The U.S. Securities and Exchange Commission charged four companies "with making materially misleading disclosures regarding cybersecurity risks and intrusions." The SEC issued a USD4 million civil penaltyto Unisys, a USD1 million civil penalty to Avaya Holdings, and two USD995,000 civil penalties to Check Point and Mimecast, respectively.
Meta will begin testing its facial recognition technology, which aims to block malicious advertisements by identifying ads created using public figures' Facebook photos, Reuters reports. The company previously shut down its facial recognition software in 2021 after it allegedly collected biometric data without consent.
A lawsuit filed in the U.S. District Court for the Eastern District of Virginia by nonprofit The Institute for Justice claimed the use of surveillance company Flock's technology by the City of Norfolk, Virginia, violates citizens' Fourth Amendment rights, 404 Media reports. Norfolk allegedly uses 172 Flock cameras to track and collect license plate information.
Brazil's data protection authority, the Autoridade Nacional de Proteção de Dados, will celebrate its fourth anniversary with an event 6 Nov. The ANPD will reflect on its enforcement actions and its efforts to strengthen "its role as guardian of the digital rights of Brazilians and reinforcing its commitment to transparency and respect for privacy in the digital environment."Full story
The European Commission opened a public consultation for setting a regulation under the EU AI Act to establish a scientific panel of independent experts that will advise the European AI Office. The regulation would set the rules by which the panel will operate. The consultation closes 15 Nov.Full story
The U.S. Office of Management and Budget published a request for information through 16 Dec. on federal agencies' collection, processing, sharing and use of commercially available information containing personally identifiable information. Meanwhile, the U.S. Department of Labor released recommended AI best practices to ensure the better job quality and benefits to workers when utilized in a job setting.
The U.K. Information Commissioner's Office is helping the Coalition for Privacy Compliance in Advertising develop its privacy certification using ICO guidelines, AdExchanger reports. CPCA founder Mattia Fosci said the organization is developing the certification to help advertisers comply with privacy obligations and foster relationships between organizations and the ICO. Full story
The Office of the Australian Information Commission published guides for businesses to help with privacy law compliance around AI development and deployment. One guide is geared toward businesses meeting their privacy obligations when deploying commercially available AI products and to help them select the appropriate tool.
Microsoft published its Digital Defense Report 2024 outlining the company's efforts to prevent cyber incidents and how AI has its cybersecurity strategies. The report claimed Microsoft tracked more than 1,500 cyber threat groups and sent consumers 78 trillion security signals per day to bolster digital security in 2024.Full story
Organizations must navigate third-party risks with EU data protection regulations to ensure compliance while also developing its digital cybersecurity to prevent cyber harms. PROVARIS Varga and Partners' Tamás Bereczki, CIPP/E, and Ádám Liber, CIPP/E, CIPM, FIP, provide an outline of EU-compliant third-party obligations and risk management practices. Full story