On 22 March 2024, the Act amending Consumer Protection in Electronic Commerce (E-Commerce Act/Bill no. 2120122/Act no.19255) entered into force. The Act broadens competencies for certain institutions. Previously, the Fair Trade Commission was the on…
On 19 March 2024, the State Administration for Market Regulation (SAMR) closed the public consultation on the revised implementation rules for 147 types of product quality supervision and random inspections, including servers. The revisions aim to i…
On 18 March 2024, the Office for Civil Rights (OCR) at the Department of Health and Human Services (HHS) issued an updated Guidance outlining the responsibilities of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) covered ent…
On 18 March 2024, the Council of the European Union adopted the regulation on data collection and sharing for short-term accommodation rentals, including data-sharing measures. The regulation aims to harmonise and streamline the framework for data g…
On 17 March 2024, the New York Department of Financial Services (NYDFS) closed a consultation on a proposed AI guidance for insurers. The Circular outlines NYDFS’s expectations towards insurers who use external consumer data and information sources …
On 15 March 2024, the Swedish Data Protection Authority (IMY) announced a review of its handling of complaints against holders of voluntary publication licenses under the EU Data Protection Regulation (GDPR). This decision was made following the rul…
On 15 March 2024, the Polish Data Protection Authority (UODO) issued a statement on the processing of health data by medical entities in a dual role as both employers and medical service providers. This was the case in the judgment of 21 December 20…
On 14 March 2024, the Chinese Ministry of Industry and Information Technology (MIIT) issued an order listing 62 apps and SDKs that were found to commit user rights violations. In particular, the apps and SDKs were found to breach the Personal Inform…
On 14 March 2024, the Korean Personal Information Protection Commission (PIPC) imposed fines of KRW 339'907 million and penalties of KRW 18 million on True Good Travel, Luan Korea, and D.H. International. The companies were found to have violated Ar…
On 13 March 2024, the Court of Appeal in Stockholm issued a ruling (Case 6027-23) on the applicability of the EU Data Protection Regulation (GDPR) in relation to the Swedish constitutional protection under the Basic Law on Freedom of Expression over…