The U.N. developed a cybersecurity framework, which builds on and complements existing frameworks, such as the MITRE ATT&CK framework, Infosecurity Magazine reports. The U.N. Institute for Disarmament Research Intrusion Path framework looks to help U.N.
Kenya's High Court ordered Worldcoin to delete all data it collected in the country, IT Web reports. Users were issued tokens by Worldcoin worth USD45 upon verifying they were human by providing iris scans. As part of the ruling, the High Court demanded Worldcoin cease all data collection until it provided a data protection impact assessment and/or demonstration of valid consent.Full story
The U.S. Privacy and Civil Liberties Oversight Board issued a staff report on the Transportation Security Administration's use of facial recognition technology. The report contains information on one-to-one and one-to-many recognition verification systems used by TSA.
9 May marks Europe Day and the anniversary of the Schuman Declaration signed in 1950. IAPP Managing Director, Europe, Isabelle Roccia, CIPP/E, shares the evolution from what started as a coal and steel community to the home for policies on cybersecurity and AI. She also discusses cybersecurity's cross-over into AI and a "life cycle approach to risk management, noticeable across EU digital policy instruments."Full story
The European Commission referred the Czech Republic, Cyprus, Poland, Portugal and Spain to the Court of Justice of the European Union over alleged violations related to digital coordinator designations under the EU Digital Services Act.
Italy's data protection authority, the Garante, fined Acea Energia for 3 million euros and other associated companies 850,000 euros for allegedly violating telemarketing laws and illegally processing personal data. The Garante found companies used lists of people who had switched energy providers to target them for new contracts.Full story
Norway's data protection authority, Datatilsynet, wrote a joint article about a government proposal for a national register of children and associated privacy challenges.
During the IAPP Global Privacy Summit 2025 in Washington, D.C., former U.S. Federal Trade Commissioners Alvaro Bedoya and Rebecca Kelly Slaughter joined The Verge's "Decoder" podcast to discuss the current and future landscape of U.S. consumer protection, including privacy and antitrust issues.
As part of its 25th anniversary, the IAPP will celebrate 25 trailblazing innovators and 25 defining moments in the last quarter century that helped establish the privacy and digital governance profession. This week, we highlight the IAPP's 50,000-member milestone, which came after a 25% increase in membership fueled by the EU General Data Protection Regulation's implementation.Full story
Companies creating "digital clones" in the form of lifelike avatars, voice replicas or interactive chatbots face a variety of "novel challenges under laws — both new and old — relating to privacy, rights of publicity and (AI) transparency," Gunderson Dettmer's Data Privacy Group Senior Associate Frida Alim, CIPP/US, writes.