Stewart Carr reports: A former Harley Street doctor has been struck off after she divulged details to a cosmetic surgeon and his lawyer about a patient who was planning to sue him for alleged botched cosmetic treatment. Dr Natasha Ranga, 38, became involved in the dispute after the unnamed woman messaged her on Instagram for help while complaining…
Category: Non-U.S.
Finnish SA: Administrative fine imposed on medical clinic for shortcomings in implementing rights of a data subject
The U.S. Department of Health and Human Services Office of Civil Rights (OCR) has taken more than 20 enforcement actions concerning patients’ rights to timely access to their medical records from their provider. Those enforcement actions and their monetary penalties can be found linked from here. For comparison purposes between the GDPR and HIPAA, here…
Ireland’s privacy watchdog sued for inaction over ‘massive Google data breach’
Natasha Lomas reports: Ireland’s evasive response to a major security complaint filed against Google’s adtech the year the European Union’s General Data Protection Regulation (GDPR) came into application is the target of a new lawsuit — which accuses the Data Protection Commission (DPC) of years of inaction over what the complainants assert is “the largest…
Amended Japanese Privacy Law Creates New Categories of Regulated Personal Information and Cross-Border Transfer Requirements
Ryan T. Sulkin and Lucas Schaetzel of Benesch Friedlander Coplan & Aronoff LLP write: The amended law comes into effect in April and covers new categories of personal information, including personal-related information and sensitive personal information. In June 2021, Japan enacted an amendment to its privacy and data protection law, the Act on the Protection of Personal…