See Summaries and Links to Top 5 Privacy Stories Below for March 2019


#5 — Congressman introduces bill requiring public firms to disclose cybersecurity expertise in leadership

A Democrat on the House Intelligence Committee introduced a bill on Wednesday that would require publicly traded companies to disclose to investors whether any members of their board of directors have cybersecurity expertise amid growing cyberattacks targeting U.S. companies.

#4 Bipartisan bill proposes oversight for commercial facial recognition

Hawaii Senator Brian Schatz and Missouri Senator Roy Blunt introduced a bill designed to offer legislative oversight for commercial applications of facial recognition technology. Known as the Commercial Facial Recognition Privacy Act, the bill would obligate companies to first obtain explicit user consent before collecting any facial recognition data as well as limiting companies from freely sharing facial recognition data with third parties.

#3 Thailand Joins the Party of Legislated Data Protection

Following tireless attempts spanning over two decades, Thailand has finally approved the Thailand Personal Data Protection Act (“PDPA”), subject to royal endorsement and publication in the Government Gazette. Previously, the only right pertaining to personal privacy was located in the Thai Constitution, and while certain business sectors (such as telecommunications, healthcare and banking) had some protection, there was an absence of a singular consolidated data protection regime.

#2 Senators Markey and Hawley Introduce Bill to Expand COPPA

As expected, 2019 is shaping up to be the year for privacy reforms, including possible amendments to the 20-year old Children's Online Privacy Protection Act (COPPA). Senators Edward Markey (D-Mass) and Josh Hawley (R-MO) have introduced legislation that would expand COPPA's scope to offer new protections to minors age 13-15, establish new limitations on collecting personal information on children and minors, and create a new division within the Federal Trade Commission (FTC) charged with overseeing marketing directed at children and minors, among other things..

#1 Mark Zuckerberg joins Tim Cook in calling for GDPR-like privacy regulation in the US

In a recent Washington Post op-ed and blog post , Zuckerberg laid out four areas of the internet that require a “more active role for governments and regulators.” One area, he said, is a common framework for comprehensive privacy regulation such as GDPR (General Data Protection Regulation), the EU’s sweeping set of rules that went into effect last May.