惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

S
Secure Thoughts
Recent Commits to openclaw:main
Recent Commits to openclaw:main
H
Heimdal Security Blog
SecWiki News
SecWiki News
H
Hacker News: Front Page
N
News | PayPal Newsroom
L
LINUX DO - 最新话题
N
News and Events Feed by Topic
TaoSecurity Blog
TaoSecurity Blog
AI
AI
C
Cybersecurity and Infrastructure Security Agency CISA
Scott Helme
Scott Helme
PCI Perspectives
PCI Perspectives
S
Securelist
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
Cyberwarzone
Cyberwarzone
A
Arctic Wolf
Forbes - Security
Forbes - Security
T
Tor Project blog
Spread Privacy
Spread Privacy
WordPress大学
WordPress大学
I
Intezer
Martin Fowler
Martin Fowler
Help Net Security
Help Net Security
P
Proofpoint News Feed
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
Cisco Talos Blog
Cisco Talos Blog
Latest news
Latest news
博客园 - 司徒正美
W
WeLiveSecurity
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
V
V2EX
P
Palo Alto Networks Blog
Google DeepMind News
Google DeepMind News
IT之家
IT之家
阮一峰的网络日志
阮一峰的网络日志
V
Vulnerabilities – Threatpost
Jina AI
Jina AI
S
Security Affairs
Hacker News - Newest:
Hacker News - Newest: "LLM"
Simon Willison's Weblog
Simon Willison's Weblog
Project Zero
Project Zero
T
Threatpost
P
Privacy International News Feed
人人都是产品经理
人人都是产品经理
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
Application and Cybersecurity Blog
Application and Cybersecurity Blog
博客园 - Franky
Hugging Face - Blog
Hugging Face - Blog
Apple Machine Learning Research
Apple Machine Learning Research

