Germany's Federal Commissioner for Data Protection and Freedom of Information issued Vodafone two fines totaling 45 million euros for alleged EU General Data Protection Regulation violations related to insufficient due diligence with third parties and inadequate data security. The BfDI assessed a 30 million euro fine for alleged security flaws in its authentication process for its "MeinVodafone" online portal.
MediaPost reports a coalition of advertising associations urged the California Privacy Protection Agency to consider revisions to proposed regulations on automated decision-making technology, risk assessments and cybersecurity audits. In particular, the ad groups want to avoid "far-reaching unintended consequences" of the proposed requirements for assessments around sensitive location data.
Brazil's data protection authority, the Autoridade Nacional de Proteção de Dados, opened a public consultation to solicit stakeholder input on how the agency should develop future guidance and actions on the use of biometric data under the General Personal Data Protection Law.
The ongoing dispute between U.S. tech companies and the EU over digital regulation has roots to the "beginning of the digital era," Tilburg University Professor of Global ICT Law Lokke Moerel writes in an op-ed. Moerel claims EU digital enforcement has been "counterproductive" for reigning in the power of Big Tech while arguing EU regulations are too processed-based, giving U.S.
While Australia does not yet have a responsible AI governance law, aged care organizations should look to international standards if considering adding AI caregivers to their workflows, Excite Cyber Head of Professional Services Asadullah Rathore, AIGP, CIPP/E, CIPM, FIP, writes. "Organizations should embrace new technologies with cautious optimism and be diligent enough to ensure appropriate safeguards and governance are in place to prevent disastrous consequences," she wrote.Full story
Apple appealed the European Commission's decision ordering interoperability with third parties under the Digital Markets Act, Euractiv reports.
The Ibero-American Data Protection Network discussed its next four-year action plan during its annual meeting. The strategic roadmap focuses on AI, biometrics and creates an observatory to help with analysis and predicting challenges.Full story
U.K. Information Commissioner John Edwards and Financial Conduct Authority Chief Executive Nikhil Rathi detailed collaborative efforts to bolster innovation and provide resources for organizations. The ICO and FCA said by helping organizations achieve "regulatory agility and confidence to innovate and invest in new technologies, businesses will provide the U.K.
South Korea's Personal Information Protection Commission launched an investigation after fashion brands Dior and Tiffany & Co. reported a data breach involving consumers' personal information. The PIPC will examine the companies' data protection standards and ensure their safeguards are compliant with the Personal Information Protection Act.Full story
Guernsey Data Protection Commissioner Brent Homan spoke with Australian Privacy Commissioner Carly Kind about her office's work, the children's online safety landscape and the rise of AI in digital spaces. The conversation is part of the Bijou Lecture Series run by the ODPA.Full story