惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

GbyAI
GbyAI
N
News and Events Feed by Topic
D
DataBreaches.Net
MongoDB | Blog
MongoDB | Blog
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
Engineering at Meta
Engineering at Meta
T
Tailwind CSS Blog
博客园_首页
Microsoft Azure Blog
Microsoft Azure Blog
Y
Y Combinator Blog
博客园 - Franky
Hugging Face - Blog
Hugging Face - Blog
月光博客
月光博客
A
About on SuperTechFans
I
InfoQ
S
Securelist
Last Week in AI
Last Week in AI
S
Schneier on Security
C
CXSECURITY Database RSS Feed - CXSecurity.com
Hacker News: Ask HN
Hacker News: Ask HN
Schneier on Security
Schneier on Security
Know Your Adversary
Know Your Adversary
腾讯CDC
大猫的无限游戏
大猫的无限游戏
S
Security @ Cisco Blogs
博客园 - 三生石上(FineUI控件)
Simon Willison's Weblog
Simon Willison's Weblog
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
Tor Project blog
美团技术团队
aimingoo的专栏
aimingoo的专栏
G
Google Developers Blog
罗磊的独立博客
Vercel News
Vercel News
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
The Cloudflare Blog
S
Secure Thoughts
www.infosecurity-magazine.com
www.infosecurity-magazine.com
Latest news
Latest news
Recent Announcements
Recent Announcements
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
L
LINUX DO - 热门话题
Security Latest
Security Latest
TaoSecurity Blog
TaoSecurity Blog
Cyberwarzone
Cyberwarzone
有赞技术团队
有赞技术团队

The Register - Offbeat: Legal

Noyb cries foul on LinkedIn withholding profile visitor data China makes it illegal to fire humans if AI takes their jobs Databricks fails to shake authors' copyright claim Cloudera allegedly overlooked US job candidates: DoJ Australia threatens tech companies with 2.25 percent tax China blocks Meta's acquisition of AI outfit Manus Scotland Yard can keep using live facial recognition on Londoners, say judges UK tribunal sends £2B claim accusing Microsoft of overcharging for licensing to trial Yet another ex-ransomware negotiator admits turning rogue after payoff from crimelords Americans behind Nork IT fraud sentenced to 200 months Indian government investigating TCS after police sting French cops free mother and son after crypto kidnapping EFF: California 3D printer bill threatens digital freedoms IBM pays up under Trump administration's diversity blitz OpenAI CEO Sam Altman home attack suspect charged AI vs the cold hard reality of the legal profession Big Tech has not enforced Australia’s social media ban Big Tech has not enforced Australia’s social media ban China's not thrilled AI experts want to leave the country China's not thrilled AI experts want to leave the country JLR cyber bailout risks dangerous precedent, watchdog warns Patel dodges question about FBI buying location data Patel dodges question about FBI buying location data ChatGPT advised exec on firing Subnautica founders: court Japan to allow ‘proactive cyber-defense’ from October 1st FSF urges AI vendors to liberate LLMs Age verification isn't sage verification when it's inside operating systems India tests whether AI can stop trains hitting elephants Perplexity Comet hurtling toward Amazon ban Lenovo, Nintendo sue US government seeking tariff refunds Google embraces third party app stores and payments OpenA says Pentagon set ‘scary precedent’ binning Anthropic China floats conspiracies about US crypto lawsuits Microsoft 'cooperating' with Japanese antitrust probe Anthropic misanthropic toward China's AI labs Americans sue Homeland Security over 'illegal' surveillance SerpApi asks court to dismiss Google web scraping lawsuit Qualcomm set to triumph in UK smartphone ‘patent tax’ case GPT-5 bests human judges in legal smack down Starlink speeds past terrestrial networks – and regulators Indian police commissioner wants ID cards for AI agents Rail workers accused of using ChatGPT for legal help Ghost gun legislation casts shadow over 3D printing UK to probe xAI over its revolting robo-smut generator UK to probe xAI over its revolting robo-smut generator Ex-Google engineer convicted of stealing AI secrets Ex-Google engineer convicted of stealing AI secrets Nudify app proliferation shows naked ambition of Apple and Google Nudify apps get past Google, Apple app moderation European Commission opens new investigation into X's Grok Meta probed over WhatsApp data disclosure Surrender as a service: Microsoft unlocks BitLocker for feds Oracle, Michael Dell, invest in JV to run TikTok USA UK gambling czar says Meta turns blind eye to illegal ads Akamai CEO wants help to defeat piracy, reckons he can handle edge AI alone Akamai CEO wants help to defeat piracy, can do edge AI alone Ofcom keeps X under the microscope despite Grok 'nudify' fix India demands crypto outfits geolocate customers, get a selfie to prove they’re real Tories vow to boot under-16s off social media and ban phones in schools Cloudflare CEO threatens to pull out of Italy Malaysia and Indonesia block X over deepfake smut EU vows to stand firm as US steps up attacks on tech regs X sues to protect Twitter brand Musk has been trying to kill Reddit sues Australia to escape kids social media ban Crypto-crasher Do Kwon jailed for 15 years Cloud group says EU should have blocked VMware-Broadcom Australia bans teens from social media – good luck with that Care leavers face bureaucracy and delays accessing records ICE-tracking app developer sues Trump administration Judge may force Vizio to share source code under GPL EU fines X €120M in first-ever DSA penalty payout IP lawyer's son surprises with vibe-coded IP infringement Campbell’s cans IT VP after ‘3D-printed chicken' rant TSMC lawsuit claims former exec probably leaks to Intel AI nudification site fined £55K for skipping age checks Senators propose to let users sue tech giants for harmful al Dutch turbine engineer tried to turn wind into crypto £5B Bitcoin bandit sent down for 11 years Feds beat fraudster in $345M destroyed Bitcoin dispute Getty loses UK copyright battle against Stability AI Supermicro launches probe after staff charged with China export violations
EU’s leaked GDPR, AI reforms slated by privacy activists
Connor Jones Connor Jones · 2025-11-11 · via The Register - Offbeat: Legal

Privacy advocates are condemning the European Commission's leaked plans to overhaul digital privacy legislation, accusing officials of bypassing proper legislative processes to favor Big Tech interests.

