EDRi writes: After almost two years of legislative negotiations, lawmakers from the European Parliament and EU member states have agreed on a compromise for the new European Health Data Space (EHDS) last week. Unfortunately, the EHDS compromise will expose everyone’s medical records to unnecessary security and privacy risks in the name of research and “innovation”….
Category: Non-U.S.
Keeping watch on Data Privacy: Thailand
Asia Business Law Journal reports: Thailand’s major data privacy law is the Personal Data Protection Act (PDPA), which was passed as a law in 2019 and became fully effective in June 2022. It sets out the key principles on personal data processing and the appointment of the Personal Data Protection Committee (PDPC) as the regulatory…
German Government Proposes to Amend Federal Data Protection Act
Lars Lensdorf and Anna Oberschelp de Meneses of Covington and Burling write: On February 7, 2024, the German Federal Cabinet approved a draft law (“the Draft Law”) amending the Federal Data Protection Act (“BDSG”). The Draft Law will now go to the Bundesrat (the legislative body that represents the sixteen Länder (federated states) of Germany at the federal level ) for…
Update: Why isn’t the University of Alberta more transparent about research consent?
In June 2023, PogoWasRight.org reported that DataBreaches.net (DataBreaches) had submitted a complaint and inquiry to Canada’s Commissioner of Privacy and Alberta’s Information and Privacy Commissioner. The complaint stemmed from a data leak involving mental health-related information that appeared to be collected by university researchers. The leak had been found by a member of the public…