EU & UK
- Italian data protection authority imposed a fine of EUR 20,000 on the Municipality of Castel Goffredo for violations of the General Data Protection Regulation and the Personal Data Protection Code.
- Finland’s Office of the Data Protection Ombudsman announced that Parliament has approved amendments to the Data Protection Act and the Data Protection Act in Criminal Matters.
- UK’s Information Commissioner’s Office updated its guide on UK Binding Corporate Rules introducing new guidance on the UK BCR Addendum, which aims to streamline the process for organizations managing data transfers between the UK and EU.
- French data protection authority imposed six enforcement decisions as part of its simplified enforcement procedure.
AMERICAS
- New York Attorney General agreed to a settlement of USD 300,000 with NewYork-Presbyterian Hospital, for violations of the Executive Law, the General Business Law, and the Health Insurance Portability and Accountability Act of 1996.
- House Bill No. 1879 for the Online Safety Protection Act, was introduced to the General Assembly of Pennsylvania and referred to the Children and Youth Committee.
- A Bill on AI Foundation Model Transparency was introduced to Congress.
INDIA AND ASIA PACIFIC
- South Korea’s Personal Information Protection Commission announced that it, in consultation with other agencies such as the Auditor General, the State Coordination Office, and the Police Department, established the Personal Information Protection Guidelines for public institutions.
- Thailand’s Personal Data Protection Committee announced two regulations on international data transfers under the Personal Data Protection Act 2019 , respectively, and published in the Royal Gazette.
- India’s Press Information Bureau announced that the Ministry of Electronics and Information Technology issued an advisory to intermediaries on misinformation powered by artificial intelligence deepfakes.
