News Items Topics Internet Law Update

Israel Privacy Protection Authority Hardens its Policy on Breach Notification Timescales

The Israeli Privacy Protection Authority has rigidified its published policy on data breach notifications, emphasizing that it now requires that “immediate” notification be given upon the discovery, or reasonably suspected occurrence, of a serious information security incident.

According to the Protection of Privacy Regulations (Information Security) from 2017, a controller or processor with a database subject to a high or ...

Sephora to Pay $2.1 million in the First Publicly Disclosed CCPA Enforcement Action

American cosmetic retailer Sephora agreed to pay a $2.1 million fine to settle claims that it had violated the California Consumer Privacy Act (CCPA). This is the first CCPA enforcement action made public. California’s Attorney General found that Sephora failed to disclose to consumers that it was selling their personal information, within the meaning of ‘sale’ under the CCPA. The ...

UK: Court Permits Service of Process by NFT

In an unprecedented decision, a High Court in England permitted the service of process of pleadings through a non-fungible token (NFT), to the digital wallets of the unnamed defendants.

The permission was granted as part of an application for interim relief filed by a British citizen allegedly conned by an American online trading website. The plaintiff transferred $2.1 million worth ...

Israeli Privacy Protection Authority Publishes Guidelines on Data Protection in Tele-Health Services

The Israeli Privacy Protection Authority (PPA) published the final version of its guidelines on data protection and privacy obligations in tele-health services, following its March draft. The guidelines are directed to healthcare organizations, clinics, health practitioners, and relevant service providers involved in data processing operations throughout the tele-health value chain.

The guidelines map out the steps that healthcare providers and ...

Court Lifts Injunction Against LinkedIn, Allowing it to Block Scraping of Publicly Available Information

The U.S. federal district court for the Northern District of California has granted LinkedIn's motion to vacate the injunction that prohibited it from blocking hiQ Labs, a California startup, that has been running automated tools to collect publicly posted information of LinkedIn members.

The court was persuaded by LinkedIn's assertion of a significant change in circumstances because hiQ no longer ...

EDPB and EDPS Adopt a Joint Opinion on a Proposal for Regulation on Online Child Sexual Abuse Prevention

Even when facing important matters such as the prevention of sexual abuse of children, the adverse impact on individuals’ rights to private life and data protection must be limited and proportionate. This was one of the key principles expressed in the joint opinion by the European Data Protection Board (EDPB) and European Data Protection Supervisor (EDPS), regarding a new proposed ...

Australia: Google is not Liable for Defamation in Google Search Results

The High Court of Australia found Google not liable for allegedly defamatory content in an article linked in a Google search result. The court’s majority opinion held that Google only serves as a “library” for the article and has no active role in this context.

The case came about from a lawsuit filed by a criminal defense attorney, whom the ...

More News Items