Proposals for the reform or ‘modernisation’ of Council of Europe Data Protection Convention 108 have now been forwarded from the Convention’s Consultative Committee for consideration by the Council of Ministers. In most respects, the proposed changes greatly strengthen the Convention, and...

TRUSTe Inc. is the largest global provider of privacy certifications - ‘privacy seals’ - to businesses, with the ostensible purpose of assuring consumers that they can have confidence in the privacy practices of those businesses. Its operations in two of the most important (and...

For the past eight years, Vietnam has steadily expanded and strengthened its legislative protections of privacy in relation to e-commerce, and in consumer transactions generally. Government Decree 52 of May 16, 2013 on e-commerce (Decree No. 52/2013/ND-CP), which took effect on July 1, 2013,...

Australia's conservative coalition agreed to introduce a mandatory data breach notification (MDBN) scheme, as part of the political trade-off to obtain parliamentary passage of its data retention law in 2015, and as recommended by a Parliamentary Joint. MDBN legislation had previously been...

Financial penalties are often not the most important method of enforcement of data privacy laws. But they are easier to obtain (though still a non-trivial task), and can be extracted from the records of courts, data protection authorities (DPAs), government agencies, and other authorities...