惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

爱范儿
爱范儿
P
Palo Alto Networks Blog
月光博客
月光博客
H
Hackread – Cybersecurity News, Data Breaches, AI and More
I
InfoQ
aimingoo的专栏
aimingoo的专栏
腾讯CDC
T
Threatpost
D
DataBreaches.Net
Vercel News
Vercel News
F
Fortinet All Blogs
Engineering at Meta
Engineering at Meta
C
Cybersecurity and Infrastructure Security Agency CISA
Forbes - Security
Forbes - Security
U
Unit 42
C
Check Point Blog
Blog — PlanetScale
Blog — PlanetScale
O
OpenAI News
量子位
TaoSecurity Blog
TaoSecurity Blog
Microsoft Azure Blog
Microsoft Azure Blog
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
V
Visual Studio Blog
Recorded Future
Recorded Future
云风的 BLOG
云风的 BLOG
Security Archives - TechRepublic
Security Archives - TechRepublic
The Last Watchdog
The Last Watchdog
S
Security Affairs
Attack and Defense Labs
Attack and Defense Labs
罗磊的独立博客
Stack Overflow Blog
Stack Overflow Blog
Microsoft Security Blog
Microsoft Security Blog
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
V
V2EX
小众软件
小众软件
S
SegmentFault 最新的问题
www.infosecurity-magazine.com
www.infosecurity-magazine.com
W
WeLiveSecurity
AI
AI
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
博客园 - 聂微东
I
Intezer
Know Your Adversary
Know Your Adversary
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
P
Proofpoint News Feed
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
The Cloudflare Blog
博客园_首页
NISL@THU
NISL@THU
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO

