The Digital Advertising Alliance launched an opt-out consent mechanism for behavioral advertising practices based on encrypted mobile phone numbers. The DAA is adding capabilities to its existing opt-out tool for encrypted email that uses a token-based mechanism to prevent ad targeting.Full story
The Wall Street Journal reports Meta proposed seeking European users' opt-in consent before issuing behavioral advertisements. The company said its systems would be updated to offer users a "yes or no" option for opt-ins across its platforms, including Facebook and Instagram.
The California Privacy Protection Agency will review data privacy practices by connected vehicle manufacturers and other CV technologies. The vehicles are equipped with location-sharing, internet entertainment, smartphone integration and cameras. The CPPA is interested in CV makers' privacy practices because the cars "often automatically gather consumers' locations, personal preferences, and details about their daily lives."Full story
The European Commission opened a public consultation on its proposed template for consumers to lodge profiling complaints against designated gatekeepers under the EU Digital Markets Act. The commission seeks public input on the minimum information gatekeepers should have to increase "transparency and accountability regarding gatekeeper's profiling techniques." The consultation runs until 15 Sept.Full story
In response to market demands brought by the increasing complexity of global privacy regulations, privacy management vendor DataGrail launched a "managed services" platform for its customers. Organizations can now offload their operations for data subject requests and data mapping to a team of DataGrail professionals, allowing organizations' privacy teams to focus on the strategy and objectives of their respective privacy programs.
South Korea's Personal Information Protection Commission opened a public consultation on proposed revisions to its information security and privacy management systems certification. The updates to the existing certification aim to meet principles concerning data collection, pseudonymized data processing and outsourced data processing under amendments to the Personal Information Protection Act.
The U.S. Federal Communications Commission announced a proposed USD20 million fine against affiliated telecommunications providers Q Link Wireless and Hello Mobile Telecom over alleged unauthorized access and disclosure of customer data. The FCC Privacy and Data Protection Task Force investigation found alleged data security issues led to access to customer proprietary network information through unauthenticated customer identities.Full story
BBB National Programs' Digital Advertising Accountability Program announced Canadian advertising exchange Sharethrough agreed to bring its website into compliance with the Digital Advertising Alliance's Self-Regulatory Principles. DAAP's review of third-party targeted advertising practices revealed Sharethrough's privacy notice and opt-out disclosures did not align with self-regulatory standards.
Guernsey's Office of the Data Protection Authority announced intentions to pursue legal proceedings against companies not registered under the Data Protection (Bailiwick of Guernsey) Law. The ODPA plans to send out noncompliance letters regarding required annual registration before action is taken through the Magistrate's Court Petty Debt process.
MediaPost reports the U.S. District Court for the Southern District of California ruled mobile data broker Kochava must face a class-action lawsuit over alleged location data sales. The court's decision over Kochava's motion to dismiss indicated the data practices could "amount to an egregious breach of social norms."Full story