Privacy and ‘Right to be Forgotten’ Laws Complicate Rules for Global Reporting
February 8, 2021 – When sharing content in any form, publishers need to understand the legality and impact of the content may have on foreigners, especially given the European Union’s privacy law, a panel of experts concluded at a Tuesday conference hosted by the American Bar Association. The comple
Derek Shumway
February 8, 2021 – When sharing content in any form, publishers need to understand the legality and impact of the content may have on foreigners, especially given the European Union’s privacy law, a panel of experts concluded at a Tuesday conference hosted by the American Bar Association.
The complexity of what is legal or illegal to publish has risen in light of continuing evolution in protecting peoples’ privacy rights.
Nowadays, some question whether the posting of mugshots in a newspaper might reveal personal bias, or promote a community of discrimination among its readers. Other news organizations have moved to take down archived stories of articles that might haunt the victims involved – otherwise known as the “right to be forgotten” – or even refrain from publishing minor crimes to protect privacy rights.
To further complicate the issue, what might be acceptable and perfectly legal to publish in one country may not be the same in another country, legal experts said at the ABA’s Communications Law Conference forum on February 2.
There are a few ways news organizations can accomplish this, said Lauren Fisher, chief legal officer at Vox Media.
When distributing content, news organizations can geoblock their audience from sharing information widely that may run offside of foreign laws.
EU’s General Data Protection Regulation complicates global reporting
In comparing U.S. law with the EU’s stringent General Data Protection Regulation privacy law, Fisher said it would be best for a U.S. organization to have no physical or digital presence in the EU if it wants to avoid complying with GDPR requirements.
However, this is extremely difficult because the internet has no borders, and the dissemination of information online can hardly be contained.
The GDPR is crucial knowledge because it ensures U.S. companies are respecting trade agreements between the U.S. and the 27-country pact.
Relatively recently, U.S. companies have needed to ensure their audiences know precisely what is being done with the collected personal data. For example, GDPR-compliant websites now require users to transparently make clear that tracing cookies are being used. Other rules include explicit opt-in for data collection or tracking.
Difficult-to-square rules from country to country
And therein lies some of the complications: Publishing rules can vary significantly between countries.
For example, when trying to conform to EU rules, a newsroom in New York can be hamstrung by foreign privacy laws if an investigation it’s doing involves British citizens, said Randy L. Shapiro, global newsroom counsel for Bloomberg news. Reporters need to understand the legality of reporting such information, he said.
Similarly, publishing companies abroad must be aware of proper reporting rules. If a reporter from a global newspaper moves from the U.S. to the EU, their reporting practices may not be allowed through border security. This is so because it’s not just about foreign publishing issues — it’s also about domestic privacy concerns.
For example, in some jurisdictions sports athletes can sue if information about their drug test failure is leaked, on the grounds of invasion of privacy concerning medical records, said Mark Stephens, Partner at London-based
In other cases, said Gabriela Zanfir-Fortuna, senior counsel of the Future of Privacy Forum, it’s also about knowing which other countries are following GDPR rules.