Issue 192


  • UK’s Information Commissioner’s Office issued an enforcement notice and monetary penalty notice to Simply Connecting Limited of GBP 40,000 for violation of the Privacy and Electronic Communications (EC Directive) Regulations 2003.
  • The Norwegian data protection authority announced that the Oslo District Court issued a ruling rejecting Meta Platforms Ireland Limited’s and Facebook Norway AS’s petition for a temporary injunction against the behavior-based marketing ban issued on July 17, 2023.
  • The UK Parliament announced that the Northern Ireland Affairs Committee had launched a probe into a data breach affecting the Police Service of Northern Ireland.
  • German Data Protection Conference published its application instructions on the European Commission’s adequacy decision for the EU-US Data Privacy Framework.
  • Italian data protection authority imposed a fine of EUR 30,000 on Editoriale Nazionale S.r.l., for violation of the General Data Protection Regulation.


  • Senate Bill 362 for an act relating to data brokers was read for a second time by the California State Assembly and ordered to its third reading.
  • Assembly Bill 1546 relating to privacy was held under submission in the California Assembly Appropriations Committee.
  • Government of Canada released draft pre-market guidance for machine learning-enabled medical devices.
  • Senate Bill 2105 relating to the registration of and certain other requirements relating to data brokers; providing a civil penalty and authorizing a fee was signed by the Governor of Texas following its passage by the Senate and the House respectively.


  • The Executive Regulations of the Personal Data Protection Law and the Regulations on Personal Data Transfers outside the Kingdom of Saudi Arabia were published in the Official Gazette of Saudi Arabia.
  • India’s Press Information Bureau announced that the Department of Consumer Affairs is seeking public comments on the draft Guidelines for Prevention and Regulation of Dark Patterns, 2023.
  • Cyberspace Administration of China fined China National Knowledge Infrastructure RMB 50 million for violations of the Personal Information Protection Law and Cybersecurity Law.