In the latest episode of This Week in Privacy we look at the Utah consumer #privacy bill, the LIBE Committee on GDPR implementation and enforcement, and the DCMS proposal for new telecoms security regulations and code of practice.
Read more here: https://www.dataguidance.com/video/week-privacy-7-march-2022
Utah: Consumer privacy bill passes legislature
Utah is on the cusp of becoming the fourth state to pass a comprehensive privacy law.
SB 227 was signed by the leaders of both legislative chambers and will now head to the Governor. Utah’s Consumer Privacy Act would provide consumers with data subjects’ rights, such as the right of access, rectification, deletion, and the right to opt out of the collection and use of personal data for targeted advertising and for the sale of personal data. In addition, it would require controllers to provide consumers with a reasonably accessible and clear privacy notice, establish, implement, and maintain reasonable administrative, technical, and physical data security practices, and require data processing agreements to be implemented.
The Governor has 20 days after the receipt of the bill to sign it.
EU: LIBE Committee to hold public hearing on GDPR implementation and enforcement
The Civil Liberties, Justice and Home Affairs Committee of the European Parliament announced that it will hold a public hearing on the implementation and enforcement of the GDPR.
The LIBE Committee highlighted that the hearing will examine the challenges faced by different stakeholders regarding implementation and enforcement, and possible avenues for improvement. The draft program outlines that the hearing will consist of three panels: exercising data subjects’ rights, focus on the enforcement scheme, and big cases and cross-border challenges.
The hearing will take place on 17 March.
UK: DCMS launches consultation on proposals for new telecoms security regulations and code of practice
In the UK, the Department for Digital, Culture, Media & Sport launched a consultation on the Electronic Communications (Security) Measures Regulations and a Draft Telecommunications Security Code of Practice.
The draft regulations outline the specific measures telecoms providers would need to take to fulfil their legal duties under the Telecommunications (Security) Act 2021, which became law in November 2021, while the draft code of practice outlines how providers can comply with the regulations. Under the draft regulations, telecoms providers will be legally required to implement several measures including protecting data stored by their networks and services and securing the critical functions which allow them to be operated and managed, as well as taking into account supply chain risks.
Responses to the consultation can be submitted by 10 May.
Read more here: http://https//www.dataguidance.com/news/eu-libe-committee-hold-public-hearing-gdpr