Compliance Solutions for Websites, Apps and Organizations | iubenda

AI can build your website. It can't manage your consent. | iubenda Browser signals and machine-readable consent: what they are and what the EU’s Digital Omnibus could change California Consumer Privacy Act (CCPA): Complete Guide How to increase your cookie banner opt-in rates: 5 mistakes to fix today | iubenda DPO Newsletter: Global Data Protection & Privacy News (issue #153) Why your consent management setup is a marketing performance question Everything you need to know about GDPR The redesigned cookie banner and configurator What nobody tells you about handing over the company you built European marketers are betting on retention. Privacy could be the edge they’re not using yet. The 5 best alternatives to Didomi in 2026: Pros, cons, pricing, and comparison Looking back on 15 years: what iubenda's founder would tell his 2011 self | iubenda The best cookie policy generator in 2026 DPO Newsletter: Global Data Protection & Privacy News (issue #152) | iubenda What publishers should expect from the EU’s Digital Omnibus proposal Uncertainty is the biggest blocker to AI adoption in marketing | iubenda Everything AI app builders need to know about vibecoding and privacy compliance | iubenda Introducing 1-Click Embedding for Google Tag Manager The Essential Small Business Terms and Conditions Template: What You Need to Know Terms of Use Template | iubenda IAB Europe Raises Concerns Over GDPR Procedural Regulation Draft Report | iubenda Learn from HelloFresh's Costly Mistake: Ensure Compliance with iubenda | iubenda Understanding the Spanish DPA Guide on Audience Measurement Cookies | iubenda The Austrian Data Protection Authority's FAQs on Cookies and Privacy | iubenda DPO Newsletter: Global Data Protection & Privacy News (issue #127) | iubenda Microsoft Ensuring European Data Stays Within the EU Cloud Boundary | iubenda Businesses Beware: ICO’s Record £14.3m in Fines for Data Misuse in 2023 Understanding the Risks and Responsibilities of Model-as-a-Service Companies in AI Development Facebook's New “Link History” Feature: A Blend of Convenience and Surveillance? | iubenda OpenAI’s Strategic Move in the EU: Aligning with Data Privacy Regulations TikTok Faces Lawsuit Over Tracking Non-Users What’s the Digital Markets Act (DMA) and how will it affect you? | iubenda Simplifying Cookie Consent: The European Commission's Approach | iubenda Google Settles Landmark Privacy Lawsuit for $5 Billion | iubenda Navigate GDPR Compliance with Confidence: Lessons from Recent Fines in Italy Simplifying the Commission's New Reporting Template for Digital Market Gatekeepers | iubenda Understanding the GDPR Complaint Against X (Twitter) for Illegal MicroTargeting | iubenda Spanish Media Giants Take On Meta in a Groundbreaking $600 Million Lawsuit | iubenda DPO Newsletter: Data Protection & Privacy News (issue #126) | iubenda Belgian DPA Mandates Cookie Banner Changes for Major Media Websites | iubenda UK's Top Websites Warned by ICO to Revise Cookie Practices | iubenda Understanding the European Union's Data Act | iubenda Google Announces Consent Mode v2 – here’s what it means for your business and advertising Noyb Challenges EU Commission Over Controversial Ad Campaign | iubenda OECD Updates AI Definition: A Step Forward in Shaping EU’s AI Law Firefox To Introduce Simplified Global Privacy Control Berlin Court Cracks Down on LinkedIn’s Privacy Violations The YouTube Ad Blocker Controversy: A Test of the ePrivacy Directive? | iubenda DPO Newsletter: Data Protection & Privacy News (issue #125) Facebook and Instagram Subscription: Meta adds a paywall | iubenda GDPR Violation: Lack of Transparency in Data Processing via Google Fonts Amazon Introduces AWS European Sovereign Cloud to Address EU Regulations | iubenda Texas New Data Privacy Law TDPSA: Everything you need to know How to Make Money with a Website Without Selling Anything Oregon Consumer Privacy Act: Overview | iubenda Google’s Move to Disable Third-Party Cookies: What Advertisers Need to Know IMY Fines H&M for GDPR Violations: A Closer Look EU Commission Requests Information from X Under Digital Services Act: What You Need to Know | iubenda Understanding California’s “Delete Act” and Data Broker Regulations TCF v 2.2 Initial Layer (Banner) Requirements | iubenda Grindr Faces €5.8 Million Fine: A Reminder on the Importance of GDPR Compliance | iubenda Newly Enacted Iowa Consumer Data Protection Act (ICDPA) | iubenda The Witch’s Brew of Privacy: A Halloween Tale of Compliance and Consequences IAB TCF 2.2 – What you need to do DPO Newsletter: Data Protection & Privacy News (issue #124) Blog Ideas That Make Money: How To Make Money From Your Blog + Examples | iubenda Maximize your Growth with Online Presence Management | iubenda Meta's New Pivot in Europe: To Pay or Not to Pay for an Ad-Free Experience? | iubenda Consumer Reports Launches Free ‘Permission Slip’ App to Protect Your Data | iubenda DAZN’s Access Request Saga Personal Brand Logo: How to Stand Out in a Crowded Marketplace UK-US Data Bridge: A New Era for Secure Data Transfers 7 Ways How to Promote Affiliate Links Effectively (And Boost Commissions) | iubenda Mastering LinkedIn Personal Branding: A Guide to More Opportunities Meta's New Approach: Pay for Your Privacy? | iubenda No Return, No Refund Policy Template & Guide GDPR in the US: a GDPR Checklist for US Companies Crafting a Niche with Branding and Identity Design | iubenda The Online Safety Bill: A Leap Towards a Safer Digital United Kingdom Understanding Google's $93m Settlement over Consumer Location Data Accusations | iubenda CCPA vs CPRA: Key Differences You Need to Know | iubenda How To Use Ecommerce Retargeting to Grow Your Business | iubenda PECR: Everything you need to know | iubenda How Mobile Apps Illegally Share Your Personal Data: A Deep Dive | iubenda Legal Spotlight: Privacy Concerns Surrounding OpenAI’s ChatGPT and Microsoft’s Involvement Legal Scrutiny Looms Over Transatlantic Data Deal: French MEP Takes Action Understanding the Digital Markets Act: A Comprehensive Guide Block AI Crawlers: Here’s How To Stop Your Site From Being Used for AI Training (OpenAI and Google Bard Irish Regulator Slaps $368M Fine on TikTok DPO Newsletter: Data Protection & Privacy News (issue #123) | iubenda The Privacy Pitfalls of Vehicle Data Collection: What You Need to Know | iubenda Twitter customer’s data on the menu for xAI models Update: Revised Swiss Privacy Law Takes Effect Fitbit and the GDPR Hurdle: What You Need to Know About Your Data Privacy | iubenda Terms of Service Template for your site | iubenda Senators Urge FTC to Investigate YouTube and Google for Violating Children's Privacy: What You Need to Google AdSense Requirements: Here's What You Need to Know | iubenda Users can’t opt out from marketing emails: FTC fines Experian $650,000 | iubenda DPO Newsletter: Data Protection & Privacy News (issue #122) | iubenda 7 Ways Business Process Automation Can Increase Your Profits
What is the Digital Services Act? Everything You Need to Know | iubenda
Alice Perseval · 2022-11-21 · via Compliance Solutions for Websites, Apps and Organizations | iubenda

📣 Latest Update: February 28, 2024

EU Commission Exempts Certain Apple and Microsoft Products from DMA Regulations

The European Commission has announced that specific Apple and Microsoft products, including Apple’s iMessage and Microsoft’s Bing, Edge, and Microsoft Advertising, will not fall under the Digital Markets Act (DMA) as gatekeeper services. This decision, part of the Commission’s comprehensive evaluation, indicates that these services do not meet the criteria for gatekeeper designation under the DMA. The landmark legislation aims to regulate dominant companies in the digital market, preventing misuse of market dominance. Despite this exemption, Apple and Microsoft will remain designated gatekeepers for other core platform services. The Commission’s decision concludes its investigation into the companies, focusing on fostering competition and monitoring market developments closely.

