DPOInsider #16
Things to look out for during the rest of 2022
A slightly different approach for you today. I wanted to give a few headlines of what to watch out for for the rest of the year.
The most significant trends that I think we will likely be exploring in future editions of this newsletter are:
DSARs - with a large number of jurisdictions within which consumers can submit requests, it’s becoming more critical to understand the scope of access rights. I predict that this is becoming an area where we need to focus much more time on as data privacy professionals. Data is siloed more than ever, so companies must be familiar with their pipelines and data sources. With a significant expansion in rights in this area, it’s due to be a significant time for DSARs.
US privacy - It’s not just California that has implemented new privacy laws. Virginia, Colorado, Utah and Connecticut have either passed legislation or are scheduled to do so in the coming months. It’s crucial to understand what this means for your business; what your obligations are under new laws. Whether it’s at the state level or something else, it’s likely that if you do business in the US, you will be covered by a comprehensive law in the future.
AI regulation - how do we regulate AI? This seems to be a pivotal issue facing legislators as they look to regulate technology that could potentially result in privacy abuses or unlawful discrimination. In fact, many regulatory bodies are looking at AI regulation in the US.
Privacy Shield 2.0 - we’ve talked about it before in the newsletter, but sending data across the Atlantic is set to change. The Trans-Atlantic Data Privacy Framework (TADPF) has been announced. Currently, data importers and exporters will have to look at other tools to obtain consent.
India scraps proposed data privacy bill
India has scraped a proposed law on data protection that was widely criticized by privacy advocates and tech companies.
The long-awaited personal data protection bill has been withdrawn, and this news has come as a. bit of a surprise.
The bill had received many amendments and recommendations from a parliamentary panel.
The Indian government has claimed that the bill would ‘empower Indian citizens’. The country is the world’s second-largest internet market and has seen an explosion of personal data in the past decade.
So why has the bill been scraped?
Well, Meta, Google and Amazon have all criticized the bill, as have Indian-based privacy advocate groups.
This could mean a period of limbo where nobody is happy, and Indian consumers will continue to miss out on personal data privacy laws protecting their digital future.
Other news
T-Mobile agrees to pay customers $350 million after a data breach.
Here’s a (paid) report on the developments in data privacy for 2022.
Twillo was hacked by phishing campaign targeting internet companies.