COVID-19 Resources
For easy access to COVID-19 ('the Coronavirus') material from across the OneTrust DataGuidance platform, use the tabs above. You will find links to reports, webinars, and articles which highlight the key points you need to know in order to negotiate the practical and legal challenges brought about by the Coronavirus. Regulatory guidance, requirements for employers, and the latest updates on the Coronavirus’ impact on privacy laws from around the world have been compiled here to keep you informed as your organization takes its next steps.
OneTrust: The OneTrust platform comes equipped with custom assessments and reports to automate some of the challenges you’ll need to navigate to get your business running in a way that is safe, healthy, and with privacy in mind.
Vendorpedia: OneTrust Vendorpedia can help you understand and evaluate the impact of Coronavirus on your vendors and any new policies or procedures they’ve implemented in their own response to COVID-19.
Coronavirus Guidance Rolling Report (last updated on 6 July 2020): This Report collates the guidance, statements, legislative amendments, and similar released by supervisory authorities from around the world. The Report includes a comparison chart of guidance on major topics as well as a region by region, jurisdictional breakdown of authoritative information on privacy and the Coronavirus.
The State Services Commission announced, on 6 July 2020, that there would be an investigation into the breach of sensitive personal information in relation to active COVID-19 ('Coronavirus') cases.
The European Consumer Organisation ('BEUC') published, on 1 July 2020, a statement signed by 20 advocacy groups ('the Statement') on Google LLC's proposed takeover of Fitbit Inc., noting that consumers and citizens have expressed concern about the merger and that antitrust and data privacy regulators should give attention to the same.
The European Commission's Joint Research Centre ('JRC') published, on 1 July 2020, its annual report for 2019 ('the Annual Report').
The Federal Data Protection and Information Commissioner ('FDPIC') published, on 30 June 2020, its Annual Report for 2019-2020 ('the Annual Report') outlining the main challenges and activities of the FDPIC with respect to data protection and freedom of information, as well as key statistics.
The Portuguese data protection authority ('CNPD') issued, on 29 June 2020, a decision ('the Decision') on the STAYAWAY contact tracing app ('the App').
The Polish data protection authority ('UODO') announced, on 2 July 2020, that it had requested confirmation from Gemini Apps Sp. Z.o.o. on the processing of personal data relating to a service which allows searching for information on the availability and price of medicinal products and medical devices.
The Norwegian data protection authority ('Datatilsynet') announced, on 1 July 2020, its decision ('the Decision') to impose a NOK 1,200,000 (approx.
The Office of the Commissioner for Personal Data Protection ('the Commissioner') published, on 29 June 2020, a decision issued following an investigation into a complaint regarding the State Health Services Organisation's ('SHSO') alleged failure to take the necessary security measures when processing medical reports.
The Office for Personal Data Protection ('UOOU') published, on 25 June 2020, a summary of its position on the Smart Quarantine project, as discussed at a public hearing on the same.
The Information Commissioner ('the Commissioner') issued, on 26 June 2020, a statement on a bill ('the Bill') aimed at establishing and ensuring the operation of a mobile application ('the App') for informing people about contacts with those infected with COVID-19 ('Coronavirus').
The Department of Health and the Health Service Executive ('HSE') issued, on 26 June 2020, the Data Protection Impact Assessment ('DPIA') for the Covid Tracker App for Ireland ('the App') for controlling the spread of COVID-19 ('Coronavirus').
The Data Protection Commission ('DPC') published, on 26 June 2020, its guidance ('the Guidance') on the data protection implications of the Department of Business, Enterprise and Innovation's ('DBEI') and the Department of Health's Return to Work Safely Protocol ('the Protocol') as part of the Government's roadmap for reopening society and busin
The Australian Digital Health Agency ('ADHA') released, on 29 June 2020, a guide on using online conferencing technologies securely for healthcare organisations ('the Guide').
The Conseil d'Etat issued, on 26 June 2020, a decision ('the Decision') ordering the municipality of Lisses to stop the use of thermal cameras in schools in the context of the COVID-19 ('Coronavirus') pandemic.
The Government of the Netherlands published, on 24 June 2020, questions and answers ('the Q&As') on the COVID-19 ('Coronavirus') app.
The Consumer and Governmental Affairs Bureau ('CGB') of the Federal Communications Commission ('FCC') issued, on 25 June 2020 a declaratory ruling and order ('the Order) in response to a request made by Anthem Inc., on prior consent for robocalls.
Where should measures taken to tackle a public emergency end and the right to the privacy begin? This is a thorny issue which has been thrust into the spotlight as COVID-19 ('Coronavirus') continues to bear heavily upon how we lead our day-to-day lives.
Long before COVID-19 ('Coronavirus'), legal and policy analysts considered the potential impact of widespread deployment of drones.
The situation with the COVID-19 ('Coronavirus') pandemic has raised several red flags regarding data privacy around the world, especially within the EU and its rigorous General Data Protection Regulation (Regulation (EU) 2016/679) ('GDPR').
New technologies often raise privacy concerns in their implementation and, in this respect, commercial drones or unmanned aircraft systems ('UAS') are no exception.
In response to the COVID-19 ('Coronavirus') pandemic, the Malaysian Government ('the Government') put in place a movement control order ('MCO') which came into force on 18 March 2020.
Ensuring that privacy laws continue to function in light of measures taken to halt the spread of COVID-19 ('Coronavirus') may prove challenging, particularly for countries without a general data protection law in place.
The Federal Government ('Bundesregierung') and the Federal Commissioner for Data Protection and Freedom of Information ('BfDI') announced, on 16 June 2020, the launch of the Corona-Warn-App ('the App').
The trend towards remote work amid the COVID-19 ('Coronavirus') pandemic has brought to the forefront familiar issues surrounding the employer's right to monitor their employees, and the limitations therein.
The Israel Privacy Protection Authority ('PPA') has recently published, on 11 May 2020, its fourth report1 ('the Report') on the compliance of medical clinics and labs as part of a report series on the findings of a supervision process regarding the compliance with the Privacy Protection Law, 1981 ('the Law'), and the Privacy Protecti
Among the ongoing effects of the COVID-19 ('Coronavirus') pandemic is the increased reliance for many on telemedicine services. Such practices, however, are not without their potential legal pitfalls, and their use by medical service providers may be subject to substantial regulation.
The French data protection authority ('CNIL') published1, on 18 July 2019, its Standard on the Processing of Personal Data for the Purpose of Managing Health-Related Monitoring2 ('the Standard').
Globally, the collection and use of data continues to be crucial in the fight against COVID-19 ('Coronavirus') and inevitably entails a number of privacy concerns, with Japan being no exception in this.
COVID-19 - Return to Work
Key Takeaways: COVID-19 - Return to Work
HIPAA compliance and cybersecurity challenge
Key Takeaways: HIPAA compliance and cybersecurity challenges
COVID-19 privacy and supply chain issues
Key Takeaways: COVID-19 privacy and supply chain issues
Handling data subject rights under the GDPR
Key Takeaways: Handling data subject rights under the GDPR
COVID-19 European and U.S. cybersecurity issues
Key Takeaways: COVID-19 European and U.S. cybersecurity issues
COVID-19 privacy and employment issues