The Digital Markets Act (DMA) has implications for several key players in the technology and digital sectors, affecting their operations and regulatory compliance. Here are a few examples of Very Large Online Platforms (VLOPs) and services affected by the DMA and recent decisions:

Apple:

  • Affected Services: Apple’s designation as a gatekeeper affects its App Store, the Safari browser, and the iOS operating system. These services are critical to Apple’s ecosystem and have a significant impact on developers and businesses that rely on Apple’s platforms to reach consumers. Apple has announced changes to these services to comply with the DMA, which has attracted scrutiny and criticism from various stakeholders.
  • Non-Affected Services: Apple’s messaging service, iMessage, has been exempted from being classified as a gatekeeper service under the DMA. This decision allows Apple to maintain its current operational model for iMessage without the need for interoperability with other messaging services, preserving its privacy and security features that the company emphasizes as a differentiator.
  • Microsoft:

    • Affected Services: Microsoft’s designation as a gatekeeper affects LinkedIn, its social networking service, and Windows PC OS, the operating system for personal computers. These services are integral to Microsoft’s portfolio, influencing a wide range of consumers and businesses that utilize Microsoft’s platforms for professional networking and computing needs.
    • Non-Affected Services: Microsoft’s search engine Bing, its browser Edge, and its online advertising service Microsoft Advertising have been determined not to meet the criteria for gatekeeper services under the DMA. This exemption suggests that these services operate as challengers in the market rather than dominant players, according to a statement from a Microsoft spokesperson.

    Other Gatekeepers and Services:

    • Designated Gatekeepers: In addition to Apple and Microsoft, the European Commission designated Alphabet, Amazon, ByteDance, and Meta as gatekeepers in September 2023. These companies control significant core platform services that influence various digital markets, including social media platforms and web browsers.
    • Regulatory Compliance and Changes: The DMA mandates that gatekeepers must not misuse their market dominance to cement their position and suppress the emergence of competitors. This includes adhering to a series of guidelines designed to foster competition and innovation within the digital markets. The designation and compliance requirements under the DMA necessitate strategic adjustments by these VLOPs to align with new regulatory landscapes in the EU.

    The DMA’s emphasis on promoting competition, interoperability, and consumer choice has led to a reevaluation of the roles and responsibilities of VLOPs within the digital economy. This regulatory approach by the European Commission signifies a significant shift towards ensuring fairer and more open digital markets, with direct implications for how VLOPs operate within the European Economic Area.

Update: January 5, 2024

Recent Developments:Expanded Designations and Obligations Under the Digital Services Act (DSA)

New Designations: The European Commission has made a significant move under the Digital Services Act by designating three more Very Large Online Platforms (VLOPs): Pornhub, Stripchat, and XVideos. This decision is based on these platforms exceeding the threshold of 45 million average monthly users in the EU. This follows the initial designation of 19 VLOPs and search engines on 25 April 2023.

Compliance Deadline: All online platforms and search engines, except small and microenterprises, must adhere to the general DSA obligations by 17 February 2024. These include user-friendly mechanisms for reporting illegal content, prioritizing notices from trusted flaggers, providing reasons for content restrictions, internal complaint systems for moderation appeals, prompt law enforcement notifications in case of criminal offenses, and enhanced privacy and security, especially for minors.

Stringent Rules for VLOPs: The newly designated VLOPs, including Pornhub, XVideos, and Stripchat, face additional specific measures. Within four months of their designation, they must:

  • Conduct thorough content moderation, including systemic risk analysis, mitigation measures against illegal and rights-threatening content, and reinforced internal processes.
  • Ensure strong protection for minors by designing services to prevent risks to their well-being and using age verification tools.
  • Enhance transparency and accountability through external audits, ad repositories, data access for researchers, bi-annual content moderation and risk management reports, and annual systemic risk and audit reports.
  • Appoint a compliance function and undergo external independent audits annually.

Next Steps: The Commission will supervise these platforms in collaboration with Digital Services Coordinators from Member States, focusing on compliance, especially regarding minors’ protection and illegal content management. Background: The first batch of 19 VLOPs and search engines designated in April 2023 are set to meet their additional DSA obligations by the end of August. The overall enforcement of the DSA involves both the Commission and Digital Services Coordinators, to be appointed by Member States by 17 February 2024.

