EU & UK
- The Italian data protection authority imposed a fine of EUR 40,000 on the Territorial Social and Health Authority of Lodi for violations of the General Data Protection Regulation.
- UK’s Data Protection and Digital Information Bill passed its report stage and was read for a third time by the House of Commons, and will now proceed to the House of Lords for consideration.
- Swedish Authority for Privacy Protection imposed a fine of SEK 300,000 on the Children and Education Board of Östersund Municipality for violation of the General Data Protection Regulation.
- None of your business filed a complaint against Meta Platforms Ireland Limited with the Austrian data protection authority, alleging that Meta’s subscription model violated the General Data Protection Regulation.
AMERICAS
- Department of Health and Human Services, Office of Inspector General published its General Compliance Program Guidance.
- California Privacy Protection Agency published draft automated decision making technology regulations.
- Canada’s Office of the Privacy Commissioner launched investigations into a cyberattack that resulted in a breach affecting the personal information of federal government personnel who used government contracted relocation services over the past 24 years.
- House Bill No. 345 to enact the Ohio Personal Privacy Act, was introduced to the Ohio House of Representatives.
INDIA AND ASIA PACIFIC
- Bangladesh’s Cabinet passed the Personal Data Protection Bill 2023, to govern personal data processing in the country.
- Singapore’s Personal Data Protection Commission updated the Advisory Guidelines for the Healthcare Sector.
- Insurance Regulatory and Development Authority of India announced the formation of a task force to examine the implications of the Digital Personal Data Protection Act, 2023 on the insurance sector.
- Australian Communications and Media Authority imposed a fine of AUD 306,360 on Telstra Corporation Limited for violations of the Telecommunications Act 1997.
