The U.K. Information Commissioner's Office issued opened its fifth consultation on generative artificial intelligence, which also features a survey for stakeholders. The final consultation in the ICO's series focuses on assigning accountability for compliance with data protection laws throughout the generative AI supply chain.
Norway's Directorate for Administration and Financial Management said the country's data protection authority, Datatilsynet, needs more resources in order to carry out its responsibilities and recommended it offer clearer guidance on how to comply with data protection rules. The evaluation also said the agency should take a more dialogue-focused approach to enforcement.Full story
The U.K. Competition and Markets Authority accepted Meta's proposals for handling its advertisers' data.
Australian Privacy Commissioner Carly Kind issued a statement indicating that Clearview AI would not be subject to further regulatory scrutiny in Australia "at this time," following recent media reporting the company was not complying with the terms of a 2021 Office of the Australian Information Commissioner determination against the company.
Members of the U.S. National Institute of Standards and Technology interviewed the winners of the UK-US Privacy-Enhancing Technologies Prize Challenges about their approach to privacy-preserving federated learning.
Entertainment Software Rating Board Senior Vice President Stacy Feuer, CIPP/E, CIPP/US, k-ID Chief Legal and Privacy Officer Timothy Ma, CIPP/E, CIPM, Bird & Bird Partner and Head of Privacy and Data Protection for Ireland Anna Morgan, and Baker McKenzie Tech and Privacy Partner Jonathan Tam, CIPP/C, CIPP/US, constructed a children's privacy case study to outline the potential for data protection compliance across global frameworks.
Argentina's Public Information Access Agency published recommendations for parents on how to teach children to protect their personal information while using social media or browsing websites. The agency offered tips on how to teach children to value their personal data, updates to regulations protecting it and how to submit complaints.Full story
U.S. state-level privacy enforcement has risen steadily in recent years as state attorneys general are given more legal tools and resources. The Texas attorney general's office is the latest example, recently finalizing a USD1.4 billion privacy settlement with Meta and now suing automaker GM for its alleged sale of driving data to insurance companies.
Lithuania's State Data Protection Inspectorate opened a public consultation on revisions to its Guidelines for Managed Personal Data Security Measures and Risk Assessment for Data Controllers and Data Processors. The updated guide reflects recommendations from the EU Agency for Cybersecurity and the International Organization for Standardization standard 27701:2019.
KrebsOnSecurity reports on updated details about the National Public Data security breach impacting 2.9 billion records. Analysis revealed an NPD-affiliated data broker published administrators' web credentials to its database, potentially opening access to the shared database. Two websites were stood up to help confirm if individuals' data was involved in the breach.Full story