Here are key highlights from February 2022 detailing global news and regulatory updates.
US & Canada
California Privacy Rights Act (CPRA) regulations delayed past July 1 deadline, expected Q3 or Q4
Canadian Privacy Commissioner says the government should have let Canadians know it was tracking statistics on their movements during COVID
Uniform Law Commission (ULC) develops model data protection legislation to bring clarity and stability to conflicting US state and federal laws
US, EU trade, technology body to meet May 15-16 in France
US Senators (LA and WI) introduce the Health Data Use and Privacy Commission Act to start modernizing health data use and privacy policies
EMEA
Africa and the Near East: The region’s privacy landscape facing rapid and dramatic changes
EU, US trade, technology body to meet May 15-16 in France (as noted above under US & Canada)
EU Data Governance Act: What privacy professionals need to know from law firm Bird & Bird
European Commission proposes measures for a fair and innovative data economy in draft Data Act
European Commission’s ambitious proposal to regulate AI progresses slowly due to the file’s technical, political and juridical complexity
European Data Protection Board (EDPB) is looking for experts on investigation and enforcement activities, including anonymization experts
France’s privacy regulator, CNIL, is latest authority to rule Google Analytics violates GDPR
Greece’s HDPA fines Cosmote €6M for data breach and unlawful data processing
Oman approves data protection law
UAE publishes new Federal Data Protection Law
UK’s privacy regulator, the ICO, publishes guidance on pseudonymization
UK’s ICO consults health organizations to shape thinking on privacy-enhancing technologies
APAC
China’s Personal Information Protection Law explained here with five operational impacts
China outlaws “algorithmic discrimination as part of what may be the world’s most ambitious effort to regulate AI” (see new rules)
China publishes first regional data-related regulation – International Trademark Association (inta.org)
India’s Data Protection Bill may be replaced by fresh legislation
Indonesia’s Personal Data Protection Bill: will it follow in the footsteps of the EU member states by having an independent public DPA?
LATAM
Brazil is making data protection a fundamental right
Other tools and resources
Future of Privacy Forum (FPF) compares data protection laws in Ten Countries/Regions