France’s data protection authority, the Commission nationale de l’informatique et des libertés, issued guidelines regarding required disclosures around changes to health data processing. The CNIL provided a brief FAQ detailing approaches and obligations associated with updates to initial processing disclosures.
Full story