EU & UK
- EU’s BEUC, on November 20, published recommendations on GDPR cross-border enforcement.
- The National Supervisory Authority for Personal Data Processing (ANSPDCP) in Romania fined Raiffeisen Bank SA RON 99,466 for GDPR violations.
- The Data State Inspectorate (DVI) of Latvia issued guidance on November 15, 2024, emphasizing compliance with personal data protection principles.
- The UK’s IC signed a MoU with the Jersey Office of the IC to enhance collaboration and strengthen cooperation under their respective data protection laws.
- Hungary’s NAIH announced the launch of the project on GDPR awareness for micro-enterprises.
AMERICAS
- USA’s OCR fined mental health centre USD 100,000 for failure to provide timely access to patient records.
- 32 state Attorney Generals sent letters to Congress over the Bill for Kids Online Safety Act.
- An unknown person accessed documents on Matt Gaetzs misconduct allegations under a data breach.
- Elon Musk asked people to upload their medical data to X so his AI company could learn to interpret MRIs and CT scans.
ASIA PACIFIC & INDIA
- Meta disagreed with India’s antitrust ruling on WhatsApp, to mount a legal challenge.
- China released standard guidelines on the cross-border processing of personal information in Guangdong-Hong Kong-Macao Greater Bay Area.
- Australia’s OAIC issued guidance on privacy risks of Facial Recognition Technology.
