惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

D
Docker
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
C
Cisco Blogs
Scott Helme
Scott Helme
Know Your Adversary
Know Your Adversary
NISL@THU
NISL@THU
C
Cyber Attacks, Cyber Crime and Cyber Security
D
Darknet – Hacking Tools, Hacker News & Cyber Security
C
CXSECURITY Database RSS Feed - CXSecurity.com
S
Schneier on Security
I
Intezer
Spread Privacy
Spread Privacy
AWS News Blog
AWS News Blog
V
Vulnerabilities – Threatpost
Cloudbric
Cloudbric
V2EX - 技术
V2EX - 技术
Google Online Security Blog
Google Online Security Blog
L
Lohrmann on Cybersecurity
Recent Commits to openclaw:main
Recent Commits to openclaw:main
L
LINUX DO - 热门话题
S
Secure Thoughts
T
The Exploit Database - CXSecurity.com
博客园 - 【当耐特】
Recent Announcements
Recent Announcements
Security Archives - TechRepublic
Security Archives - TechRepublic
Stack Overflow Blog
Stack Overflow Blog
罗磊的独立博客
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
K
Kaspersky official blog
阮一峰的网络日志
阮一峰的网络日志
博客园_首页
Latest news
Latest news
B
Blog
F
Full Disclosure
大猫的无限游戏
大猫的无限游戏
博客园 - 叶小钗
L
LangChain Blog
GbyAI
GbyAI
Last Week in AI
Last Week in AI
S
Security Affairs
Apple Machine Learning Research
Apple Machine Learning Research
N
Netflix TechBlog - Medium
Security Latest
Security Latest
Vercel News
Vercel News
Y
Y Combinator Blog
G
GRAHAM CLULEY
S
Securelist
T
Troy Hunt's Blog
Hacker News - Newest:
Hacker News - Newest: "LLM"
雷峰网
雷峰网

