Data Privacy Insights - Privacy News from Around the World (15 February 2023)
Hello Friends,
Data Embassy Policy may be introduced as a part of upcoming India’s Digital Personal Data Protection Bill. It will offer diplomatic immunity to allow India's data centers to grow and businesses to use the Indian cloud ecosystem to store their data for business continuity purposes.
Enjoy reading!
Privacy Enforcement
South Korea’s PIPC fines Meta for exceeding Data Minimization Standards
South Korea’s data protection authority, the Personal Information Protection Commission, fined Meta 6.6 million won for allegedly disadvantaging its customers by refusing to provide personal information. The PIPC investigated Meta on the basis it blocked users from Facebook and Instagram reportedly for refusing to provide their behavioral information or a record of their activities on other online sites. Per the PIPC’s ruling, it found the personal information Meta sought from South Korean users exceeded the minimum amount of data required to offer Facebook and Instagram services.
Netherland’s DPA issues Fine for Privacy Violations
The Netherlands' data protection authority, Autoriteit Persoonsgegevens, fined the municipality of Rotterdam and police 50,000 euros for using two cars equipped with cameras to monitor compliance with COVID-19 measures without first assessing the privacy risks this might entail.
Data Breach
Nova Scotia Privacy Commissioner finds 1200 breaches of Patient Medical Records
Nova Scotia Privacy Commissioner Tricia Ralph demanded Nova Scotia Health improve its privacy standards after staff allegedly accessed patients’ medical information for non-treatment purposes. Ralph’s investigation began after the provincial health authority self-reported catching multiple employees examining health records of individuals associated with the shooting incident in the province in 2020. In total, the Office of the Privacy Commissioner’s investigation into Nova Scotia Health found there were more than 1,200 privacy breaches that impacted 270 patients.
Privacy in Spotlight
Microsoft adds AI to search Engine
Microsoft unveiled a new Bing search engine and Edge web browser that offer artificial intelligence chatbots. The new Bing version was released to a limited number of users and will expand to millions by the end of the month. This technology will reshape pretty much every software category that we know, Microsoft CEO Satya Nadella said.
Garante bans AI Chatbot from Processing Italians’ Personal Data
Italy's data protection authority, the Garante, banned U.S.-based artificial intelligence chatbot company Replika from processing the personal data of Italian users. The Garante said the application presents concrete risks for minors, does not respect the principle of transparency, and carries out unlawful processing of personal data. The authority gave the company 20 days to follow its order or face a fine of up to 20 million euros or 4% of annual global turnover.
Regulations
European Commission releases Digital Identity Wallet Framework
The European Commission released the European Digital Identity Wallet Architecture and Reference Framework. The document, part of the EU's toolbox toward implementing a European Digital Identity Framework, is intended to provide all the specifications needed to develop an interoperable EUDI Wallet Solution based on common standards and practices and will be complemented and updated over time through the process of establishing the toolbox.
Proposes California Bill would create Artificial Intelligence Office
A bill introduced in the California Legislature would establish an office of artificial intelligence within the Department of Technology. The office would be granted authority to guide the design, use, and deployment of automated systems by a state agency to ensure systems are designed and deployed in compliance with state and federal laws and regulations.
Data Embassies Possible in India’s proposed Digital Data Protection Bill
Indian government officials are open to allowing countries and companies diplomatic immunity from the proposed Digital Data Protection Bill. Proposed "data embassies" would provide a shield from local regulation and promote corridors of trust, according to Indian Minister of State for Electronics and Information Technology Rajeev Chandrasekhar.