Compliance Solutions for Websites, Apps and Organizations | iubenda

AI can build your website. It can't manage your consent. | iubenda Browser signals and machine-readable consent: what they are and what the EU’s Digital Omnibus could change California Consumer Privacy Act (CCPA): Complete Guide How to increase your cookie banner opt-in rates: 5 mistakes to fix today | iubenda DPO Newsletter: Global Data Protection & Privacy News (issue #153) Why your consent management setup is a marketing performance question Everything you need to know about GDPR The redesigned cookie banner and configurator What nobody tells you about handing over the company you built European marketers are betting on retention. Privacy could be the edge they’re not using yet. The 5 best alternatives to Didomi in 2026: Pros, cons, pricing, and comparison Looking back on 15 years: what iubenda's founder would tell his 2011 self | iubenda The best cookie policy generator in 2026 DPO Newsletter: Global Data Protection & Privacy News (issue #152) | iubenda What publishers should expect from the EU’s Digital Omnibus proposal Uncertainty is the biggest blocker to AI adoption in marketing | iubenda Everything AI app builders need to know about vibecoding and privacy compliance | iubenda Introducing 1-Click Embedding for Google Tag Manager The Essential Small Business Terms and Conditions Template: What You Need to Know Terms of Use Template | iubenda IAB Europe Raises Concerns Over GDPR Procedural Regulation Draft Report | iubenda Learn from HelloFresh's Costly Mistake: Ensure Compliance with iubenda | iubenda Understanding the Spanish DPA Guide on Audience Measurement Cookies | iubenda The Austrian Data Protection Authority's FAQs on Cookies and Privacy | iubenda DPO Newsletter: Global Data Protection & Privacy News (issue #127) | iubenda Microsoft Ensuring European Data Stays Within the EU Cloud Boundary | iubenda Businesses Beware: ICO’s Record £14.3m in Fines for Data Misuse in 2023 Understanding the Risks and Responsibilities of Model-as-a-Service Companies in AI Development Facebook's New “Link History” Feature: A Blend of Convenience and Surveillance? | iubenda OpenAI’s Strategic Move in the EU: Aligning with Data Privacy Regulations TikTok Faces Lawsuit Over Tracking Non-Users What’s the Digital Markets Act (DMA) and how will it affect you? | iubenda Simplifying Cookie Consent: The European Commission's Approach | iubenda Google Settles Landmark Privacy Lawsuit for $5 Billion | iubenda Navigate GDPR Compliance with Confidence: Lessons from Recent Fines in Italy Simplifying the Commission's New Reporting Template for Digital Market Gatekeepers | iubenda Understanding the GDPR Complaint Against X (Twitter) for Illegal MicroTargeting | iubenda Spanish Media Giants Take On Meta in a Groundbreaking $600 Million Lawsuit | iubenda DPO Newsletter: Data Protection & Privacy News (issue #126) | iubenda Belgian DPA Mandates Cookie Banner Changes for Major Media Websites | iubenda UK's Top Websites Warned by ICO to Revise Cookie Practices | iubenda Understanding the European Union's Data Act | iubenda Google Announces Consent Mode v2 – here’s what it means for your business and advertising Noyb Challenges EU Commission Over Controversial Ad Campaign | iubenda OECD Updates AI Definition: A Step Forward in Shaping EU’s AI Law Firefox To Introduce Simplified Global Privacy Control Berlin Court Cracks Down on LinkedIn’s Privacy Violations The YouTube Ad Blocker Controversy: A Test of the ePrivacy Directive? | iubenda DPO Newsletter: Data Protection & Privacy News (issue #125) Facebook and Instagram Subscription: Meta adds a paywall | iubenda GDPR Violation: Lack of Transparency in Data Processing via Google Fonts Amazon Introduces AWS European Sovereign Cloud to Address EU Regulations | iubenda Texas New Data Privacy Law TDPSA: Everything you need to know How to Make Money with a Website Without Selling Anything Oregon Consumer Privacy Act: Overview | iubenda Google’s Move to Disable Third-Party Cookies: What Advertisers Need to Know IMY Fines H&M for GDPR Violations: A Closer Look EU Commission Requests Information from X Under Digital Services Act: What You Need to Know | iubenda Understanding California’s “Delete Act” and Data Broker Regulations TCF v 2.2 Initial Layer (Banner) Requirements | iubenda Grindr Faces €5.8 Million Fine: A Reminder on the Importance of GDPR Compliance | iubenda Newly Enacted Iowa Consumer Data Protection Act (ICDPA) | iubenda The Witch’s Brew of Privacy: A Halloween Tale of Compliance and Consequences IAB TCF 2.2 – What you need to do DPO Newsletter: Data Protection & Privacy News (issue #124) Blog Ideas That Make Money: How To Make Money From Your Blog + Examples | iubenda Maximize your Growth with Online Presence Management | iubenda Meta's New Pivot in Europe: To Pay or Not to Pay for an Ad-Free Experience? | iubenda Consumer Reports Launches Free ‘Permission Slip’ App to Protect Your Data | iubenda DAZN’s Access Request Saga Personal Brand Logo: How to Stand Out in a Crowded Marketplace UK-US Data Bridge: A New Era for Secure Data Transfers 7 Ways How to Promote Affiliate Links Effectively (And Boost Commissions) | iubenda Mastering LinkedIn Personal Branding: A Guide to More Opportunities Meta's New Approach: Pay for Your Privacy? | iubenda No Return, No Refund Policy Template & Guide GDPR in the US: a GDPR Checklist for US Companies Crafting a Niche with Branding and Identity Design | iubenda The Online Safety Bill: A Leap Towards a Safer Digital United Kingdom Understanding Google's $93m Settlement over Consumer Location Data Accusations | iubenda CCPA vs CPRA: Key Differences You Need to Know | iubenda How To Use Ecommerce Retargeting to Grow Your Business | iubenda PECR: Everything you need to know | iubenda How Mobile Apps Illegally Share Your Personal Data: A Deep Dive | iubenda Legal Spotlight: Privacy Concerns Surrounding OpenAI’s ChatGPT and Microsoft’s Involvement Legal Scrutiny Looms Over Transatlantic Data Deal: French MEP Takes Action Understanding the Digital Markets Act: A Comprehensive Guide Block AI Crawlers: Here’s How To Stop Your Site From Being Used for AI Training (OpenAI and Google Bard Irish Regulator Slaps $368M Fine on TikTok DPO Newsletter: Data Protection & Privacy News (issue #123) | iubenda The Privacy Pitfalls of Vehicle Data Collection: What You Need to Know | iubenda Twitter customer’s data on the menu for xAI models Update: Revised Swiss Privacy Law Takes Effect Fitbit and the GDPR Hurdle: What You Need to Know About Your Data Privacy | iubenda Terms of Service Template for your site | iubenda Senators Urge FTC to Investigate YouTube and Google for Violating Children's Privacy: What You Need to Google AdSense Requirements: Here's What You Need to Know | iubenda Users can’t opt out from marketing emails: FTC fines Experian $650,000 | iubenda DPO Newsletter: Data Protection & Privacy News (issue #122) | iubenda 7 Ways Business Process Automation Can Increase Your Profits
DPO Newsletter: Data Protection & Privacy News (issue #119) | iubenda
Aert Hulsebos · 2023-07-27 · via Compliance Solutions for Websites, Apps and Organizations | iubenda
DPO Newsletter: Global Data Protection & Privacy News

We’ve compiled the latest in Data Protection and Privacy news for your convenience below.

