Articles from Around the Web

Discover the latest industry insights and developments with our News from Around the Web page. We curate feeds from a variety of reputable organizations, bringing you a comprehensive overview of relevant news and trends. Stay informed and connected with the most current updates from across the web.

California attorney general conducts CCPA compliance sweep

California Attorney General Rob Bonta announced California Consumer Privacy Act noncompliance letters were sent to various mobile application providers as part of a recent investigative sweep. The attorney general's office alerted "popular apps in the retail, travel, and food service industries" to alleged CCPA violations related to user opt-out requests, a lack of clear opt-out mechanisms and failure to process consumer requests submitted via an authorized agent.

Attorney general releases latest revisions to Colorado Privacy Act draft rules

According to Husch Blackwell's "Byte Back," the Colorado attorney general's office released the second set of revisions to the Colorado Privacy Act draft regulations. Changes from the last revisions released in January include tweaks to business requirements for privacy notices, universal opt-out mechanisms, and honoring consumer rights and opt-out requests.

European Commission briefs regulators on Digital Services Act implementation

Euractiv reports the European Commission held a webinar to prepare national authorities for their role in Digital Services Act implementation. The presentation aimed to help regulators understand classification and threshold for large online platforms to acquaint themselves with provisions for risk management, governance and information sharing. Companies with more than 45 million EU users are categorized as large online platforms and are held to higher standards under the DSA.

Op-ed: CFPB financial data rights rule endangers consumers' data

In an op-ed for The Hill, Consumer Bankers Association Executive Vice President and Head of Regulatory Affairs Dan Smith said the Consumer Financial Protection Bureau's implementation of Section 1033 of the Dodd-Frank Act "could have sweeping implications for the financial services marketplace and consumers alike." Smith said the provision intends to ensure consumers can access personal data held by their financial services provider, but will "expose the sensitive financial information of millions of consumers to unnecessary risks and fail to provide them with access required by Congress." 

EU authorities issued 1.6B euros in GDPR fines over past year

DLA Piper's latest annual General Data Protection Regulation Fines and Data Breach Survey found European supervisory authorities issued 1.64 billion euros in fines since Jan. 28, 2022, a 50% increase over the prior year. Five of the top 10 fines came from Ireland's Data Protection Commission, some targeting behavioral advertising practices. "These have the potential to be every bit as profound for the future of the grand bargain struck between online service providers and consumers as Schrems II has been for international data transfers," U.K.

Cyberattack of UK sportswear company exposes data of 10M customers

The BBC reports 10 million customers of U.K. sportswear chain JD Sports had their data exposed in a cyberattack. The breach reportedly affected online sales data from 2018-2020, including personally identifiable information. JD Sports representatives said they were contacting affected customers, working with “leading cyber-security experts” and talking with the U.K. Information Commissioner’s Office to respond to the breach.Full Story

Roundup: Canada, EU, US and more

In this week’s Global News Roundup, the Privacy Commissioner of Canada reflected on the commission’s annual report. The European Data Protection Board published its binding decision in the Irish Data Protection Commission’s WhatsApp case. U.S. Republican lawmakers introduced another bill to ban citizens from downloading TikTok. And the Saudi Arabian Data and Artificial Intelligence Authority opened a public consultation period for secondary data use guidelines. (IAPP member exclusive.)Full Story

Don't Miss a Compliance Update.

Sign up for expert compliance insights, new law analysis,

and free resources to keep your business protected.