World Privacy Forum

New Report: From the Filing Cabinet to the Cloud: Updating the Privacy Act of 1974

COVID-19 and HIPAA: HHS’s Troubled Approach to Waiving Privacy and Security Rules for the Pandemic

2021 Update: Interactive Medical Data Breach Map

prev next

Mar 03 2021

WPF urges US Federal Trade Commission to re-examine data breach notification requirements for health data in Flo Health proposal

The World Privacy Forum has submitted comments to the FTC regarding its proposed consent order In the Matter of Flo Health, Inc. requesting that the FTC conduct further analysis regarding the FTC Health Data Breach Rule and its potential applicability to the alleged unconsented sharing of women’s pregnancy, menstruation, mental health, and other data with

Feb 24 2021

WPF comments on European Commission proposal for new Health Authority

The European Commission has proposed the creation of a new European Health Emergency Preparedness and Response Authority, HERA. WPF provided comments regarding the proposal, urging the Commission to ensure from the outset that HERA will fulfill its mission with a focus on data interoperability and will include specific data governance and protection measures that will analyze

Feb 23 2021

WPF comments to the US Federal Trade Commission regarding Everalbum proposal

The World Privacy Forum submitted comments to the US Federal Trade Commission regarding its proposed consent order regarding In the Matter of Everalbum, Inc. The FTC alleges that Everalbum misrepresented to its users the circumstances in which the company would utilize face recognition on its users’ photos. The Commission’s complaint also alleges that Everalbum utilized

Feb 03 2021

Addressing Cross-Border Spillovers in Data Policy: The Need for a Global Approach

Global debates about data governance standards have primarily reflected the priorities and needs of rich countries, with less wealthy countries left in the role of “standards takers.” More needs to be done to ensure that digital governance policies pursued by the world’s largest economies do not create unintended consequences that make it harder for other countries to support a strong domestic digital economy and participate in the global digital economy. This is a joint blog post by Michael Pisa, Center for Global Development, WPF’s Pam Dixon, and Benno Ndulu, Oxford Professor.

Jan 12 2021

FTC proposes precedent-setting face recognition settlement: photo app company must delete consumers’ photos and the algorithmic models it developed using the photos

The FTC has proposed a crucially important settlement with a photo app developer, Everalbum Inc., which the FTC says “deceived consumers about its use of facial recognition technology and its retention of the photos and videos of users who deactivated their accounts.” The proposed FTC settlement will require the company to obtain consumers’ express consent

National IDs Around the World — Interactive map

About this Data Visualization: This interactive map displays the presence...
New Report: From the Filing Cabinet to the Cloud: Updating the Privacy Act of 1974

This comprehensive report and proposed bill text is focused on the Privacy Act of 1974, an important and early Federal privacy law that applies to the government sector and some contractors. The Privacy Act was written for the 1970s information era -- an era that was characterized by the use of mainframe computers and filing cabinets. Today's digital information era looks much different than the '70s: smart phones are smarter than the old mainframes, and documents are now routinely digitized and stored and perhaps even analyzed in the cloud, among many other changes. The report focuses on why the Privacy Act needs an update that will bring it into this century, and how that could look and work. This work was written by Robert Gellman, and informed by a two-year multi-stakeholder process.
COVID-19 and HIPAA: HHS’s Troubled Approach to Waiving Privacy and Security Rules for the Pandemic

The COVID-19 pandemic strained the U.S. health ecosystem in numerous ways, including putting pressure on the HIPAA privacy and security rules. The Department of Health and Human Services adjusted the privacy and security rules for the pandemic through the use of statutory and administrative HIPAA waivers. While some of the adjustments are appropriate for the emergency circumstances, there are also some meaningful and potentially unwelcome privacy and security consequences. At an appropriate time, the use of HIPAA waivers as a response to health care emergencies needs a thorough review. This report sets out the facts, identifies the issues, and proposes a roadmap for change.

WPF urges US Federal Trade Commission to re-examine data breach notification requirements for health data in Flo Health proposal

WPF comments on European Commission proposal for new Health Authority

WPF comments to the US Federal Trade Commission regarding Everalbum proposal

Addressing Cross-Border Spillovers in Data Policy: The Need for a Global Approach

FTC proposes precedent-setting face recognition settlement: photo app company must delete consumers’ photos and the algorithmic models it developed using the photos

Reports

Infographics

WPF in the News