Welcome to the first edition of our quarterly HR Privacy newsletter brought to you by the London employment team designed to keep you updated with key cases, legal developments, trends and news relating to UK and EU-wide employment / HR data privacy matters.
The capabilities and use cases for AI and ML are moving at lightning speed, and the law is trying to catch up. Legal, compliance and governance functions must manage risk and develop processes and policies for AI projects that work with the law as it is today, while also anticipating the coming wave of legal, regulatory and technological change.
In this webinar series, our EMEA team discussed the IP and data privacy issues raised by AI, the developing regulatory landscape and practical issues when contracting for AI.
This publication features the latest Employment developments in Italy.
Just a few weeks after California Attorney General Bonta announced an investigative sweep through inquiry letters sent to California employers, the California Privacy Protection Agency (CPPA) announced a California Consumer Privacy Act (CCPA) review of data privacy practices by connected vehicle manufacturers and related technologies, focusing on embedded features including “location sharing, web-based entertainment, smartphone integration, and cameras,” because “vehicles often automatically gather consumers’ locations, personal preferences, and details about their daily lives.”
This publication features the latest Employment developments in Italy.
Just a few weeks after California Attorney General Bonta announced an investigative sweep through inquiry letters sent to California employers, the California Privacy Protection Agency (CPPA) announced a California Consumer Privacy Act (CCPA) review of data privacy practices by connected vehicle manufacturers and related technologies, focusing on embedded features including “location sharing, web-based entertainment, smartphone integration, and cameras,” because “vehicles often automatically gather consumers’ locations, personal preferences, and details about their daily lives.”
On 27 July 2023, the Ministry of Health announced the rebranding of Singapore’s health tech agency, formerly known as the Integrated Health Information Systems to Synapxe.
The Ministry of Health also outlined five key priorities of Synapxe, namely: (i) national repository for patients’ medical records; (ii) system for remote healthcare; (iii) national billing system; (iv) strong cyber and data security; and (v) looking into the future and exploring possibilities, such as generative artificial intelligence.
On 20 June 2023, the National Assembly (NA) passed the Law on Protection of Consumers’’ Rights (amended), with an effective date of 1 July 2024, superseding the current Law on the Protection of Consumers’’ Rights No. 59/2010/QH12.
The New LPCR includes seven Chapters and 80 articles under which many proposed critical changes have been officially adopted. This law also addresses various issues that will have direct impacts on onshore and offshore organizations that transact or do business with consumers in Vietnam.
On 18 July 2023, the PDPC issued two public consultation papers, seeking views on: (a) the proposed clarifications on how the PDPA applies to the collection and use of personal data to develop and deploy artificial intelligence (AI) systems that embed machine learning models used to make decisions, recommendations or predictions; and (b) the proposed Advisory Guidelines on the PDPA for children’s personal data, covering issues such as obtaining children’s consent, using children’s personal data and according higher standards of protection to children’s personal data.
So far this year, three US states have passed laws with specific obligations related to consumer health privacy law: Washington, Connecticut, and Nevada. When it comes to California, the omnibus California Consumer Privacy Act (CCPA) applies also to the processing of health information. But, if the sectoral Confidentiality of Medical Information Act (CMIA) applies and is complied with, CMIA, and not the CCPA, applies.