Alessandra Pierucci, Chair of the Committee of Convention 108 and Jean-Philippe Walter, Data Protection Commissioner of the Council of Europe, issued a Joint Statement on Digital Contact Tracing.

Key principles for digital tracing:
  • transparency
  • data minimization
  • impact assessment
  • de-identification
  • safeguards from automated decision making

More details in my client alert.

The European Data Protection Supervisor addressed the coronavirus crisis in a post titled “Carrying the torch in times of darkness.”

“The outbreak of Covid-19 is affecting our lives at an unprecedented pace. It is testing the resilience of our societies as we respond to this global crisis and try to contain its consequences, both in

  • Connected cars are “terminal equipment” and consent under the ePrivacy regime is required.
  • Connected cars are IoT devices.
  • Geolocation is very sensitive; don’t collect unless necessary.
  • Implement data protection by design and default at every stage.
  • Connected cars pose unique challenged for transparency and consent – you must find ways to overcome them.

These are

“The European Commission has revealed it is considering a ban on the use of facial recognition in public areas for up to five years.

Regulators want time to work out how to prevent the technology being abused. The technology allows faces captured on CCTV to be checked in real time against watch lists, often compiled

Kenyan President Uhuru Kenyatta approved a data protection law which complies with European Union legal standards, according to Thomson-Reuters.

The new law sets out restrictions on how personally identifiable data obtained by firms and government entities can be handled, stored and shared. Those violating the law face a maximum fine of 3 million shillings

The Information Commissioner of the Isle of Man has issued guidance on “accountability” under GDPR.

Key takeaways:

  • You need to develop, embed and maintain a culture of data protection in your processing activities, with compliance demonstrably supported from the top.
  • All processing of personal data should be subject to overview, governance and demonstrable compliance.
  • Key

In preparation for the first Article 97 evaluation and review of the General Data Privacy Regulation (GDPR), member states have submitted comments, reports Muge Fazliogu of the International Association of Privacy Professionals (IAPP)

Key points:

  • Businesses and government agencies feel overwhelmed, uncertain and confused. (Germany)
  • Recommend to publish real cases of best practices, as well