Compliance Solutions for Websites, Apps and Organizations | iubenda

AI can build your website. It can't manage your consent. | iubenda Browser signals and machine-readable consent: what they are and what the EU’s Digital Omnibus could change California Consumer Privacy Act (CCPA): Complete Guide How to increase your cookie banner opt-in rates: 5 mistakes to fix today | iubenda DPO Newsletter: Global Data Protection & Privacy News (issue #153) Why your consent management setup is a marketing performance question Everything you need to know about GDPR The redesigned cookie banner and configurator What nobody tells you about handing over the company you built European marketers are betting on retention. Privacy could be the edge they’re not using yet. The 5 best alternatives to Didomi in 2026: Pros, cons, pricing, and comparison Looking back on 15 years: what iubenda's founder would tell his 2011 self | iubenda The best cookie policy generator in 2026 DPO Newsletter: Global Data Protection & Privacy News (issue #152) | iubenda What publishers should expect from the EU’s Digital Omnibus proposal Uncertainty is the biggest blocker to AI adoption in marketing | iubenda Everything AI app builders need to know about vibecoding and privacy compliance | iubenda Introducing 1-Click Embedding for Google Tag Manager The Essential Small Business Terms and Conditions Template: What You Need to Know Terms of Use Template | iubenda IAB Europe Raises Concerns Over GDPR Procedural Regulation Draft Report | iubenda Learn from HelloFresh's Costly Mistake: Ensure Compliance with iubenda | iubenda Understanding the Spanish DPA Guide on Audience Measurement Cookies | iubenda The Austrian Data Protection Authority's FAQs on Cookies and Privacy | iubenda DPO Newsletter: Global Data Protection & Privacy News (issue #127) | iubenda Microsoft Ensuring European Data Stays Within the EU Cloud Boundary | iubenda Businesses Beware: ICO’s Record £14.3m in Fines for Data Misuse in 2023 Understanding the Risks and Responsibilities of Model-as-a-Service Companies in AI Development Facebook's New “Link History” Feature: A Blend of Convenience and Surveillance? | iubenda OpenAI’s Strategic Move in the EU: Aligning with Data Privacy Regulations TikTok Faces Lawsuit Over Tracking Non-Users What’s the Digital Markets Act (DMA) and how will it affect you? | iubenda Simplifying Cookie Consent: The European Commission's Approach | iubenda Google Settles Landmark Privacy Lawsuit for $5 Billion | iubenda Navigate GDPR Compliance with Confidence: Lessons from Recent Fines in Italy Simplifying the Commission's New Reporting Template for Digital Market Gatekeepers | iubenda Understanding the GDPR Complaint Against X (Twitter) for Illegal MicroTargeting | iubenda Spanish Media Giants Take On Meta in a Groundbreaking $600 Million Lawsuit | iubenda DPO Newsletter: Data Protection & Privacy News (issue #126) | iubenda Belgian DPA Mandates Cookie Banner Changes for Major Media Websites | iubenda UK's Top Websites Warned by ICO to Revise Cookie Practices | iubenda Understanding the European Union's Data Act | iubenda Google Announces Consent Mode v2 – here’s what it means for your business and advertising Noyb Challenges EU Commission Over Controversial Ad Campaign | iubenda OECD Updates AI Definition: A Step Forward in Shaping EU’s AI Law Firefox To Introduce Simplified Global Privacy Control Berlin Court Cracks Down on LinkedIn’s Privacy Violations The YouTube Ad Blocker Controversy: A Test of the ePrivacy Directive? | iubenda DPO Newsletter: Data Protection & Privacy News (issue #125) Facebook and Instagram Subscription: Meta adds a paywall | iubenda GDPR Violation: Lack of Transparency in Data Processing via Google Fonts Amazon Introduces AWS European Sovereign Cloud to Address EU Regulations | iubenda Texas New Data Privacy Law TDPSA: Everything you need to know How to Make Money with a Website Without Selling Anything Oregon Consumer Privacy Act: Overview | iubenda Google’s Move to Disable Third-Party Cookies: What Advertisers Need to Know IMY Fines H&M for GDPR Violations: A Closer Look EU Commission Requests Information from X Under Digital Services Act: What You Need to Know | iubenda Understanding California’s “Delete Act” and Data Broker Regulations TCF v 2.2 Initial Layer (Banner) Requirements | iubenda Grindr Faces €5.8 Million Fine: A Reminder on the Importance of GDPR Compliance | iubenda Newly Enacted Iowa Consumer Data Protection Act (ICDPA) | iubenda The Witch’s Brew of Privacy: A Halloween Tale of Compliance and Consequences IAB TCF 2.2 – What you need to do DPO Newsletter: Data Protection & Privacy News (issue #124) Blog Ideas That Make Money: How To Make Money From Your Blog + Examples | iubenda Maximize your Growth with Online Presence Management | iubenda Meta's New Pivot in Europe: To Pay or Not to Pay for an Ad-Free Experience? | iubenda Consumer Reports Launches Free ‘Permission Slip’ App to Protect Your Data | iubenda DAZN’s Access Request Saga Personal Brand Logo: How to Stand Out in a Crowded Marketplace UK-US Data Bridge: A New Era for Secure Data Transfers 7 Ways How to Promote Affiliate Links Effectively (And Boost Commissions) | iubenda Mastering LinkedIn Personal Branding: A Guide to More Opportunities Meta's New Approach: Pay for Your Privacy? | iubenda No Return, No Refund Policy Template & Guide GDPR in the US: a GDPR Checklist for US Companies Crafting a Niche with Branding and Identity Design | iubenda The Online Safety Bill: A Leap Towards a Safer Digital United Kingdom Understanding Google's $93m Settlement over Consumer Location Data Accusations | iubenda CCPA vs CPRA: Key Differences You Need to Know | iubenda How To Use Ecommerce Retargeting to Grow Your Business | iubenda PECR: Everything you need to know | iubenda How Mobile Apps Illegally Share Your Personal Data: A Deep Dive | iubenda Legal Spotlight: Privacy Concerns Surrounding OpenAI’s ChatGPT and Microsoft’s Involvement Legal Scrutiny Looms Over Transatlantic Data Deal: French MEP Takes Action Understanding the Digital Markets Act: A Comprehensive Guide Block AI Crawlers: Here’s How To Stop Your Site From Being Used for AI Training (OpenAI and Google Bard Irish Regulator Slaps $368M Fine on TikTok DPO Newsletter: Data Protection & Privacy News (issue #123) | iubenda The Privacy Pitfalls of Vehicle Data Collection: What You Need to Know | iubenda Twitter customer’s data on the menu for xAI models Update: Revised Swiss Privacy Law Takes Effect Fitbit and the GDPR Hurdle: What You Need to Know About Your Data Privacy | iubenda Terms of Service Template for your site | iubenda Senators Urge FTC to Investigate YouTube and Google for Violating Children's Privacy: What You Need to Google AdSense Requirements: Here's What You Need to Know | iubenda Users can’t opt out from marketing emails: FTC fines Experian $650,000 | iubenda DPO Newsletter: Data Protection & Privacy News (issue #122) | iubenda 7 Ways Business Process Automation Can Increase Your Profits
DPO Newsletter: Data Protection & Privacy News (issue #106) | iubenda
Aert Hulsebos · 2023-04-27 · via Compliance Solutions for Websites, Apps and Organizations | iubenda
DPO Newsletter: Global Data Protection & Privacy News

We’ve compiled the latest in Data Protection and Privacy news for your convenience below.

