Dan Cooper, Benjamin Haley, Deon Govender, Ahmed Mokdad, and Mosa Mkhize of Covington and Burling write: On April 7, 2025, South Africa’s Information Regulator announced a new requirement for organizations to report data breaches—referred to under local law as “security compromises”—via an online eServices Portal. The announcement marks a significant procedural shift in how companies must comply with…
Category: Non-U.S.
UK’s attempt to keep details of Apple ‘backdoor’ case secret… denied
Connor Jones reports: Details of Apple’s appeal against the UK’s so-called “backdoor order” will now play out in public after the Home Office failed in its bid to keep them secret on national security grounds. The confirmation comes after the Investigatory Powers Tribunal held a closed-door hearing on March 14, which was presumed to be…
France fines Apple €150M for “excessive” pop-ups that let users reject tracking
Jon Brodkin reports: France’s competition regulator fined Apple €150 million, saying the iPhone maker went overboard in its implementation of pop-up messages that let users consent to or reject tracking that third-party applications use for targeted advertising. The App Tracking Transparency (ATT) framework used by Apple on iPhones and iPads since 2021 makes the use…
The PIPC Sanctions Woori Card for Data Breaches, Imposing KRW 13.45 billion
The Personal Information Protection Commission (PIPC) held its seventh plenary meeting of 2025 and reached a decision to sanction Woori Card Co., Ltd. (Woori Card) for data breaches on March 26, 2025. Administrative sanctions by the PIPC are as follows: A penalty for violations (Gwajingguem) of KRW 13.45 billion; A publication order of sanction results…