-
DeepSeek and personal data transfers to China
DeepSeek may disrupt laws on data protection and transfers on both sides of the Atlantic, as well as disrupting US markets.
-
The GDPR needs to be reviewed, states Swedish Privacy Protection Authority
IMY argues that the regulation risks losing legitimacy if it is not refined.
-
Gravy Analytics breach exposes sensitive location data of millions of users
The FTC’s proposed order against the company requiring it to delete all historic data because of a lack of end user consent for its use comes too late to help those whose sensitive personal information is now potentially exposed.
-
EEOC warns employers about compliance risks around use of wearables
Commission tells employers to think about what data is being gathered by wearables, and what it is used for.
-
DSARs: How to understand your obligations beyond data
UK and EU courts are increasingly saying that it’s not enough to point to a privacy notice to satisfy the extra GDPR requirements.
-
CFPB report says federal privacy law needs to keep pace with states
The CFPB’s report underscores its commitment to addressing growing data privacy challenges and consumer expectations of how they will be handled by businesses.
-
Lyngby-Taarbæk municipality fined for personal data failures
At least 1,000 former employees continued to access a system with personal data after their employment ended.
-
Online privacy law could be changed forever by this NJ court decision
New Jersey’s privacy law is the only US one that guarantees people a payout when requests to keep information private are ignored. Will it survive judicial review?