Max Schrems, founder of privacy group Noyb, warned: "One part of the European Commission (EC) seems to try overrunning everyone else in Brussels, disregarding rules on good lawmaking, with potentially terrible results."

He compared the approach to Trump administration tactics, arguing the proposals masquerade as small business relief while actually benefiting tech and advertising giants.

As first reported by MLex, the EC's proposed legislative changes are manifold, and in Noyb's view these would poke so many holes in existing rules to "make [GDPR] overall unusable for most cases."

The EC is planning to introduce the "Digital Omnibus" package on November 19, introducing amendments to legislation covering AI regulation, cybersecurity, data protection, and privacy.

An overview of the leaked proposals [PDF], shared by Noyb, includes details on the most potentially impactful ideas to existing laws and regulations. 

One of the proposed changes covers an amendment to the GDPR, which the privacy group claims would introduce a loophole that affords a company freer rein to use personal data for its commercial benefit.

The current GDPR stipulates that even if personal data is tied to a pseudonomized user (ie, "John Doe" is changed to "User12345"), then the data must still be treated as if it belongs to an identifiable, natural person, and data protection rules should still apply.

Under the new proposals, this stipulation would no longer be enforced, potentially allowing data controllers to be more lax with protecting users' personal data. "This could apply to almost all online tracking, online advertisement, and most data brokers," Noyb said.

The EC may also propose a "purposes limitation" on data access rights, hindering an individual's right to access, correct, or delete the data an organization or company has on them.

Noyb's interpretation is that data controllers would have greater powers to reject data access requests. "This means that if an employee uses an access request in a labor dispute over unpaid hours – for example, to obtain a record of the hours they have worked – the employer could reject it as 'abusive.' The same would be true for journalists or researchers."

The proposals weaken GDPR's Article 9 sensitive data protections - sexual orientation, health status, political views - would only apply when "directly revealed." Companies could infer this data from other sources without triggering protections.

Noyb warned this could enable employers to deduce pregnancies and terminate employees before legal protections attach, or discriminate based on inferred sexual orientation.

All of these measures are, in part, being framed by the EC as a means to alleviate the administrative burden placed on small businesses, but Schrems instead labeled this a "side-show to get public support."

Whether these proposals do indeed attract the public support, the EC will need for them to pass could have consequences for policymaking beyond Europe.

The current US administration has taken a more pro-innovation approach to regulating technology, such as AI, but it is not inconceivable that the way in which the EC's proposals are received later this month could later inform similar policy decisions – at least at state level – as they have done previously.

For example, the GDPR, introduced in 2018, inspired the landmark California Consumer Privacy Act (CCPA), which passed in the same year and became enforceable in 2020.

AI reforms

Big Tech and other EU companies have lobbied the EU to weaken the AI Act since it passed and partially came into force last year.

Core to their arguments is that the regulations are too restrictive on innovation, and the reforms may give AI systems a special exemption, allowing them to process data that would otherwise require a legitimate legal basis.

According to Noyb's interpretation, "this would lead to a grotesque situation: If personal data is processed via a traditional database, Excel sheet or software, a company has to find a legal basis under Article 6(1) GDPR. However, if the same processing is done via an AI system, it can qualify as a 'legitimate interest' under Article 6(1)(f) GDPR." 

The org adds: "This would privilege one (risky) technology over all other forms of data processing and be contrary to the 'tech neutral' approach of the GDPR."

The proposals additionally aim to introduce amendments that make it easier for data controllers to comply with data protection laws, while being allowed to use people's data to train their models.

Various protections are outlined in the leaked draft, such as the requirement for data minimization and safeguards to be implemented, although the document does not specify what safeguards mean in this context.

Noyb also said certain interpretations of the proposals could allow companies to gather more data from users' personal devices that could then be used to train Big Tech's AI models.

Such data is currently protected by Article 5(3) of the GDPR, which is underpinned by Article 7 of the Charter of Fundamental Rights of the European Union – respect for private and family life, home, and communications.

A legitimate interest protection for gathering data related to "security purposes" and "aggregated information" could be interpreted broadly by AI companies if the EC does not apply strict definitions, potentially leading to excessive searches of data subjects' devices, the privacy campaigners argued.

A spokesperson for the EC, told The Register it is "actively working" on the digital omnibus and is scheduled to present it on November 19.

"Simplification has been a priority for this Commission. More broadly, we want to help European companies remain competitive globally and strengthen Europe's technological sovereignty.

"As part of this effort, the possibility of targeted amendments to the GDPR are being discussed. The aim is to make the GDPR more operational, not to weaken it. However, no formal decisions have been taken at this stage." ®