惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
W
WeLiveSecurity
O
OpenAI News
N
News and Events Feed by Topic
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
Webroot Blog
Webroot Blog
Google Online Security Blog
Google Online Security Blog
云风的 BLOG
云风的 BLOG
N
News | PayPal Newsroom
H
Hacker News: Front Page
博客园_首页
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
The Last Watchdog
The Last Watchdog
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
H
Heimdal Security Blog
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
S
Schneier on Security
宝玉的分享
宝玉的分享
H
Hackread – Cybersecurity News, Data Breaches, AI and More
Recent Commits to openclaw:main
Recent Commits to openclaw:main
Y
Y Combinator Blog
Cyberwarzone
Cyberwarzone
Microsoft Security Blog
Microsoft Security Blog
C
CXSECURITY Database RSS Feed - CXSecurity.com
GbyAI
GbyAI
Cloudbric
Cloudbric
TaoSecurity Blog
TaoSecurity Blog
人人都是产品经理
人人都是产品经理
P
Palo Alto Networks Blog
M
MIT News - Artificial intelligence
G
GRAHAM CLULEY
C
Check Point Blog
Apple Machine Learning Research
Apple Machine Learning Research
Last Week in AI
Last Week in AI
T
Troy Hunt's Blog
L
Lohrmann on Cybersecurity
www.infosecurity-magazine.com
www.infosecurity-magazine.com
P
Proofpoint News Feed
Blog — PlanetScale
Blog — PlanetScale
量子位
博客园 - 聂微东
S
Securelist
博客园 - 三生石上(FineUI控件)
F
Full Disclosure
G
Google Developers Blog
L
LINUX DO - 热门话题
P
Proofpoint News Feed
AI
AI
PCI Perspectives
PCI Perspectives

Blog of Simple Analytics

The EU wants to kill cookie banners Google is tracking you (even when you use DuckDuckGo) German court rules Meta’s tracking tech violates GDPR Closing the data gap - Simple Analytics x Usercentrics The EU-US data deal may be dead in the water You are missing 20% of your website data with GA4 How a reverse trial will push Simple Analytics to the next level Google will start tracking all your devices (WTF?) Big Tech Fails EU’s Digital Services Act: Only Wikipedia Passes the Test Meta fined $102 million by the Irish Data Protection Commission Europeans spend 575 Million hours per year clicking cookie banners The most interesting GDPR fines GDPR and fines: all there is to know Google loses key antitrust case Web Analytics for Crypto Companies Web analytics for publishers Google pulls Uno Reverse card: Rolls back decision to kill third-party cookies Privacy Monthly July 2024 Privacy Perspectives June 2024 Privacy Monthly June APRA fumbles targeted advertising Privacy Monthly May Meta loses key privacy battle Google delays cookie phase-out once again Privacy Monthly April 2024 Web Analytics and Consent Cookies 101 Privacy Monthly March 2024 German authority cracks down on cookie banners Google Tag Manager vs Google Analytics Google search alternative Data retention in Google Analytics Guide to Google Analytics and Cookie consent What are Google Analytics' identifiers? How to export data from Google Analytics Privacy Monthly February 2024 The Criteo case: a big deal for Big Tech Privacy Monthy January 2024 What the Digital Markets Act means for privacy Google Settles in $5B Incognito Mode Lawsuit Legal troubles for Adobe Analytics Web analytics for nonprofits HIPAA and mental health Why Meta subscriptions are under attack, and why it matters for privacy Privacy Monthly: December Simple Analytics AI Host analytics on Cloudflare Zaraz Add Google Analytics to Convertkit Google Analytics Pricing - Paid vs Free Road to 1 Million ARR - October update CCPA and Data Protection: all there is to know Analytics without a cookie banner Enterprise Analytics Privacy Monthly: November 2023 Delete Act: all you need to know Mobile App Tracking Under Fire The road to 1 Million ARR - September Update Privacy Monthly: October 2023 HIPAA violations First challenge to the EU-US data transfer framework Direct Marketing under GDPR Road to 1 million ARR - August Update CCPA vs CPRA: what is new? Privacy Monthly: September 2023 A/B Testing with Simple Analytics Dobbs v. Jackson ruling is a privacy mess Privacy Monthly: August 2023 What are your rights under the CCPA? When does the CCPA apply? How does the HIPAA compare to the CCPA and GDPR? Why Meta is in a world of trouble CJEU: cookie-based analytics collects sensitive data Road to 1 million ARR - July update All about the new Data Transfer Framework Road to 1 Million ARR - June update What is PHI under HIPAA? Sweden declares Google Analytics illegal Searching for GA4 Alternatives? Top 10 Reliable Options for Google Analyticss Ultimate HIPAA Compliance Checklist: Essential Steps for Healthcare Providers More troubles for Google Analytics The path to 1M ARR - May Update Data Processing Agreements Minimal Product Analytics Facebook data transfers declared illegal Is Google Analytics CCPA-compliant? Help us with your input Cookie banners: How to stay GDPR compliant? GDPR Compliance Checklist Privacy Monthly: May 2023 Simple Analytics: Privacy-first website analytics Improve your e-commerce performance with analytics European Facebook blackout is closer than we think Know your website’s Carbon Emissions - and how to reduce it The path to 1M ARR - April 2023 How to add video tracking using Google Tag Manager? How to track form submissions using Google Tag Manager? Why is my Simple Analytics data different from Google Analytics? Debug Simple Analytics script How to Import Google Analytics Data to Simple Analytics
Privacy Monthly: June 2023
Iron Brands · 2023-06-09 · via Blog of Simple Analytics

May was eventful. That one long-awaited decision on data transfers finally came along, wrapped in a ten-digit fine for Meta. Linkedin is next in line for the big GDPR fines. The EU Parliament opposed the Trans-Atlantic Data Privacy Framework and more.

