Europe and would create a number of personal data rights for consumers.
Read more here.
Public Notice: Important information on Post-Brexit data protection
While data flows continue even after the transition period has ended, there are serious privacy considerations that can still impact your business and its compliance with the GDPR, ePrivacy and the Data Protection Act 2018. Ensure compliance by hiring an EU/ UK Representative to allow your business operations to run smoothly. On top of being a legal requirement, it can help you in navigating your data strategy under the current guidance and directives.
Data transfers and online advertising technologies post-Schrems II
The privacy ecosystem has changed following the Court of Justice of the European Union’s (‘CJEU’) decision on the Schrems II Case. The legitimacy of international data transfer flows has changed, directly impacting the regulation of the different technologies and vendors in the online advertising field. Hire a Privacy Expert to handle the emerging data protection needs and the updated data flows.