Update: October 10, 2023

Recent Developments: Introduction of the Digital Services Act Transparency Database

The European Commission has unveiled a significant enhancement to the Digital Services Act (DSA) with the launch of the Digital Services Act Transparency Database. This database serves as a regulatory repository, and its main purpose is to provide a public record of content moderation decisions made by online platform providers.

What Does the Database Include?

The database will house statements from online platform providers, detailing the reasons for their decisions to either remove or restrict access to certain pieces of content. This is in line with the requirements set out in the DSA, which mandates that platforms explain the rationale behind such decisions.

Who Needs to Comply?

Starting from 17th February 2024, it will be mandatory for all online platform providers operating within the European Union to submit their data to this database. This is aimed at fostering transparency and accountability in the digital sphere.

Update: August 31, 2023

Effective August 25, 2023, the EU’s Digital Services Act (DSA) now governs “very large online platforms” and “very large online search engines” that have more than 45 million active users in the EU. Under this new regulation, such companies must partake in yearly audits and actively combat disinformation. Non-compliance risks penalties, including fines that can reach up to 6% of a company’s worldwide revenue or even result in a ban. The full Act will be applicable to smaller websites starting early 2024. Big Tech is now under enhanced legal scrutiny, with obligations related to content safety, user targeting, and data sharing. In line with DSA obligations, Google has declared that it will provide targeted ad data to authorized researchers. There remains ongoing debate on whether these tech giants have sufficiently met EU regulatory standards.

🆕 Many of you are probably wondering: “but, what exactly is the Digital Services Act”?

The DSA was published in the Official Journal of the European Union on October 27, 2022, and sets some new and important rules for the online ecosystem.

As a website owner, marketer, publisher or any professional operating online, this is relevant news for you. If you’re curious to know more, keep reading! You’ll find more explanation below.

what is the digital services act

🔍 Digital Services Act explained

The Digital Services Act was presented along with the Digital Markets Act.

Together, they form a single set of new rules that will be applicable across the whole EU to create a safer and more open digital space, where the fundamental rights of users are protected. They also aim at establishing a level playing field for businesses.

🧐 Why is it needed? The rapid and widespread development of digital services has had both a negative and positive impact.

On one side, it fostered communication, access to information, and trade outside the Union. On the other side, it brought some concerns surrounding illegal goods, services and content, as well as manipulative algorithms to trick users.

👉 The European Legislation simply needs to evolve in order to address these new challenges.

The rules established by the DSA include, amongst others, new measures for:

  • enhanced transparency online (ie. better information on terms and conditions or the algorithms used for recommending content or products by advertising platforms or influencers);
  • countering illegal content, goods and services online as well as tracing sellers;
  • restricting targeted advertising for some categories;
  • the overall protection of users, with new safeguards (ie. fill out a complaint, seek compensation or a court settlement, challenge platforms’ content moderation decisions, etc.);
  • the protection of minors, disinformation or election manipulation, cyber violence against women;
  • banning so-called ‘dark patterns’ on the interface of online platforms, referring to misleading tricks that manipulate users into choices they do not intend to make;
  • and more.

Read the full document published in the Official Journal of the European Union here.

🗓️ When will the Digital Services Act be enforced?

The DSA requirements took effect on January 1, 2024.

🎯 Who will be affected by the DSA?

So-called VLOPs (also known as very large online platforms) — will be the first obligated to conform to the new compliance requirements.

🔍 Updates on VLOPs

The European Commission has given guidance on online platforms and search engines’ compliance with the DSA, specifically on reporting the number of users they have in the EU (which will be carefully examined by authorities).

If the published user numbers reach more than 10% of the EU’s population (45 million), the platform will most likely be defined as a very large online platform (VLOP) or search engine (VLOSE) and would be subject to additional obligations including:

  • to comply with the regulation earlier than other actors;
  • to make a risk assessment to identify potential risks for society (i.e. harmful content);
  • to take corresponding risk mitigation measures (involving independent audits).

More information here.

Therefore, in the first quarter of 2023, compliance obligations will probably start to weigh heavily on a number of larger IT companies and Big Tech giants.

“The Commission will be the primary regulator for very large online platforms (reaching 45 million users), while other platforms will be under the supervision of Member States where they are established.”

💡 What should you take away from this?

  • Make sure to remember the key concepts emphasized by this new legislation: enhanced transparency and user rights, bans on illegal practices, misleading tricks and algorithms and some aspects of targeted advertising;
  • Keep an eye on your own practices surrounding these matters by putting in place transparent and compliant processes.

👉 Under the new DSA rules, dark patterns are prohibited. Learn more now about this topic and how to optimize your consent rate while avoiding dark patterns.