惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Jina AI
Jina AI
宝玉的分享
宝玉的分享
Last Week in AI
Last Week in AI
Help Net Security
Help Net Security
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
人人都是产品经理
人人都是产品经理
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
GbyAI
GbyAI
博客园_首页
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
MongoDB | Blog
MongoDB | Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
L
LINUX DO - 最新话题
PCI Perspectives
PCI Perspectives
博客园 - 三生石上(FineUI控件)
V2EX - 技术
V2EX - 技术
Spread Privacy
Spread Privacy
T
Tor Project blog
量子位
阮一峰的网络日志
阮一峰的网络日志
S
SegmentFault 最新的问题
小众软件
小众软件
博客园 - 叶小钗
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Blog — PlanetScale
Blog — PlanetScale
H
Help Net Security
Y
Y Combinator Blog
N
News | PayPal Newsroom
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
T
Tenable Blog
Scott Helme
Scott Helme
G
GRAHAM CLULEY
大猫的无限游戏
大猫的无限游戏
aimingoo的专栏
aimingoo的专栏
IT之家
IT之家
Schneier on Security
Schneier on Security
F
Fortinet All Blogs
Martin Fowler
Martin Fowler
T
Threat Research - Cisco Blogs
博客园 - 司徒正美
Application and Cybersecurity Blog
Application and Cybersecurity Blog
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
Attack and Defense Labs
Attack and Defense Labs
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
The Last Watchdog
The Last Watchdog
L
LangChain Blog
C
Check Point Blog
Google Online Security Blog
Google Online Security Blog
V
Visual Studio Blog
Latest news
Latest news

Blog of Simple Analytics

The EU wants to kill cookie banners Google is tracking you (even when you use DuckDuckGo) German court rules Meta’s tracking tech violates GDPR Closing the data gap - Simple Analytics x Usercentrics The EU-US data deal may be dead in the water You are missing 20% of your website data with GA4 How a reverse trial will push Simple Analytics to the next level Google will start tracking all your devices (WTF?) Big Tech Fails EU’s Digital Services Act: Only Wikipedia Passes the Test Meta fined $102 million by the Irish Data Protection Commission Europeans spend 575 Million hours per year clicking cookie banners The most interesting GDPR fines GDPR and fines: all there is to know Google loses key antitrust case Web Analytics for Crypto Companies Web analytics for publishers Google pulls Uno Reverse card: Rolls back decision to kill third-party cookies Privacy Monthly July 2024 Privacy Perspectives June 2024 Privacy Monthly June APRA fumbles targeted advertising Privacy Monthly May Meta loses key privacy battle Google delays cookie phase-out once again Privacy Monthly April 2024 Web Analytics and Consent Cookies 101 Privacy Monthly March 2024 German authority cracks down on cookie banners Google Tag Manager vs Google Analytics Google search alternative Data retention in Google Analytics Guide to Google Analytics and Cookie consent What are Google Analytics' identifiers? How to export data from Google Analytics Privacy Monthly February 2024 The Criteo case: a big deal for Big Tech Privacy Monthy January 2024 What the Digital Markets Act means for privacy Google Settles in $5B Incognito Mode Lawsuit Legal troubles for Adobe Analytics Web analytics for nonprofits HIPAA and mental health Why Meta subscriptions are under attack, and why it matters for privacy Simple Analytics AI Host analytics on Cloudflare Zaraz Add Google Analytics to Convertkit Google Analytics Pricing - Paid vs Free Road to 1 Million ARR - October update CCPA and Data Protection: all there is to know Analytics without a cookie banner Enterprise Analytics Privacy Monthly: November 2023 Delete Act: all you need to know Mobile App Tracking Under Fire The road to 1 Million ARR - September Update Privacy Monthly: October 2023 HIPAA violations First challenge to the EU-US data transfer framework Direct Marketing under GDPR Road to 1 million ARR - August Update CCPA vs CPRA: what is new? Privacy Monthly: September 2023 A/B Testing with Simple Analytics Dobbs v. Jackson ruling is a privacy mess Privacy Monthly: August 2023 What are your rights under the CCPA? When does the CCPA apply? How does the HIPAA compare to the CCPA and GDPR? Why Meta is in a world of trouble CJEU: cookie-based analytics collects sensitive data Road to 1 million ARR - July update All about the new Data Transfer Framework Road to 1 Million ARR - June update What is PHI under HIPAA? Sweden declares Google Analytics illegal Searching for GA4 Alternatives? Top 10 Reliable Options for Google Analyticss Ultimate HIPAA Compliance Checklist: Essential Steps for Healthcare Providers Privacy Monthly: June 2023 More troubles for Google Analytics The path to 1M ARR - May Update Data Processing Agreements Minimal Product Analytics Facebook data transfers declared illegal Is Google Analytics CCPA-compliant? Help us with your input Cookie banners: How to stay GDPR compliant? GDPR Compliance Checklist Privacy Monthly: May 2023 Simple Analytics: Privacy-first website analytics Improve your e-commerce performance with analytics European Facebook blackout is closer than we think Know your website’s Carbon Emissions - and how to reduce it The path to 1M ARR - April 2023 How to add video tracking using Google Tag Manager? How to track form submissions using Google Tag Manager? Why is my Simple Analytics data different from Google Analytics? Debug Simple Analytics script How to Import Google Analytics Data to Simple Analytics
Privacy Monthly: December
Dutch privacy watchdog investigates tax authority · 2023-12-07 · via Blog of Simple Analytics
  1. EU adopts Data Act
  2. Meta faces wave of litigation in the EU
  3. Dutch privacy watchdog investigates tax authority
  4. noyb challenges European Commission over political advertising
  5. The US is spying on itself
  6. Privacy advocate challenges YouTube’s crackdown on ad-blockers
  7. Is Brazil next in line for an adequacy decision?
  8. Irish Data Protection Commissioner to leave her position

Michelin chose Simple AnalyticsJoin them

EU adopts Data Act

On November 27 the Council of the European Union adopted the Data Act. The new Regulation is a key part of the EU’s data strategy, along with the Digital Services Act and the Digital Markets Act.