And let’s not forget: There is a privacy and human rights mess going on in post-Dobbs v. Jackson America, and Big Tech is (unsurprisingly) on the wrong side.

  1. Facebook hit by data transfers ban and record fine
  2. EU Parliament against US data transfer framework
  3. Google promises to delete sensitive location data, fails to deliver
  4. Linkedin to face large fine over targeted advertising
  5. Proposed chat control regulation likely illegal
  6. Two more US privacy laws
  7. Ana Talus voted EDPB chair
  8. Twitter cannot quit the DSA

The UK Government chose Simple AnalyticsJoin them

Let’s dive in!

Facebook hit by data transfers ban and record fine

On May 22 the Irish Data Protection Commissioner ordered Meta Platforms Ireland to suspend data transfers for Facebook and issued a record €1.2 billion fine. Meta was also ordered to delete personal data already transferred to the US.

The decision results from a decade-long legal battle involving privacy advocate Max Schrems, the DPC, the Irish justice system, the EU Court of Justice, and the European Data Protection Board. The Board played a key role in the decision by pushing the DPC to impose a fine and to order the erasure of personal data.

Meta intends to challenge the decision and seek a stay of the DPC’s order. This buys the company some timeuntil the Trans-Atlantic Data Privacy Framework is fully implemented, thereby avoiding an EU-wide Facebook blackout.

This is a landmark case for the enforcement of the GDPR’s data transfer rules, and we discussed it in depth on our blog.

EU Parliament against US data transfer framework

The EU Parliament’s LIBE Committee unanimously rejected the proposed Trans-Atlantic Data Privacy Framework in April. On May 11, the EU Parliament followed. Neither vote is legally binding on the European Commission.

The Parliament acknowledged that the framework is a step up from its predecessor (the Privacy Shield) but also voiced concerns over bulk intelligence collection and a lack of transparency in the redress mechanism, among others. The Parliament also questions whether the new framework will survive scrutiny from the EU Court of Justice.

The Parliament’s vote is unlikely to stop the Commission from fully implementing the framework. In all likelihood, the predictable legal challenge before the Court of Justice will be a baptism by fire for the new framework and the moment of truth for EU-US data transfers.

Google promises to delete sensitive location data, fails to deliver

A recent investigation by The Washington Post found that Google is not delivering on its promise to erase health clinics and other “sensitive” locations from location history

The stakes are high: one year ago, the US Supreme Court overturned the landmark Roe vs. Wade ruling, which allowed States to ban abortion. Conservative States quickly passed anti-abortion laws right away, and now the police are prosecuting abortion seekers through data provided by Big Tech.

Privacy is a crucial issue for American women, and Big Tech is not helping- to put it mildly.

Linkedin to face large fine over targeted advertising

According to Reuters, Microsoft expects a fine in the range of €400M from the Irish Data Protection Commission for targeted advertising on the Linkedin social network. No other details about the decision are known.

Months ago, the DPC fined Meta Ireland for a total of €390M over illegal targeted advertising across its Facebook and Instagram platforms. The expected fine against Microsoft would make Linkedin the third social network to incur large fines over targeted advertising in a short time span.

Proposed chat control regulation likely illegal

As reported by The Guardian, leaked internal EU legal advice suggests that the Commission’s controversial proposal for a Regulation against child sexual abuse might be illegal.

According to the documents, the draft violates the electronic surveillance standards established in the Court of Justice case law. This means the Court will likely invalidate a future Regulation upon judicial review.

The proposed Regulation requires providers of communication services to scan videos and images to detect child pornography. But scanning systems cannot be implemented without compromising the end-to-end encryption implemented by popular messaging services such as WhatsApp, Telegram, and Signal.

Because of its impact on encryption, the proposal is at the center of a heated legal and political debate involving advocacy organizations, governments, and European institutions.

A similar debate surrounds the draft for the UK Online Safety Bill, which is opposed by many advocacy organizations and service providers alike. WhatsApp even threatened to leave the UK market should the draft become law.

Two more US privacy laws

On May 8, the State of Florida passed a new privacy bill. A data privacy bill was also adopted by the Texas legislator and is expected to become law on the weekend.

Both laws focus on businesses and data subject rights and contain exemptions for small businesses. Notably, this exemption is very broad under the Florida bill as opposed to the Texas draft.

The US does not have a general federal privacy law. The only federal data protection rules are found in sectorial legislation such as HIPAA and COPPA. Negotiations over a federal privacy law (the ADPPA) have slowed down to a crawl, and in the meantime, more and more States are adopting privacy bills of their own.

Ana Talus voted EDPB chair

On May 25 Ana Talus, head of the Finnish data protection authority, became the new Chair of the European Data Protection Board. Cypriot Irene Loizidou Nikolaidou will serve as Deputy Chair.

The EDPB has played a pivotal role in the enforcement and interpretation of the GDPR so far. Guidance documents by the Board have deeply impacted the interpretation of the GDPR and of other sources of EU data protection law. And recently, the Board itself has been directly involved in several high-profile decisions involving Meta Ireland.

The former and first EDPB Chair was Andrea Jelinek, head of the Austrian data protection authority.

Twitter cannot quit the DSA

In a rather confusing move, Twitter quit the EU Code of Practice on Disinformation on May 26, months before the content moderation obligations rules of the Digital Services Act will enter into force.

The move prompted snarky remarks from European Commissioners Thierry Breton and Vera Jourova. Considering that the Commission itself enforces the DSA, this is probably not the best start.

Compliance with the DSA will not be easy for online platforms, and considering the unpredictable and capricious management style of its new ownership, we expect Twitter to struggle more than others.