The 15th Civil Senate Higher Regional Court of Cologne rejected application for an expedited proceeding from the Consumer Advice Centre of North Rhine-Westphalia filed against Meta related to its intention to use consumer data to train its AI models. The court ruled Meta had not yet violated the EU General Data Protection Regulation in rejecting the application.
Malaysia's Department of Personal Data Protection published guidelines for appointing a data protection officer for organizations that process the personal data of 20,000 data subjects or 10,000 sensitive data subjects.
The U.S. National Institute of Standards and Technology published a recap of its 3 April workshop to receive feedback on the concept paper for developing community profiles under the NIST Cybersecurity Framework and the NIST AI Risk Management Framework. The community profiles provide an opportunity for businesses in similar industries to collaborate on their cybersecurity posture.Full story
As the digital landscape continues to evolve, privacy lawyers are navigating the best ways to adapt to technology and regulation. Troutman Pepper Locke Partner David Navetta spoke with IAPP Staff Writer Lexie White about his work guiding organizational compliance and navigating the complex regulatory environment while highlighting the need for versatility across digital fields.Full story
South Korea's Personal Information Protection Commission released an updated version of its support system to help self-regulating institutions comply with the Personal Information Protection Act. The guide seeks to address "limitations in effective self-regulatory activities tailored to the characteristics" of the country's 25 self-regulatory bodies across 11 fields.
Nordic data protection authorities agreed to improve their cooperation with each other during their annual joint meeting. They discussed potential data security and technical implementation guidance that span across borders. The regulators also covered the importance of "a clear mandate and sufficient resources" necessary to foster appropriate collaborations.Full story
The European Commission is investigating whether several explicit websites are violating the EU Digital Services Act by not applying age verification and risk assessment methods to ensure children can't access their content. The Commission will allow the sites to change their practices to remedy any issues found during the investigation.Full story
The U.S. government allegedly did not make telecommunication companies aware of the Salt Typhoon hack affecting more than one million individuals' data until after it had been made public, CyberScoop reports. The delayed response was one of many criticisms of the government's handling of the breach, which some former and current government officials rejected, arguing a coordinated effort was made to notify affected parties.Full story
An Axios/Harris 100 poll of 2,123 U.S. adults found 77% of respondents would rather companies take AI development slow than move fast and make mistakes. The viewpoint is in contrast to the heavy investment and race to develop more powerful AI approach favored by AI development leaders.Full story
Reuters reports the U.S. Department of Government Efficiency is allegedly deploying social platform xAI's Grok chatbot to analyze federal government data. "They ask questions, get it to prepare reports, give data analysis," a source familiar with the matter told Reuters.