In preparation for an advertising technology world without cookies, brands are seeking to develop more first-party data that is compliant with privacy standards, Digiday reports. FullThrottle Technologies’ application programming interface Audience Flume “latches onto the browser cache of a client’s website” and builds a “household profile” of users.
The proposed American Data Privacy and Protection Act is at a full stop in the U.S. House due to California’s concerns over current provisions for preemption of state comprehensive privacy laws. As California lawmakers work to preserve the California Consumer Privacy Act and states’ rights to legislate, there are 49 other states that would be affected in some fashion by the ADPPA if it were to eventually pass.
The Irish government announced Ireland's Data Protection Commission will see a 13% budget increase for 2023. The DPC will receive more than 26 million euros in funding, continuing a "trajectory of significantly increased funding" the government committed to in recent years.
The European Commission adopted a proposal for harmonizing rules around consumer redress in the Artificial Intelligence Liability Directive. The proposed rules will allow consumers to bring claims for damages "caused due to wrongful behaviour" with AI technologies.
The U.S. Government Accountability Office published recommendations to improve oversight over telehealth appointments. The recommendations are for the Centers for Medicare & Medicaid Services within the U.S. Department of Health and Human Services. In a study, GAO found CMS lacked “complete data on the use of audio-only technology and telehealth visits" conducted in patients’ homes, while the COVID-19 Medicare waiver was in effect that permitted increased telehealth visits during the pandemic.
State Sen. Rosemary Bayer, D-Mich., and fellow Senate Democrats introduced Senate Bill 1182, the Michigan Personal Data Privacy Act. The bill would cover businesses that hold data on more than 100,000 consumers and on those holding data on more than 25,000 consumers while generating 50% gross revenue from data sales. Notable provisions include consumer opt-outs for data sales and targeted advertising, a data broker registry, a 30-day right to cure, and a private right of action with 30 days of notice.
France’s data protection authority, the Commission nationale de l'informatique et des libertés, created a compliance checklist for controllers operating health data warehouses. The checklist is intended to help data controllers corroborate their compliance against CNIL’s reference system. If an entity does not meet a criteria in the checklist, then their warehouse would not be in compliance.Full Story
Democratic U.S. senators and civil rights lawyers are calling for the creation of a law to restrict law enforcement’s ability to buy cellphone tracking data, The Associated Press reports. Technologies such as “Fog Reveal” from Virginia-based Fog Data Science, which can trace movements of cellular users as far back as several years, were purchased by police departments to trace suspects' whereabouts.
Eleven large financial institutions will pay more than a collective $1.8 billion in penalties to settle regulatory investigations related to employees’ use of messaging applications that violated record-keeping rules, The Wall Street Journal reports. The firms include the brokerage divisions of Bank of America, Barclays and Citigroup. The fines are imposed by the U.S. Securities and Exchange Commission, which asserted it discovered “pervasive off-channel communications” by bank employees over Apple iMessage and WhatsApp.
U.S. President Joe Biden is expected to publish an executive order concerning a new agreement on EU-U.S. data flows as early as Oct. 3, Politico reports. According to individuals involved in negotiations, the order will cover new legal protections over personal data access and use by U.S. national security entities. Principles for necessity and proportionality in relation to government surveillance activities are included in the order.