ICYMI: PrivSec’s Weekly News Picks

Interactive Advertising Bureau Releases Technical Standard to Facilitate Disclosure and Consent in Digital Advertising

IAB Europe reported that it “presented a new technical standard to support the digital advertising ecosystem in meeting requirements relating to user consent under the General Data Protection Regulation (GDPR).”

Working Party 29 Releases Joint Annual Review of EU-US Privacy Shield

The Article 29 Working Party released a joint annual review that identified, and urged the United States authorities to restart discussions to address, several “significant concerns,” including a lack of clear guidance on consumers' redress rights and insufficient U.S. surveillance guarantees.

Related: “FTC Gives Final Approval to Settlements with Companies that Falsely Claimed Participation in Privacy Shield”

House Intelligence Committee Approves Section 702 Renewal

The House Intelligence Committee on Friday approved a bill (HR 4478, the FISA Amendments Reauthorization Act of 2017) that would reauthorize Section 702 of the Foreign Intelligence Surveillance Act through 2021. The bill passed the Committee on a party-line vote, with Democrats objecting to the bill’s provisions intended to make it more difficult to “unmask” the names of Americans collected in the course of intelligence agencies’ information gathering.

Mass. AG Announces Data Breach Consent Decree with Medicaid Billing Company

Massachusetts Attorney General Maura Healey entered into a consent judgment with Multi-State Billing Services for $100,000 arising from the theft of a Multi-State Billing laptop, which allegedly contained unencrypted, personally identifiable information of 2,600 children.

OCR releases “Insider Threats and Termination Procedures” Guidance on Ex-Employee Threat to PHI

The Department of Health and Human Services’ (HHS) Office of Civil Rights (OCR) released a two-page guidance document explaining the risks that ex-employees may pose to protected health information.