The Article 29 Working Party updated the Guidelines on PIAs and evaluation of risk guidance on October 4, 2017:
CNIL created a PIA Infography to outline the main principles. Keep
Laws / Regulations
GDPR Data Breach & Profiling Guidelines and last chance to comment!
By Amy Carlson on
The Article 29 Working Party published two Guidelines related to GDPR:
Guidelines on Personal data breach notification under Regulation 2016/679, wp250
The Guidelines are open for comments until November, 28, 2017. Comments should be sent to JUST-ARTICLE29WP-SEC@ec.europa.eu and presidenceg29@cnil.fr.
Proposed Oregon Legislation: Credit Card Data Breach Bill
By Robert Teel on
Posted in Data Breach, Laws / Regulations
We received a proposed data breach bill (available here) recently circulated in Salem. This draft is a variant of Oregon House Bill 2581 that died in committee. That bill would have required, among other things, merchants impacted by security breaches to notify issuing banks of all the credit cards subject to the breach.…
ePrivacy Regulation On Track
By Amy Carlson on
The Council of the European Union published a revised version of the ePrivacy Regulation (EPR) which will be discussed at the September 19, 20 and 25th meetings of the Working Party for Telecommunications and Information Society. The EPR is keeping on track to meet its deadline of May 2018. As a regulation, it…