1) Newly Published Documentation

  • The EDPB has adopted an information note for both individuals and entities carrying out data transfers to the U.S., which clarifies that no supplementary measures are required for transfers based on the adequacy decision. Separately the U.S. International Trade Administration has launched an EU-U.S. data privacy framework dedicated website.
  • The French data protection authority (CNIL) has launched a new “sandbox” dedicated to artificial intelligence and the personal data issues that arise as a result of such innovation: “The sandbox is therefore aimed at organizations facing new issues related to personal data regulations. By intervening at an early stage in the development of the project, the CNIL teams help the organization identify possible solutions and implement them.Press release here → (in French)
  • The California Privacy Protection Agency introduced the new consumer complaint system which grants both residents and nonresidents the possibility to lodge either sworn or unsworn complaints concerning alleged violations of the California Consumer Privacy Act.
  • The Biden administration has announced that seven leading artificial intelligence (AI) companies including Amazon, Anthropic, Google, Inflection, Meta, Microsoft, and OpenAI have committed voluntarily to, among others, carry out internal and external security testing of AI systems before release, share information on managing AI risks, and invest in safeguards. The administration said that in consultation with several allies and partners engaged in the voluntary commitments, it is working “to establish a strong international framework to govern the development and use of AI.

2) Notable Case Law

  • Amazon has reached a settlement with the U.S. Department of Justice and the Federal Trade Commission over alleged children’s privacy violations concerning its Alexa voice assistant. As part of the agreement, Amazon will pay USD 25 million in civil penalties and adhere to a permanent injunction.
  • The FTC concluded its actions against BetterHelp with a finalized order amounting to USD 7.8 million. The order was based on allegations of improper data sharing for advertising purposes. Under the order, the online counseling service is banned from sharing consumers’ health data for advertising and using personal data for retargeting.
  • NOYB has now started a campaign against several Belgian news outlets, including among others RTL Belgium, the public service broadcaster VRT, newspapers Het Laatste Nieuws and L’Avenir. The NGO is claiming that these companies “have bought themselves free from GDPR compliance”. The full list of websites against which a complaint has been filed can be found here →
  • The Italian Garante fined the department store Rinascente SpA 300,000 euros for several violations in relation to the illegal processing of personal data of millions of customers in marketing and profiling activities through the use of loyalty cards. The infringements included but were not limited to the failure to:
    • indicate data retention times for marketing and profiling purposes;
    • indicate processing activity carried out through Facebook-Meta, which included the forwarding of customer’s email addresses to the US company;
    • prepare a data protection impact assessment as envisaged by the GDPR.

3) New and Upcoming Legislation

  • The Council of the European Union’s Committee of the Permanent Representatives of the Governments of the Member States to the EU, has approved the draft compromise text of the Data Act. Draft compromise Data Act here →
  • California: The California Privacy Protection Agency (CPPA) Board had unanimously voted, to support four California privacy bills. Among these bills are:
    • Assembly Bill 947 which would define sensitive personal information under the CCPA as amended to include personal information that reveals a consumer’s citizenship or immigration status;
    • Senate Bill 362, which would transfer the administration and rule-making authority over the data broker registry from the Department of Justice to the CPPA. This would also be directed to establish a deletion mechanism to allow a consumer to ask that all data brokers delete their personal information in one single request. Press release here.
  • Oregon: Senate Bill 619 for an Act relating to protections for the personal data of consumers was signed by the Governor of Oregon. It will enter into force on July 1, 2024 however, certain exceptions apply to non-profit entities and the Act will not apply to them until July 1, 2025.
  • Federal: The FTC has published a Federal Register notice seeking public comment on an application from ESRB, Yoti and SuperAwesome. The application proposes using “Privacy-Protective Facial Age Estimation” to obtain parental consent under COPPA. Comments can be submitted until August 21, 2023. Press release →

4) Strong Impact Tech

  • WhatsApp has updated its privacy policy by switching to the ‘legitimate interest’ legal basis following the Irish Data Protection Commissioner’s sanction in January, where it was fined €5.5 million. WhatsApp, stated that “under legitimate interest, users will still be able to object to the use of their information.” Read the full story on our blog →
  • The Canberra Times has reported that the release of Threads in Australia, Meta’s new social media platform, led to renewed calls for privacy law reforms. Digital Rights Watch Program Lead Samantha Floreani said that “We urgently need the Australian government to take action to pass robust reforms to the Privacy Act to make sure companies are handling our personal information appropriately […. since] All of this data is collected for the benefit of the companies harvesting it.” Reported here →

Other key information from the past weeks

  • The Spanish Data Protection Authority (AEPD) has issued an updated version of its guide on the use of cookies to reflect the Guidelines on deceptive design patterns issued by the EDPB in February 2023.
  • The Italian Garante has published its 2022 activity report, which indicates that there has been an increase in the number of inspections, totaling to 140 inspections and tripling the 2021 figures.
  • The EPDB held their 82nd EDPB meeting, wherein the focus of the EDPB Members was on the EU-U.S. Data Privacy Framework (DPF).

About us

iubenda

Attorney-level solutions to make your websites and apps compliant with the law across multiple countries and legislations.

www.iubenda.com