Indonesian lawmakers pass data protection bill
Reuters reports Indonesian lawmakers overwhelmingly passed a long-awaited data protection bill into law Sept. 20. Indonesia is the fourth most-populous nation in the world.
Discover the latest industry insights and developments with our News from Around the Web page. We curate feeds from a variety of reputable organizations, bringing you a comprehensive overview of relevant news and trends. Stay informed and connected with the most current updates from across the web.
Data brokers have long exploited women's data prior to Roe reversal
Following the overturning of Roe v. Wade by the U.S. Supreme Court, data brokers exploiting data of pregnant individuals has come under greater scrutiny. However, data brokers’ practice of selling women’s sensitive data predates the Supreme Court’s decision, Duke University Sanford School of Public Policy Senior Fellow Justin Sherman writes for Lawfare.
CJEU advocate general backs antitrust authorities looking into privacy
A non-binding opinion from Court of Justice of the European Union Advocate General Athanasios Rantos states that a competition authority may take into account the compatibility of a commercial activity with the EU General Data Protection Regulation. The opinion is in response to a case between the German Federal Competition Authority and Meta.
EDPB issues opinion on German processor's EuroPriSe certification criteria
The European Data Protection Board adopted an opinion against the European Privacy Seal application of a German data processor. The German entity submitted its EuroPriSe certification criteria to the North Rhine-Westphalia data protection authority, the Landesbeauftragte für Datenschutz und Informationsfreiheit.
AEPD, EDPS joint paper clarifies common machine-learning misunderstandings
The European Union emphasized the importance of artificial intelligence in the EU's digital strategy. Machine learning, a subset of AI, relies heavily on accurate datasets.
Uber hack likely result of multifactor authentication 'fatigue'
Security experts are sounding warnings of multifactor authentication “fatigue” from employees following the social engineering hack of Uber, TechCrunch reports. Uber is not the only major technology company to suffer a hack through its MFA system, however.
Airline suffers data breach
American Airlines notified customers the company experienced a data breach over the summer, Bleeping Computer reports. American Airlines discovered the breach July 5 and secured the “limited number" of employee email accounts that were compromised. The company determined employees’ and customers’ personally identifiable information could have been exposed. In response, American Airlines will offer impacted customers two years of free credit monitoring.
Staying on top of key dates in US state privacy law
The patchwork of U.S. comprehensive state privacy laws hasn't come into force just yet, but it is on its way. The five state laws passed to this point will all be effective and enforced by 2024 with additional obligations or sunsetting provisions for select laws set for 2025. The IAPP created a timeline of key dates for state privacy laws that can help professionals stay on top of compliance deadlines.
Clearview AI extends database access to US public defenders
Clearview AI has begun allowing public defenders to access its facial recognition database of more than 20 billion facial images, The New York Times reports. The access helped a Florida man prove his innocence against accusations of vehicular homicide.
CPPA to give CPRA rulemaking update
The California Privacy Protection Agency will provide an update on California Privacy Rights Act rulemaking during its open meeting Sept. 23. CPPA Board members Lydia de la Torre and Chris Thompson will give a subcommittee presentation on the "course of action" for the current rulemaking process, which included public hearings Aug. 23-24.