Last month the United States Department of Commerce and Switzerland’s Federal Council declared that the new Swiss-US Privacy Shield Framework will be the successor to the Swiss-US Safe Harbor framework. The Swiss-US Safe Harbor framework was declared invalid in October 2015 following the European Union Court of Justice’s decision that the EU-US Safe Harbor was an inadequate legal mechanism for personal data transfers to the US. Since then, officials have drafted the new framework to ensure that the Swiss-US Privacy Shield Framework improves upon the U.S.- Swiss Safe Harbor framework by including stricter data protection principles. These include enhanced requirements … Continue reading Swiss-US Privacy Shield Replaces U.S.-Swiss Safe Harbor
As previously described in our blog post “Doing Business with Argentina Just got Easier“, change appears afoot in the land of silver’s data protection law, in order to keep pace with evolving digital technologies and global regulatory regimes. Whereas in December 2016 the Argentine Data Protection Agency (DPA) issued a report proposing changes to the national Data Protection Act (Act) after nearly a year of public consultation, this month the DPA released a draft bill to update the sixteen-year-old Act in line with many of the European Union’s General Data Protection Regulation (GDPR)’s new requirements taking effect in May 2018. … Continue reading Argentina GDPR-like Data Privacy Bill
Eleanor Treharne-Jones, VP Consulting at TRUSTe will be joining Lewis Barr, General Counsel and VP, Privacy, at Janrain for the first installment of a General Data Protection Regulation (GDPR) webinar series. Lewis and Eleanor will discuss: How personal data of EU citizens can be managed and processed under this new regulation. How it applies to all organizations that offer goods or services to EU residents or monitor their behaviour in the EU regardless of location. How, if found noncompliant, your organization could face penalties as high as 4% of your global revenue. What practical steps to take to prepare for GDPR. … Continue reading How to Get Started with GDPR Planning
In December 2016 we summarized the GDPR guidelines released by the Article 29 Working Party on the “Right to Data Portability”, Identifying a Lead Supervisory Authority, and appointing a “Data Protection Officer.” The deadline for submitting comments is today. To submit comments, email JUST-ARTICLE29WP-SEC@ec.europa.eu and firstname.lastname@example.org. To learn more about TRUSTe EU GDPR solutions, or to speak with a consultant, contact us.
In a typical day the average person will use several devices to make calls, check emails, or watch videos. Over half of people (57%) who use a device such as a smart phone or tablet use more than one. It is easier than ever to seamlessly move between devices and continue an activity on one device where you left off on another. Users get the advantage of a seamless experience across devices, and publishers and ad tech companies can get information about user behavior across those devices, which is known as cross-device tracking. Starting today, February 1, 2017, the Digital … Continue reading DAA Cross Device Guidance Enforcement Starting Today
Latin America Privacy Regimes: Nations at a Glance Last summer TRUSTe hosted its Privacy Risk Summit, which included a session on doing business in Latin America, and also issued a client advisory on the data protection laws of Latin America, available here. The note included information on the privacy frameworks of several different countries, including Argentina. As a review, Argentina employs a hybrid approach to its data protection framework, meaning that it combines constitutional protection with expansive data protection regulations. Its data protection law, which was passed in 2000, provides general protection for personal data stored in public or … Continue reading Doing Business with Argentina Just got Easier