Bermuda Privacy Commissioner Alexander White, CIPP/A, CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPM, CIPT, FIP, released guidance for employers to ensure employee data is safeguarded. The guidelines detail the use of privacy protections, surveillance monitoring and employers' role in protecting employee data.Full story
TikTok asked the U.S. Court of Appeals for the District of Columbia Circuit to block the enforcement of the Protecting Americans From Foreign Adversary Controlled Applications Act that requires the platform to find a new owner or face a ban in the U.S., MediaPost reports. The company said the surveillance arguments raised by lawmakers do not constitute a sound reason to block the app.Full story
The Wall Street Journal reports on Worldcoin's aim to develop a vast eye-scanning identification-verification system and the response from governments around the world. Worldcoin Chief Privacy Officer Damien Kieran said the technology anonymizes the data collected. "We don't collect data to harvest it. We don't sell data.
Systematic artificial intelligence testing, or red teaming, focuses on testing generative AI systems to avoid potential legal liabilities. Luminos.Law's Andrew Eichen, Ekene Chuks-Okeke and Brenda Leong, AIGP, CIPP/US, analyzed organizations' use of red teaming to navigate risks associated with AI. Full story
IAPP Managing Director, Washington, D.C., Cobun Zweifel-Keegan, CIPP/US, CIPM, offers his take on the latest privacy and artificial intelligence governance developments in the nation's capital and around the U.S. This week, he peels back the layers on both the interplay and unique difference between U.S. state privacy and consumer protection enforcement.Full story
The 118th U.S. Congress' term is winding down. Federal lawmakers raised various privacy-focused bills during the two-year cycle. This updated IAPP tracker accounts for the most recent legislative developments around notable privacy proposals during the 2023-2024 session.Full story
In May 2024, the U.S. National Institute for Standards and Technology launched a new program called ARIA, Assessing and Impacts of AI. Its aim is to advance sociotechnical testing and evaluation of artificial intelligence by developing methods to quantify how a given system works within real-world contexts. Potential outputs include scalable guidelines, tools, methodologies and metrics.
Poland's data protection authority, Urząd Ochrony Danych Osobowych, published guidance for data protection compliance measures related to the Act on Counteracting Threats of Sexual Crime. The UODO suggested organizations perform risk assessments, assign an administrator to verify compliance with privacy laws and enable adequate data protection standards to ensure personal data collected by organizations is secure.Full story
The New York Times reports state lawmakers amended California Senate Bill 1047, which would require developers of artificial intelligence technologies to undergo safety testing before new models could be released to the public and would subject them to penalties if their models caused significant public harm. The changes to the penalty structure would only apply to AI models that create real-world harms and would not apply if violations occur during testing phases.
Brazil's data protection authority, the Autoridade Nacional de Proteção de Dados, recognized the six-year anniversary of the General Data Protection Law. It noted the several studies, frameworks and enforcement actions the agency has taken under the law to protect citizens' personal data since its creation in 2019.