TikTok rebuts US Congress' security concerns
The Hill reports TikTok wrote to U.S.
Discover the latest industry insights and developments with our News from Around the Web page. We curate feeds from a variety of reputable organizations, bringing you a comprehensive overview of relevant news and trends. Stay informed and connected with the most current updates from across the web.
Scotland set to pass first criminal justice biometric data use law
Scotland is nearing approval of the world’s first statutory Code of Practice for use of biometric information, Holyrood reports. The regulation would govern police and the criminal justice system’s “acquisition, retention, use and destruction of biometric data.” Scotland’s Criminal Justice Committee has signed off on the regulation, which could be finalized by mid-November if national ministers do not object to any of its provisions in their meeting Sept.
Court cases may determine insurers' responsibility to clients for BIPA violations
Two cases before the Illinois Supreme Court could serve as precedent for determining insurance companies’ exposure when their clients violate the state Biometric Information Privacy Act, Insurance Newsnet reports. The first case, Cothron v. White Castle System, Inc., would determine if BIPA violations occur on a “per-scan” basis each time an individual submits to a biometric scan. The other case, The Tims v.
FTC rulemaking brings risks, opportunities
The U.S. Federal Trade Commission's privacy and data security rulemaking proposal could prove to be a lofty undertaking despite some advanced planning. IAPP Westin Emeritus Fellow and Goodwin Procter Partner Omer Tene said the broad nature of the agency's recently issued Advance Notice of Proposed Rulemaking brings part risk and opportunity.
EDPB issues Article 65 decision on CNIL fine
The European Data Protection Board issued a binding decision under the EU General Data Protection Regulation's Article 65 dispute resolution mechanism related to a 600,000 euro fine handed down by France's data protection authority, the Commission nationale de l’informatique et des libertes. The Article 65 procedure was triggered by concerned supervisory authorities' issues with the proposed sum of the CNIL fine.
UK DCMS publishes qualitative report examining organizations that suffered data breaches
The U.K. Department for Digital, Culture, Media and Sport published its qualitative report detailing the experiences of organizations that suffered a data breach. The report titled “Exploring Organisational Experiences of Cyber Security Breaches” was commissioned in January by the DCMS.
Congressmen seek information on personal data purchases by federal law enforcement
U.S. Reps. Jerrold Nadler, D-N.Y., and Bennie Thompson, D-Miss., issued a letter to seven federal law enforcement agencies inquiring about alleged purchases of Americans’ data, Gizmodo reports.
Study shows potential issues with fertility apps' privacy practices
- The Verge reports analysis conducted by Mozilla researchers on 25 fertility and period-tracking applications showed potential issues with privacy notices, data collection and use practices, and user privacy protections. Mozilla *Privacy Not Included project lead Jen Caltrider said these app providers need to be "extra diligent when it comes to the privacy and security" but "too many are not."
Text messages may no longer be adequate for 2FA
Text messages may not be secure enough for two-factor authentication, The Wall Street Journal reports. Texts, or SMS messages, were previously a “maintenance communication channel between cell towers and phones” but were widely adopted by consumers who learned they could send texts to other cell customers. Today, hackers can utilize SMS messages to launch phishing attacks and SIM card swapping, where hackers clone a cellphone and can read texts sent to a cellphone.