09/05/20 GDPR Community Round-Up

Here’s a round-up of interesting reading we found online today*;

• “Dutch Privacy watchdog to investigate TikTok over children's data. The move comes amid growing US scrutiny of the app, which allows users to create and share short videos of themselves with millions of people worldwide.”

• CPO Blog’s “There is a common perception amongst privacy and business leaders that they do not need to take any action (for India’s PDPB) if they have already taken actions for compliance with EU GDPR. While the amount of work may not be as much, companies still need to take specific actions for PDPB. This article talks about what actions companies compliant with GDPR shall need to take to become compliant with PDPB.”

• TechCrunch reports that a data breach at the U.S. Marshals Service exposed the personal information of current and former prisoners. The notice didn’t say how many current and former prisoners are affected by the breach. A spokesperson for the Justice Department did not respond to a request for comment by email or phone.

• “American testing giant LabCorp is being sued by a shareholder after two data breaches drove down the value of the company's shares.LabCorp suffered two data breaches in under a year and was one of two dozen companies affected by the 2019 American Medical Collection Agency breach”

• The Federal Trade Commission is weighing potential changes to a decade-old rule governing when certain health tech companies must notify individuals of a data breach. FTC Seeks Input on Health Data Breach Notification Rule.

• Update from law.com “SHIELD and Sword: New York’s Far-Reaching Statute Governing Data Breaches. It may be a while before law enforcement can devote attention to the broadened scope of data breach liability under the new NY SHIELD (Stop Hacks and Improve Electronic Data Security) Act. Then again, it might not.”

• Saryu Nayyar is CEO of Gurucul, a provider of behavioural security analytics technology and a recognized expert in cyber risk management blogs on Forbes “Why Data Breaches Of Large Organizations Still Occur.”

• “Solara Medical Supplies LLC will be able to avoid some, but not all, of the claims in a class action over a 2019 data breach, but the plaintiffs will get a chance to fix the problems with the dismissed claims and try again, a federal court in California said.”

*These sites aren’t affiliated with GDPR Community and these aren’t an advertisement, they’re simply site’s we’ve thought the community might have an interest in reading.