PRG News Roundup, September 22, 2021

Upcoming Events

Guarini Colloquium: Regulating Global Digital Corporations – Monday September 27, 2021, 17:20 – 18:20 In this NYU Law School colloquium, participants will read and discuss a recent paper by Elettra Bietti on digital platform regulation. (link)

News Items 

China passed the Personal Information Privacy Law (PIPL) at the end of August 2021. The PIPL covers all businesses, including those doing business outside of China, that interact with, store, share, collect, or otherwise use personal information from people within China. The PIPL regulates the ways in which “personal information handlers” can handle personal data and includes data transfer restrictions. Violation of the PIPL can result in fines, notice on China’s social credit system, or being prohibited from future business in China. It will go into effect on November 1, 2021. (link, link)

The Cyberspace Administration of China passed the The Regulation on Management of Automobile Data Security (Trial), which will impact many sectors, including automakers, software suppliers, distributors, maintenance organizations, and ride hailing platforms. Through this, “important data” such as geographic information, video and images, and personal data, will need to be stored within China. Any data transfers outside of China will need to undergo a security assessment. (link)

China’s Data Security Law went into effect on September 1. The Data Security Law outlines how companies active in China should classify and manage data. (link)

Apple released iOS 15 on September 20. While Apple had previously announced a plan to introduce technology to scan user devices for images of child sex abuse material (CSAM), that plan has been delayed after criticism from privacy, policy, and rights groups, as well as thousands of individuals. (link) Additionally, new privacy controls are available in iOS 15, but will not be available in all countries or may require a subscription fee. (link)

Zoom made a $14.7 billion proposal to acquire Five9. The deal is currently being reviewed by the Committee for the Assessment of Foreign Participation in the United States Telecommunications Service Sector for national security concerns, due to Five9 having operations in Russia. Zoom already has research and development staff located in China. (link)

Facebook is making changes to its news feed, adding “junk code” to HTML features used for accessibility, In addition to impacting technology like screen readers, which blind and visually impaired people may implement to help use a computer, these changed affect ad blockers and prevent automated data collection, impacting Facebook users and researchers using automated data collection. (link)

As voting begins in Russia, Facebook and Google removed a smartphone app that tells users what opposition candidates are likely to defeat candidates backed by Russian authorities. (link)

The Illinois Appellate Court issued an opinion on how the statute of limitations applied to the state’s Biometric Information Privacy Act (BIPA). The court suggested a one year limit on claims about “unlawful profit or disclosure” and a five year limit on claims of “data retention policy disclosure, informed consent, and safeguarding.” (link)

(compiled by Student Fellow Molly de Blanc)