A study by researchers at Carnegie Mellon University, the University of Tennessee, Knoxville, Abl Schools, University of Utah and University of Tübingen found an estimated 4.9 million public Facebook posts shared by U.S. schools and districts could identify students, Science X Daily reports. The research found approximately 726,000 of the posts are believed to identify one or more students by first and last name.
France’s data protection authority, the Commission nationale de l'informatique et des libertés, announced nominations are now open for the seventh edition of the CNIL-Inria Privacy Award. The accolade is awarded to the author or authors of a scientific paper about privacy and personal data protection published between January 2020 and October 2022.
During the second International Counter Ransomware Initiative Summit, governments from 36 countries and the European Union committed to develop coordinated guidelines to prevent and respond to ransomware incidents, work together to increase political costs on countries enabling ransomware actors, and establish an International Counter Ransomware Task Force.
Newly discovered documents show a U.S. National Security Agency analyst developed a surveillance project 10 years ago involving unauthorized surveillance and collection of communications data of U.S. citizens or organizations, Bloomberg reports. A 2016 report by the NSA’s Office of Inspector General called the analyst’s actions “egregious,” but it was unclear whether any action was taken against the analyst.
A draft data protection law has been submitted to the Parliament of Ukraine. The proposal would regulate personal data processing, as well as the processing of other types of data, including biometric information. An explanation of the draft said it is needed as current legislation “does not fully ensure the protection of personal data in Ukraine in the light of the development of international standards in this area.”Full Story
The political turmoil concerning the U.K. government’s “mini-budget” should be a cautionary tale for the European Data Protection Board and its recently proposed “targeted update” to its “Guidelines on Personal Data Breach Notification,” Digiphile Services Limited Managing Director, Solicitor Phil Lee writes.
BBB National Programs’ Children’s Advertising Review Unit found Gameloft's Disney Getaway Blast mobile application violated the Children’s Online Privacy Protection Act and CARU’s Self-Regulatory Guidelines for Advertising and for Children’s Online Privacy Protection. CARU identified issues with Gameloft’s data collection and advertising practices and noted “unclear and inconsistent” language in its privacy policy.
The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency published fact sheets outlining threats against systems “using certain forms of multi-factor authentication,” InfoSecurity Magazine reports.
The California Privacy Protection Agency Board canceled its upcoming meeting originally scheduled for Nov. 4. According to the meeting’s agenda, board members were anticipated to discuss and possibly take action on proposed regulations to Sections 7,000-7,304 of the California Consumer Privacy Act, as amended by the California Privacy Rights Act. Information regarding the next regular CPPA Board meeting will be posted on the agency’s website.
The city of San Francisco’s security camera ordinance is now in effect.