1) Newly Published Documentation

  • Following the 101 Task Force set up as a result of the CJEU Schrems II judgement and the 101 complaints filed by the NGO noyb regarding the “Google Analytics and Facebook Business Tools on websites, and the subsequent processing of personal data transfers to the U.S.”, EU Data Protection Authorities have issued a report which highlights the common position reached by the respective supervisory authorities. Read here →
  • The EDPB has adopted a final version of the guidelines on Data Subjects’ Right of Access, which analyze and provide clarification on the right of access in terms of Article 15 of the GDPR and Article 8 of the EU Charter of Fundamental Rights. Access here →
  • The Irish Data Protection Commission (DPC) has published a guidance note to better assist controllers in complying with Article 30 of the GDPR and maintain well drafted Records of Processing Activities (RoPA). Read here →
  • The Agencia Española de Protección de Datos (AEPD), has released a list of several public administration offices that have been sanctioned for failure to comply with the GDPR. The AEPD noted that not only were citizens’ rights not upheld in certain instances, however the relevant offices even failed to comply with the AEPD’s information requests or the appointment of a data protection officer in some cases. Access here → (in Spanish)

2) Notable Case Law

  • Further to a complaint filed by an individual, the Agencia Española de Protección de Datos (AEPD), fined Vodafone España, S.A.U. the sum of 140,000 euros subsequently reduced to 112,000 euros pursuant to a reduction for voluntary payment, for violating Article 6(1) of the GDPR. Read about the decision here → (in Spanish)
  • The Federal Canadian Court did not uphold the Federal Privacy Commissioner’s “attempt to enforce its 2019 finding that Facebook violated the Personal Information Protection and Electronic Documents Act (PIPEDA) by having inadequate data privacy safeguards over how third-party apps played with the data of Facebook users,” which data landed in the hands of Cambridge Analytica.

    In a landmark judgment (which is subject to appeal by the Federal Privacy Commission), the judge’s two part ruling concerned two main points. Firstly, that the commissioners’ evidence was not satisfactory in proving that Facebook had not obtained the adequate consent for sharing user data with third-party apps. Secondly, whilst Facebook had an obligation towards user’s data, such obligation however shifted to the creators of the third party apps once the user had agreed to partake in that app.

    The Commissioner pointed out that PIPEDA deems that “an organization is responsible for information in its possession or custody, including information that is transferred to a third party for processing.” However, the judge concluded that PIPEDA “does not impose a responsibility over information disclosed in all instances.”

3) New and Upcoming Legislation

  • The Internal Market and Consumer Protection Committee (IMCO) and the Civil Liberties, Justice and Home Affairs Committee (LIBE) voted on the draft report on the Proposal for a Regulation of the European Parliament and of the Council Laying Down Harmonized Rules on Artificial Intelligence (AI Act). Reported here →
  • The European Commission has adopted a proposal for the EU Cyber Solidarity Act with the aim to “better detect, prepare for and respond to significant or large-scale cybersecurity incidents.” Read here →
  • Some UK MPs are criticizing the Data Protection and Digital Information (No. 2) Bill, warning it could hamper data transfer flows to the EU, but the UK government has called for written evidence from people with expertise or a special interest in the Bill to submit their views to the House of Commons Public Bill Committee. Access here →
  • Argentina’s Agencia de Acceso a la Información Pública (AAIP) has approved the amending Protocol to the Convention 108+, becoming the 23rd country to do so. Reported here →

US Law Updates:

  • The Online Privacy Act (OPA) has been refiled by U.S. Representatives Anna Eshoo and Zoe Lofgren. The proposed act:
    • includes user data rights,
    • requires limitations and obligations on data practices,
    • establishes a data protection authority,
    • includes a legislative floor that allows state legislatures to go beyond OPA provisions as they see fit.
  • Florida Representative Kathy Castor reintroduced the “Protecting the Information of our Vulnerable Children and Youth Act,” also called the “Kids PRIVACY Act”. Previous versions were already introduced in 2020 and 2021. The bill would serve to restrict online companies from collecting teen’s data for the purposes of behavioral targeting.
  • Tennessee: House Bill 1181 in relation to the Information Protection Act has passed Senate
  • Florida: House Bill 591 relating to social media protection for minors passes Committee and is added to the Special Order Calendar
  • California: Senate Bill 845 for the protection of minors on social media entitled Let Parents Choose Protection Act of 2023 was read for second time and amended
  • Indiana: Senate Bill 5 on consumer data protection was signed by the presiding officer of State Senate
  • Montana: Senate Bill 384 establishing the consumer privacy act has been sent to the Governor for signature

4) Strong Impact Tech

  • In an effort to ensure that the risk management requirements contemplated under the Digital Services Act (DSA) are met by “Very Large Online Platforms and Very Large Online Search Engines”, the European Commission has launched the European Center for Algorithmic Transparency (ECAT). Read here →
  • Media Post has reported that Google is presently testing artificial intelligence models to optimize ad targeting without the use of third-party cookies in an effort to find a third-party cookie alternative.

Other key information from the past weeks

  • The Garante’s recent enforcement action, imposed against Open AI in relation to ChatGPT, has led the EDPB to launch “a dedicated task force to foster cooperation and to exchange information on possible enforcement actions conducted by data protection authorities.”
  • The Spanish Agencia Española de Protección de Datos (AEPD) has initiated an investigation into ChatGPT’s owner, OpenAI, for a possible breach of data protection regulations.
  • The first state-wide TikTok ban was approved in the unprecedented Senate Bill 419 by the Montana House of Representatives.

About us

iubenda

Attorney-level solutions to make your websites and apps compliant with the law across multiple countries and legislations.

www.iubenda.com