Region: United States of America

Trump mandates KYC for cloud providers

In one of his administration’s final acts, former US President Donald Trump issued an executive order requiring web service providers to verify the identity of foreign persons to whom they sell infrastructure-as-a-service (IaaS) products.

26 January 2021

Fertility app developer sued for sharing data with Chinese companies

The US-based developer of a female fertility app has been sued for allegedly sharing user data with Chinese data analytics firms without consent.

25 January 2021

Brazil mandates internet equipment security by design

Brazil’s telecommunications regulator has issued requirements for the country’s internet infrastructure to have built-in security features aimed at thwarting cyberattacks.

22 January 2021

First hint of UK-EU data divergence appears

The UK data protection authority has signed off on data transfers to a US financial regulator, but one European regulator has expressed doubts – in a sign that UK and EU interpretation of the GDPR may be starting to drift apart.

22 January 2021

Parler blames Amazon for data breach

Parler, the upstart social media app that has achieved notoriety in recent weeks as a platform for Trump supporters, has blamed Amazon for a massive hack that exposed its users’ personal data.

21 January 2021

Data broker to pay $150 million over data sales

Epsilon Data Management will pay $150 million to settle criminal allegations that it sold customer data to scammers.

21 January 2021

HIPAA data breach penalty overturned

A US appeals court has reversed a $4.35 million data breach penalty imposed on a Texas hospital, after finding the Department of Health & Human Services had misinterpreted rules it applies to US federal healthcare data law – and had admitted it could not defend the fine.

19 January 2021

New York introduces privacy and biometric laws

New York lawmakers have introduced a comprehensive privacy bill that would combine elements of the CCPA and GDPR, as well as a biometric data bill that would function similarly to Illinois’ tough BIPA legislation.

19 January 2021

GDPR extraterritorial lawsuit shut down by English court

A High Court judge has refused to allow a businessman to sue California-based online publication Forensic News and several journalists under the GDPR.

18 January 2021

Inside Facebook’s FTC-mandated privacy programme

GDR has obtained Facebook’s first quarterly privacy report to the US Federal Trade Commission since the two entities entered into their $5 billion settlement agreement over the Cambridge Analytica scandal.

15 January 2021

Get unlimited access to all Global Data Review content