The Maroccan DPA (Commission Nationale de contrôle de la protection des Données à caractère Personnel – CNDP) has announced the publication of the National Register for the Protection of Personal Data, from 16 January 2023. The Register is adopted in pursuance of Articles 45 to 50 of Law No. 09-08 on data protection in Marocco....
The EU Directive 2022/2555 (better known as NIS2) has entered into force on 16 January 2023, replacing the EU Directive 2016/1148. It improves the existing cyber security status across the Union by: creating the European Cyber Crises Liaison Organisation Network (CyCLONe) as cyber crisis management structure increasing the level of harmonization regarding security requirements and reporting...
While a federal privacy framework has yet to be adopted in the US, in addition to those that already have one eight additional US States are working on broad consumer data privacy bills likely to be adopted in 2023. These States are Indiana, Iowa, Kentucky, Mississippi, New York, Oklahoma, Oregon, and Tennessee. Follow PrivacyRules for...
The French DPA (CNIL) issued a release that on 29 December 2022, it sanctioned the social network TIKTOK for a total amount of 5 million euros for two reasons: users of “tiktok.com” could not refuse cookies as easily as they accept them. Also, they were not informed in a sufficiently precise manner of the purposes...
Senior officials of the UK and the U.S. met to inaugurate the bilateral comprehensive dialogue on technology and data wanted by President Biden and Prime Minister Johnson at their Carbis Bay meeting in 2021. The related press release of the UK Government reads that the United States and United Kingdom identified deliverables to address in...
On Feb. 8, the International Organization for Standardization (ISO) will adopt PbD as ISO 31700. The ISO is a network of 167 national standards bodies. It sets over 24,000 standards, including ISO 27001 for information security management systems, some of which organizations can be certified for compliance with after passing a review by auditing firms. The...
Two separate data breaches impacted the PostNord MyPostNord app and were reported to the Norwegian DPA (Datatilsynet) in February and March 2020. The breaches were caused by the fact that unauthorised persons were able to access the profiles of some app users because PostNord, as personal data controller, used phone numbers as the only means...
American Headquarters: European Office:
PrivacyRules Ltd.
201 East Fifth Street
Suite 1900 – #1362
Cincinnati, OH 45202, USA
Via dei Della Robbia 112
50132, Firenze
Italy (IT)Expertise
