New DETOUR Act may pass in U.S. to fight against “dark patterns” which makes it illegal for tech companies to design, modify or manipulate user interface to obtain consent or user data.
Consent is unmanageable at today’s scale. New proposed privacy regulations seek to establish a set of data rights that cannot be signed away.
EU court recently ruled for website operators to seek user consent before transferring personal data via the Facebook ‘like’ button. This could have an impact to operators’ commercial gains and user experience when using the websites.
New Clear History Facebook privacy tool launched in Ireland, South Korea and Spain allows user to decide which apps and websites can track their personal information and browsing data.
The concept of consent has had a long history in privacy and data protection. Privacy consent has been evolving, especially under the GDPR. What are the expanded requirements for consent and what actions must organizations begin taking today to prepare for the coming of the GDPR on 25 May 2018?
The use and disclosure of personal data for direct marketing purposes is strictly regulated in Hong Kong with more severe consequences for non-compliance than other breaches of Hong Kong privacy law, and is often found to be significantly more onerous than in other jurisdictions. This article summarises some of the key elements of Hong Kong’s direct marketing regime.
Data privacy isn’t optional anymore, and if companies treat customers’ privacy lightly, they’re going to lose them. Instead, by prioritizing security, organizations can build brand trust and improve relationships with valued consumers, a business proposition that’s good for everyone.
U.S. push for COPPA update and UK publication of 16-point draft code of practice for children’s privacy show a move towards stronger data protection laws against tracking and monitoring of children.
We should strive for a human-centric, value-driven, yet flexible and business friendly standards backed by laws and regulatory enforcement. Yet abandoning the old ways of relying on privacy notices and consent forms will remain contentious, controversial and, if it happens, still take a lot of time.
Out of all six legal bases for processing offered by the GDPR, consent and legitimate interests are the legal bases most likely to be relied upon to justify direct marketing. Where the direct marketing involves electronic communications, however, is where things get muddy.
