India’s Ministry of Electronics and IT has opened a consultation on its freshly proposed comprehensive privacy legislation, DPDP 2022

After many study commissions and multiple serious attempts at a comprehensive data privacy bill, India’s Ministry of Electronics and Information Technology has proposed a new draft privacy bill, and has opened a public consultation regarding the draft until 17 December 2022. The Ministry states that the proposed bill, the Digital Personal Data Protection Bill 2022

WPF White House Briefing Outtakes on the New European Union – US Data Privacy Framework

7 October 2022 I was among a small handful of privacy experts present Thursday, 6 October at a White House briefing on the new European Union – US Data Privacy Framework, the replacement for the EU-US Privacy Shield agreement that was invalidated by the Schrems II decision in Europe. Today, 7 October, President Biden has

WHO Health Data Collaborative Meeting: high level overview

Last week, the World Health Organization held an in-person meeting of its health data collaborative leadership, its first face-to-face meeting of this group in four years. WPF attended as a constituency co-chair. Attendees included: members of the Ministries of Health and partner representation from Kenya, Malawi, Cameroon, Botswana, and Nepal; regional institutes’ representatives from KEMRI Welcome

How New Procedural Controls Using the Privacy Act of 1974 Can Improve the Protections of Reproductive Health Information Held by Federal Agencies

September 2022 By Robert Gellman and Pam Dixon Download this Report Executive Summary This report suggests specific procedural and substantive ways that the Executive Branch can revise implementation of the Privacy Act of 1974 to restrict and more carefully administer some disclosures of reproductive health information by federal agencies to federal, state, and local law

Identity ecosystems are a central aspect of global digitalization; the principle of Do No Harm must be a policy priority and commitment

Identity is a data-rich resource that acts as a key to connect all levels of emerging digital ecosystems. All forms of ID carry some risk, but digital forms of ID, or “dematerialized ID,” cuts across all sectors and links copious data about individuals, their behaviors, financial status, associates, and potentially even political and religious views. Over time, distinct patterns emerge from the linked data and create new kinds of risks for individuals and groups. As the world becomes increasingly and intensely digitalized, we can expect challenges in the identity space to grow apace unless proactive attention is given to identifying and mitigating the current and future risks.