The Act aims to facilitate the sharing of data generated by interconnected products. The end goal is to foster economic growth by tapping into the EU’s vast amounts of unused industrial data.

It will be interesting to see how the data sharing obligations under the Data Act interact with the GDPR. In all likelihood, it will take a while for the legal community to iron out all the kinks.

In October meta started offering paid, ad-free subscriptions to EU users in alternative to its free, advertising-powered service model. The move is part of Meta’s new compliance strategy: the company is hoping to convince regulators that non-paying users are free to consent to the extensive profiling required for targeted advertising.

This new strategy was immediately challenged by privacy NGO noyb and by the European Consumer Organization. The two organizations are challenging Meta’s policies on different grounds, but both ultimately claim that users are not meaningfully free to consent to profiling and targeted advertising, with or without the option to pay for an ad-free subscription.

The same week 83 Spanish media outlets filed a class action, claiming €550M in damages. According to the media outlets, Meta gained an unfair competitive advantage by unlawfully processing personal data over a five year time span. Meta’s lawyers are going to be busy during the holidays.

The Dutch data protection authority (AP) is investigating the Tax and Customs Administrations for alleged privacy violations related to its past use of a risk analysis model for tax fraud.

The system was discontinued in 2018 and contained large amounts of information on Dutch taxpayers, including data collected by other PA systems and information scraped from social media. According to the AP, the system allowed for discriminatory searches based on taxpayer nationality and was not properly protected from insider attacks.

The tax authority’s track record with risk analysis systems is less than stellar: not long ago the childcare benefit scandal inflicted enormous damage on thousands of low income households, raised serious issues about racial biases in AI systems, and eventually led to the resignation of the Dutch government.

noyb challenges European Commission over political advertising

In a complaint filed before the European Data Protection Supervisor, noyb claims that the European Commission’s political advertising violated the GDPR.

According to noyb, the Commission used sensitive data to target users of the X platforms with political ads in favor of a controversial legislative proposal on chat control. This looks quite embarrassing for the Commission: by the looks of it, they engaged in the very Cambridge Analytica-style strategies that the EU is looking to ban with future legislation.

The complaint also raises concerns regarding X. In theory, the platform does not allow advertising based on sensitive data, but in practice, it may not do much to prevent it .

The US is spying on itself

Two projects- one from Duke University, the other from the Irish Council of Civil Liberties - independently researched the ad tech environment and found that personal information on US service members can be easily bought from data brokers. This further confirms what privacy advocates have been repeating for years now: in its current state, the ad tech industry is a severe thread to both individual privacy and national security.

In a nutshell, the US is spying on itself through online tracking and web analytics, and data brokers are more than happy to sell the intelligence to anyone willing to pay. This surveillance free-for-all can be easily capitalized upon by actors such as criminal groups or foreign intelligence agencies (and, in all likelihood, has already been).

While both studies focused on the US, we do not expect the EU to fare much better.

In November Youtube started blocking video playback for ad-blocker users. These users were required to either subscribe to the ad-free Youtube Premium plan, or disable ad blockers and view the platform’s ads.

YouTube has since been playing a game of cat and mouse against the Internet: ad-blockers and browsers keep finding ways to get around Youtube’s ad-blocking detection scripts, forcing the platform to catch up on a daily basis.

YouTube’s war on ad-blockers could also have legal consequences. Privacy activist Alexander Hanff filed a complaint against Youtube before the Irish Data Protection Commission. According to Hanff, the Java scripts that power YouTube’s ad-blocker detection measures fall within the scope of the ePrivacy Directive and cannot be deployed without the user’s consent- much like browser cookies.

Is Brazil next in line for an adequacy decision?

EU Commissioner for Justice Didier Reynders announced the Commission’s intention to organize a conference bringing together current and prospective partners for international data flows. According to Reynders, the Commission is also considering Brazil as a candidate for an adequacy decision (a legal act from the Commissions that immensely facilitates data flows between the EU/EEA and a non-EU Country).

Irish Data Protection Commissioner to leave her position

Helen Dixon announced that she will not be reappointed as the Data Protection Commissioner of Ireland after her mandate expires next February.

Dixon faced plenty of criticism through her ten year tenure at the Commission: many voices within the privacy community- especially privacy advocates- criticized her for treating Big Tech with kid’s gloves.

The Commission has long been stuck between a rock and a hard place. While the Commission’s mandate is to enforce the law, the Republic of Ireland has a thinly veiled interest in appeasing Meta, Google, and numerous other multinational corporations with European headquarters in Dublin.

Unsurprisingly, the Commission’s action against Big Tech has been timid and untimely. This hampered the resolution of important cross-bordered cases and essentially turned Ireland into an enforcement bottleneck for Europe.

Over time this situation drove a wedge between the Commissioner and her peers. As Dixon’s tenure comes to an end, the Commission is politically isolated within the European Data Protection Board and frequently sees high-stakes decisions overturned by the Board.

Healing the Commission’s relationship with the Board will not be easy, but should be a priority for the next Commissioner nonetheless.