South Korea's Personal Information Protection Commission will partner with the Ministry of Strategy and Finance in an initiative to expand the government's use of pseudonymous information. The effort includes increasing the availability and quality of data by revising the Public Data Act and Data-Based Administration Act to facilitate better pseudonymization of public and private data.Full story
The MIT Technology Review reports on a potential precedent-setting bill under consideration by the Massachusetts Legislature that puts guardrails on law enforcement's use of facial recognition technology. The bill proposes facial recognition use by the state police only. Massachusetts has more municipal bans on facial recognition use by law enforcement and government than any other U.S. state.Full story
SiliconAngle reports analysis by IBM Security and the Ponemon Institute of 553 data breaches between March 2022 to March 2023 revealed a 15% increase over the last three years in costs associated with a breach. The average cost of a breach spiked USD4.45 million, with breach detection and escalation costs increasing by 42% during the three-year span.Full story
Illinois Instagram users could be entitled to damages stemming from a settlement the company reached in a class-action lawsuit for violations of the state's Biometric Information Privacy Act, NBC Chicago reports. The total settlement pool of USD68.5 million is available to Illinois residents who used Instagram at any point between 10 Aug. 2015 and 16 Aug. this year.
The U.S. Federal Trade Commission and the Department of Health and Human Services' Office for Civil Rights issued a joint warning to hospitals and telehealth providers regarding the privacy and security risks of online tracking technology.
Five years after the EU General Data Protection Regulation came into effect, the European Data Protection Board released new guidelines to provide clarity and consistency in calculating fines across all EU member states. Bird & Bird Partner James Moss and Associate Dan Fara, CIPP/E, CIPM, review the EDPB's five-step approach for calculating fines and also look at the U.K.'s approach, noting a "significant disparity between the EU and U.K.
The Illinois Supreme Court rejected a motion to reconsider its 4-3 decision in Latrina Cothron v. White Castle System Inc., which found employers could be held liable for each violation of the state Biometric Information Privacy Act, Business Insurance reports. A swath of state business interest groups submitted amicus briefs to the state Supreme Court to rehear the case.
The Federal High Court of Nigeria awarded NGN3 million to a newspaper columnist after an account was opened at United Bank for Africa in his name without his consent, The Niche reports.
The cybersecurity and white hat hacking communities are mourning the death of famed hacker Kevin Mitnick at age 59 following a 14-month bout with pancreatic cancer, Data Breach Today reports. Mitnick first rose to prominence as a hacker in the 1990s for a series of high-profile incidents that landed him on the FBI's Most Wanted List. After pleading guilty to wire fraud and computer fraud in 1999, he served five years in prison.
IAPP Managing Director, Washington, D.C., Cobun Zweifel-Keegan, CIPP/US, CIPM, takes a look at priorities for U.S. Congress as its five-week summer recess approaches. Among them is focus on passing this year's National Defense Authorization Act, and a markup will be held 27 July for the Kids Online Safety Act and the Children and Teens' Online Privacy Protection Act. Full story
A view from Brussels: the Cyber Resiliency Act