Your daily source for the most important privacy and data protection news from around the world.
Dressing old laws in class-action suits: The ECPA 'party exception'
How a ChatGPT update spurred a mental health dilemma
The New York Times spoke with current and former OpenAI employees to understand changes made to ChatGPT earlier this year that sent some users into spells of delusion based on the chatbot's responses. Alterations were made to increase return users on a daily basis, but those updates generated sycoph...
Advocacy groups urge probe of ICO's handling of Afghanistan evacuation data breach
Advocacy groups are asking for an investigation into the U.K. Information Commissioner's Office's handling of a 2022 Ministry of Defence data breach impacting approximately 19,000 individuals, including U.K. special forces and spies involved in an Afghan resettlement program, the Guardian reports. I...
Denmark's DPA releases guidance on disclosing employment information
Denmark's data protection authority, Datatilsynet, released guidance on disclosing employees' information to contracting authorities, aiming to help strike a balance between compliance obligations for employment contracts and data protection. Datatilsynet noted suppliers must "find a basis for the d...
Raft of US children's online safety bills could move forward soon
The U.S. House Energy and Commerce Committee plans to release several bills regarding children's online safety and may hold a public hearing on them in early December, Bloomberg Government reports. Bills potentially up for debate include the Kids Online Safety Act, the Children and Teens' Online Pri...
California's attorney general announces $1.4M CCPA settlement
California Attorney General Rob Bonta announced a settlement in a lawsuit against Jam City for USD1.4 million after the company allegedly violated the California Consumer Privacy Act's user opt-out provisions. Bonta noted consumers should be able to opt out of the collection and sale of their person...
eSafety Commissioner launches resources outlining Australia's social media restrictions
Australia's eSafety Commissioner launched an online hub to explain the country's new social media age restriction laws that go into effect in December. The hub includes resources such as an assessment guide and frequently asked questions. Meanwhile, The Sydney Morning Herald reports Malaysia wants t...
South Korea's PIPC announces fines for insufficient data security
South Korea's Personal Information Protection Commission issued fines totaling KRW177.6 million to three businesses for alleged insufficient data security measures to combat query language injection attacks. The incidents were marked by backend database manipulation through code injection. Meanwhile...
China's CAC posts draft PIPL regulations for large online platforms
The Cyber Administration of China opened a public consultation on draft Personal Information Protection Law regulations for large online platforms with more than 50 million registered users. The regulations include various adherence to protection principles, specific children's data protection oblig...
AI as product vs. AI as service: Unpacking the liability divide in EU safety legislation
As companies look to implement AI systems, they must determine if their AI tools are considered products or services under the EU's obligations. EU Digital Partners Managing Partner Petruta Pirvan, AIGP, CIPP/E, CIPP/US, CIPM, FIP, wrote AI system classification "directly influences the jurisdiction...