Support Centre
Back

International

This Week in Privacy: 22 February 2021

February 22, 2021

EU: Commission publishes UK adequacy decision

The European Commission published its draft adequacy decisions for transfers of personal data to the UK under the GDPR and the Law Enforcement Directive.

The Commission highlighted that it had carefully assessed the existing regime governing personal data protection in the UK in reaching its conclusion that the UK does ensure an essentially equivalent level of protection to that guaranteed under the GDPR. Věra Jourová, Vice-President for Values and Transparency, said that, while the UK had left the EU, it had not left the European privacy family. Jourova further highlighted that clear and strict mechanisms in terms of both monitoring and review, suspension or withdrawal of the decision had been incorporated in order to address any future issues that may arise.

The European Data Protection Board will now be asked to provide its opinion on the draft decisions, before moving to a further review by a committee of Member State representatives.

  • Read more here
  • Read the press release here

USA: Florida and Utah follow other states in proposing privacy laws

Whilst Virginia is poised to become the next State to pass a privacy law, Florida and Utah have become the latest States to introduce bills to regulate the protection the privacy.

In Utah, the Consumer Privacy Act and Commercial Email Act was introduced to the State Senate. The bill would provide for consumer rights such as the right to access, correct, and delete certain personal data, as well as the right to opt out of the collection and use of personal data for certain purposes. Moreover, the bill would require business to provide clear information to consumers regarding how their personal data are used and require business to maintain data protection assessments.

In Florida, the Act Relating to Consumer Data Privacy was introduced, which would apply to businesses that satisfy one or more of the thresholds outlined under it, in a similar way to the CCPA. The bill creates new obligations for businesses including the requirement to have a privacy policy, the introduction of data subject rights including access, deletion, and opt-out and opt-in rights.

You can stay up to date on all State proposals as they happen through OneTrust DataGuidance's State Law Tracker.

  • Read more on Florida here
  • Read more on Utah here

ADGM: ADGM enacts Data Protection Regulations 2021

The Abu Dhabi Global Market announced that it had enacted the Data Protection Regulations 2021, following its public consultation.

The regulations introduce several provisions in relation to:

  • individuals' rights;
  • Data Protection by Design and by Default;
  • records of processing activities;
  • data protection officer appointment and tasks;
  • breach notification;
  • data transfers; and
  • vendor management.

The ADGM highlighted that the regulations propose a 12 month transition period for current establishments, and six months for new establishments, to commence from 14 February 2021.

  • Read more here
  • Read the press release here
Series:
This Week in Privacy


Topics:
Legal Reform
Cross-Border Data Transfer
Mechanisms - Adequate Protection

Company

Our Policies

Your Rights

© 2020 OneTrust Technology Limited. All Rights Reserved.
The materials herein are for informational purposes only and do not constitute legal advice.