German privacy law for TELCO enters into force

Hamburg's Commissioner for Data Protection and Freedom of Information announced the entry into force of the law the 1st of December 2021. The law applies to providers of telecommunication, internet services and websites. The Data ÅProtection Commissioner of Lower Saxony disseminated a related FAQ document on its website. The law aims at integrating certain requirements of GDPR and ePrivacy directive into local laws.

Read the related news, in German, here

Possible class actions against privacy violations before the CJEU

With reference to the Facebook Ireland case, the Advocate General of the Court of Justice of the European Union (CJEU), Richard de la Tour, issued a press release about his opinion that Member States may allow consumer protection associations to bring representative actions against infringements of consumers' privacy rights. Those actions must be based on infringements of rights which the data subjects derive directly from the General Data Protection Regulation.

Find the press release here

Office of the New Zealand Privacy Commissioner publishes a report on privacy breaches

The New Zealand Privacy Act 2020  made it mandatory to notify the Privacy Commissioner of breaches that had caused or could potentially cause serious harm to data of individuals. The last report published by the Commissioner, which covers the period Jan-Oct 2021, indicates that data breaches are 4 times higher than during the same period of the previous year.

Find the full text of the report here

Twitter bans doxxing

As of 30 November 2021, Twitter has adopted a strict policy accoridng to which users may not publish or post other people's private information without their express authorization and permission. Twitter also prohibits threatening to expose private information or incentivizing others to do so. In addition, users may not share private media, such as images or videos of private individuals, without their consent. Exceptions are foreseen. 

Find the full text of the new policy here

Medical records hacked again: incident leads to data breach in a Ohio DNA testing company

DNA Diagnostics Centre, a medical centre in Ohio - USA, repoorted a data breach impacting their database. Personal data of about 2.1 million people were stolen, including names and payment records.

Read the case submission here
    Page 1 of 523