France's data protection authority, the Commission nationale de l'informatique et des libertes, fined online advertising company Criteo 40 million euros for alleged EU General Data Protection Regulation violations. The CNIL said Criteo did not verify individuals' consent for data processing while violating principles for information and transparency, right of access, and data erasure.
Privacy counsel Giulia Carná, CIPP/E, CIPM, FIP, explores privacy-enhancing technologies, which she said have "become a global trend, with increased attention from regulators and public authorities worldwide." She added, "From a lawyer's perspective, working in the privacy domain for several years, PETs are an interesting landscape to explore and are full of potential, but not exempt from challenges, and legal and practical considerations in day-to-day operations."Full story
As trans-Atlantic negotiators work to finish the EU-U.S. Data Privacy Framework, more work will need to be done to ensure it does not meet a similar fate as the invalidated Privacy Shield agreement at the Court of Justice of the European Union, according to a new report from the Atlantic Council. Suggestions included both the U.S.
Forbes reports TikTok replied to U.S. senators' questions regarding potential details not previously disclosed during a Senate subcommittee hearing on potential storage of U.S. users' data on Chinese servers. The social media platform clarified prior storage claims, telling lawmakers that "creator data," which TikTok defines as "signed contracts and related documents for U.S.
The Center for Growth and Opportunity at Utah State University released a policy paper on potential structure and considerations for rules concerning age verification. The 10 recommendations outlined by the CGO were bucketed into three categories, including balance, specificity and understanding. Recommendations under the specificity category concern privacy and risk management.Full story
More than a dozen U.K. banks are engaged in "advanced talks" with British law enforcement and government agencies to "systematically share intelligence on major financial crimes," Reuters reports.
The 2023 IAPP-TRU Privacy Professionals Salary Survey offered a window into the privacy profession's compensation impacts, including education, experience, motivation and job satisfaction. To complement the report, the IAPP created an infographic that provides a high-level overview of the report's key data points, impactful figures and meaningful statistics.Full story
What began as intimate happy hours with members of the LGBTQ Privacy and Tech Network blossomed into the inclusive LGBTQ + Allies After Party, held during, but separate from, the 2022 and 2023 IAPP Global Privacy Summit in Washington, D.C. This gathering of LGBTQ+ privacy professionals and allies celebrates the community and individuality, while raising funds for benefit advocacy organizations. IAPP Staff Writer Jennifer Bryant speaks with members of the organizing committee about the significance of the event, its message and its success in giving back.
The European Data Protection Board adopted a template for a cross-border EU General Data Protection Regulation complaint form. The voluntary template, which can be filed by or on behalf of an individual, will "facilitate the cross-border exchange of information regarding complaints between (data protection authorities)" and "help DPAs save time and resolve cross-border cases more efficiently," according to EDPB Chair Anu Talus.
The Los Angeles Times reports on U.S. President Joe Biden's multistakeholder meeting in San Francisco over the U.S.'s approach to artificial intelligence. Biden said the U.S. needs to look toward "seizing this moment" with AI and "manage the risks to our society, to our economy and our national security." Common Sense Media founder and CEO Jim Steyer attended the meeting and said in statement that all parties realize "there is enormous risk in inaction" relating to appropriate AI regulation.