The California Privacy Protection Agency launched a new complaint system at its 14 July board meeting. The new form allows residents to file both sworn and unsworn complaints detailing possible violations of the California Consumer Privacy Act. CPPA Special Advisor Elizabeth Allen, CIPP/US, said the new system received 13 complaints after its soft-launch 6 July. IAPP Staff Writer Alex LaCasse has the details. Full story
The European Data Protection Board adopted an information note on data transfers under the EU-U.S. Data Privacy Framework. EDPB Chair Anu Talus said the note explains individuals' rights and organizations' obligations. "The EDPB will continue to pay special attention to the correct implementation of this new instrument and we look forward to contributing to the first review of the DPF next year," she said.
The U.S. Federal Trade Commission joined more than 100 federal and state law enforcement partners in announcing an enforcement initiative targeting illegal telemarketing calls, including robocalls, that resulted in more than 180 actions.
Members of the U.S. House Judiciary Committee are holding a markup hearing on the "Fourth Amendment Is Not For Sale Act." The proposed legislation would restrict the purchase of Americans' data by federal, state and local police agencies without a warrant. "The government should not be allowed to purchase its way around the rules Congress has enacted to protect the privacy of American citizens," the committee's ranking member Rep.
The U.S. government and Microsoft formally accused "China's state-backed hacking teams" of being responsible for stealing EU and U.S. government officials' emails in an operation that began in May, CPO Magazine reports. The Microsoft threat research team claimed Chinese hackers breached more than two dozen entities, including the U.S. State Department and Department of Commerce.
In a drug trafficking case in New York's Westchester County, an artificial intelligence-powered Automatic License Plate Recognition system analyzed the county's 480 traffic cameras and scanned 16 million license plates a week for a two-year period, Forbes reports. The suspect's attorney claimed the information obtained on his client was a "systematic development and deployment of a vast surveillance network" per his motion to suppress evidence.
Multinational hospital chain HCA Healthcare is now facing four class-action lawsuits following a data breach affecting millions of patients, Fierce Healthcare reports. The company said an external storage location where automated emails were formatted was compromised in the breach.
During a meeting at the U.S. Department of Justice, U.S. Attorney General Merrick Garland, Secretary of Commerce Gina Raimondo and European Commissioner for Justice Didier Reynders welcomed the finalized EU-U.S. Data Privacy Framework.
The IAPP's Global Cross-Border Privacy Rules — Guidance and Resources page includes the latest information covering the CBPR rules framework. The page offers information on the Global CBPR Forum, its members, membership criteria and application process, as well as analysis and additional resources on the system that has gained momentum as a scalable data protection and data flow framework.Full story
On 10 July, the final pieces fell into place to create a new lawful basis for transferring personal data from the EU to the U.S., implementing the EU-U.S. Data Privacy Framework. Chair of Law and Ethics at the Georgia Tech School of Cybersecurity and Privacy Peter Swire, CIPP/US, explores what he called an "essential element of putting the DPF into operation," U.S.