December 2023

To significantly facilitate cross-border data flow from Mainland China to Hong Kong (and vice versa), the Cyberspace Administration of China (CAC) and the Innovation, Technology and Industry Bureau of the Government of the Hong Kong Special Administrative Region (ITIB) has published the template Standard Contract for Cross-boundary Flow of Personal Information Within the Guangdong–Hong Kong–Macao Greater Bay Area (Standard Contract) and its implementation guidelines on December 13, 2023.Continue Reading Newly Issued Guidelines on Standard Contracts for Cross-boundary Data Flow Within the Greater Bay Area (i.e., Hong Kong, Macau and Nine Key Mainland Cities)

The Federal Communications Commission (“FCC” or “Commission”), at its Open Meeting on December 13, 2023, approved new rules under the Telephone Consumer Protection Act (“TCPA”) regarding texting that will impact many marketers. The rule changes adopted in the Second Report and Order (“Order”) are part of the agency’s ongoing efforts to combat “unwanted and illegal calls,” announcing a “comparatively new focus of combatting unwanted and illegal text messages.” The FCC finds that the “increase of unwanted and illegal texts … frustrate consumers, and scam texts can cause serious harm.”Continue Reading FCC Restricts Lead Gen and Makes Other Telemarketing Reforms

In case you missed it, below are recent posts from Privacy World covering the latest developments on data privacy, security and innovation. Please reach out to the authors if you are interested in additional information.

Notes from the Asia Pacific Region, December 2023 | Privacy World

Singapore to Amend Cybersecurity Law | Privacy World

The

The Spanish Data Protection Authority (AEPD) has issued a set of guidelines on the use of biometric systems for access and employee attendance control defining the criteria for using these systems (and the measures to be considered in the context of these processing activities) in compliance with the General Data Protection Regulation (GDPR).Continue Reading The Spanish DPA’s Restrictive Approach to Processing Biometric Data for Access and Attendance Control

Google is adding a new Health App Policy to its set of requirements for Health Content and Services. The policy will become effective at the end of May 2024 and will apply to health apps – medical apps enhancing medical care and facilitating diagnosis and treatment, health and fitness apps enabling users to reach fitness

On December 4, 2023, Singapore’s Ministry of Health (Ministry) announced that the nation’s first ever comprehensive health data law, the Health Information Bill (Bill), will be introduced in mid-2024.

A set of Cyber and Data Security Guidelines for Healthcare Providers (Guidelines) was also published. Of particular importance is that these guidelines will frame and

Nine years after its initial inception, Singapore’s data protection authority (Commission) published an updated set of advisory guidelines for the healthcare sector (Revised Guidelines) in September 2023.

As with other advisory guidelines issued by the Commission, the Revised Guidelines are not intended to be legally binding, but will guide the interpretation and enforcement of Singapore’s