Your daily source for the most important privacy and data protection news from around the world.
Nebraska, Vermont's Age Appropriate Design Codes look to bolster children's online safety
Risk analysis is the foundation of data security, but regulator approaches differ
Recent data security enforcement actions by the U.S. Department of Health and Human Services underscore the notion, IAPP Cybersecurity Law Center Managing Director Jim Dempsey writes, that "failure to conduct an adequate risk assessment is itself a violation of the security rule promulgated under th...
OAIC seeks fines against telecom related to 2022 data breach
The Office of the Australian Information Commissioner filed civil penalty proceedings under the Privacy Act 1988 against telecommunications firm Optus related to a data breach first publicized in 2022 that saw 9.5 million customers' personally identifiable information compromised. The OAIC alleged O...
A view from Brussels: The challenge of intimate privacy
IAPP Managing Director, Europe, Isabelle Roccia, CIPP/E, describes two different experiences of the efforts institutions will take to try and safeguard people's privacy. Both instances touch on the concept of "intimate privacy," an issue which is prevalent in several EU countries' laws.Full story...
Generative AI entertained user's fantastical scenarios, deepened mental health issues
A ChatGPT user shared his chat logs with The New York Times after he engaged with the chatbot for hundreds of hours and it temporarily convinced him he was a cutting-edge scientist working to develop methods to break cryptography and could start a business worth millions. Health experts said the use...
Germany's digital minister calls AI Act regulations 'overloaded and too complex'
Germany's Federal Minister for Digital Transformation and Government Modernisation Karsten Wildberger criticized EU AI Act regulations in a recent interview and called for them to be more "innovation friendly," Euractiv reports. Wildberger also voiced support for the European Commission's pledge to ...
Brazil's DPA extends deadline for AI, data protection sandbox comments
Brazil's data protection authority, the Autoridade Nacional de Proteção de Dados, extended the deadline for commenting on its AI and data protection regulatory sandbox to 25 Aug. The sandbox is open to legal entities under public or private law in the country.Full story...
Garante launches investigation after public figure's private conversation is leaked
Italy's data protection authority, the Garante, opened an investigation after an actor's private conversation with media personnel was shared without the actor's consent. The Garante issued a warning for "all potential users of the audio or content extracted from the actor's private conversation, re...
CNIL offers consumers advice on data protection after a breach
France's data protection authority, the Commission nationale de l'informatique et des libertés, released guidance on what a person can do if their personal data was leaked or stolen. The CNIL noted it cannot confirm if someone's information was compromised in a breach but affected organizations must...
US state attorneys general look to block robocalls
A bipartisan coalition of U.S. state attorneys general announced its Operation Robocall Roundup initiative that aims to stop nuisance robocalls, News From The States reports. The attorneys general sent warnings to voice service providers and downstream providers in an effort to stop production of th...