-
Gravy Analytics breach exposes sensitive location data of millions of users
The FTC’s proposed order against the company requiring it to delete all historic data because of a lack of end user consent for its use comes too late to help those whose sensitive personal information is now potentially exposed.
-
EEOC warns employers about compliance risks around use of wearables
Commission tells employers to think about what data is being gathered by wearables, and what it is used for.
-
DSARs: How to understand your obligations beyond data
UK and EU courts are increasingly saying that it’s not enough to point to a privacy notice to satisfy the extra GDPR requirements.
-
CFPB report says federal privacy law needs to keep pace with states
The CFPB’s report underscores its commitment to addressing growing data privacy challenges and consumer expectations of how they will be handled by businesses.
-
Lyngby-Taarbæk municipality fined for personal data failures
At least 1,000 former employees continued to access a system with personal data after their employment ended.
-
Online privacy law could be changed forever by this NJ court decision
New Jersey’s privacy law is the only US one that guarantees people a payout when requests to keep information private are ignored. Will it survive judicial review?
-
UK watchdog calls for checks on data safety over use of WhatsApp by NHS staff
The proposal comes after mounting concerns about the use of WhatsApp among NHS staff, which has raised data safety issues.
-
Finnish DPO fines Posti €2.4m for GDPR violations with electronic mailbox
The company allegedly illegally processed customer data when creating a new electronic mailbox for two million customers that haven’t requested the service.