The U.S. Consumer Financial Protection Bureau and Federal Trade Commission filed an amicus brief in the U.S. Court of Appeals for the 11th Circuit addressing what it called an "erroneous argument" over consumer reporting companies' obligation to correct consumer data errors under the Fair Credit Reporting Act.
Italy's data protection authority, the Garante, fined five waste disposal companies after they allegedly used facial recognition technology to determine employee attendance. The DPA said it directed the companies to delete the biometric data and use "less invasive systems to control the presence of their employees and collaborators in the workplace."Full story
The New York Times reports AT&T reset the passcodes of 7.6 million customers after it found data was "released on the dark web." The company also found that 65.4 million former account holders' data was affected in the incident and that Social Security numbers were included in some of the datasets. "AT&T has launched a robust investigation supported by internal and external cybersecurity experts.
The U.S. Court of Appeals for the District of Columbia Circuit denied Meta's request to halt a Federal Trade Commission hearing over Meta's teen data monetization practices, MediaPost reports.
Finland's Office of the Data Protection Ombudsman released guidance on the positive credit information register's collection of personal data. The DPA will supervise the processing of residents' data through the positive credit information register, however, residents do not have the option to deny the processing of their data or request that the data be deleted.
The U.S. Department of Health and Human Services' Office for Civil Rights announced its 47th settlement under the Health Insurance Portability and Accountability Act Right of Access Initiative.
The U.S. Office of Management and Budget's final memorandum on how federal agencies can use artificial intelligence represents one of the most significant actions the country has seen toward AI rules since the White House executive order was issued in fall 2023. IAPP Staff Writer Caitlin Andrews delves into some of the key details contained the OMB's release.Full story
The IAPP published the second edition of "Cybersecurity Law Fundamentals" by Senior Policy Advisor to the Stanford Program on Geopolitics, Technology and Governance James Dempsey and Paul, Weiss Partner John Carlin. The book includes full revisions to account for the latest changes in U.S.
IAPP Managing Director, Washington, D.C., Cobun Zweifel-Keegan, CIPP/US, CIPM, offers his take on the latest privacy and artificial intelligence governance developments in the nation's capital and around the U.S. This week, he lists the speakers and sessions he's looking forward to at the IAPP Global Privacy Summit 2024.Full story
Two weeks ago, the European Data Protection Supervisor dropped a bombshell in the data transfer world — issuing two orders against the European Commission over its use of Microsoft 365. IAPP Managing Director, Europe, Isabelle Roccia, CIPP/E, details the EDPS's decision, which she said imposes a long list of corrective measures defined by the EDPS as "appropriate, necessary and proportionate."Full story