Privacy Transformation - Issue 206
Curated privacy news, insights & resources, with a focus on Irish and EU developments.
PRIVACY
Meta hints at European exit over decision of data watchdog
Facebook parent Meta has hinted at a possible exit from its European business should an upcoming decision by the Data Protection Commission fail to satisfy it. In reporting its results for quarter ending March 31, the tech giant’s chief financial officer Susan Li said the company continues “to monitor ongoing regulatory developments” involving the DPC.
Processing biometric data 'an essential component' of how public services card is created, minister admits
The Department of Social Protection has admitted that the processing of biometric data has been “an essential component” of the framework underpinning the public services card for the past 12 years.
MEPs seal the deal on Artificial Intelligence Act
Following months of intense negotiations, members of the European Parliament have bridged their difference and reached a provisional political deal on the world’s first Artificial Intelligence rulebook.
SECURITY & TECH
ChatGPT gets its own incognito mode to protect user data
OpenAI is also working on a ChatGPT business subscription to protect enterprise data, while US agencies have pledged to protect the public from bias in AI systems.
Unpicking the rules shaping generative AI
Laws like Europe's GDPR are already being enforced on OpenAI's ChatGPT. But plenty more AI governance is coming down the pipe.
TikTok decision harder for Ireland than other countries
Ireland joins a growing list of countries where restrictions have been placed on the use of TikTok on official devices. Similar announcements have been made by the US and UK governments, as well as by the European Commission, European Parliament and European Council.
🔗 RELATED: Twitter, TikTok and Instagram to face much stricter content rules in EU
DATA BREACH
HSE Breached Data Privacy Laws Distributing Digital Covid Cert
The Health Service Executive breached data protection laws nearly 200 times last year as a result of errors distributing digital covid certificates, which provided proof of people’s vaccination status during the pandemic.
🔗 RELATED: Galway hospital leaked video showing serious incident involving patients 'breached laws'
GUIDANCE
EDPB Launches Data Protection Guide for small business
The EDPB has launched a Data Protection Guide to help small business owners on their way to become more data protection compliant. The Guide aims to raise awareness about the GDPR and to provide practical information to SMEs about GDPR compliance in an accessible and easily understandable format. [Access Guide]
RESOURCES
📗 EDPS: Annual Report 2022
The Annual Report 2022 gives an insight into the EDPS’ activities to create a tomorrow that can effectively tackle the challenges of today. [Read Executive Summary]
📕 GUIDE: AI Security Concerns in a Nutshell - Practical AI-Security Guide
This guideline introduces developers to the most relevant attacks on machine learning systems and potential complementary defences. It does not claim to be comprehensive and can only offer a first introduction to the topic.
📙 PAPER: Daniel J. Solove - The Limitations of Privacy Rights
In this Article, I contend that although rights are an important component of privacy regulation, rights are often asked to do far more work than they are capable of doing. Rights can only give individuals a small amount of power. Ultimately, rights are at most capable of being a supporting actor, a small component of a much larger architecture.
📘 PAPER: Security Implications of ChatGPT
This position paper provides analysis across four dimensions: How it can benefit cybersecurity, how it can benefit malicious attackers, how ChatGPT might be attacked directly, and guidelines for responsible usage.
📗 PAPER: Global Data Privacy Laws: EU Leads US and the Rest of the World in Enforcement by Penalties
This article gives a snapshot of the penalties and settlements included in recent data privacy decision across the globe. It considers enforcement instances only for the last two years, from 1 February 2021-31 January 2023 (abbreviated as ‘2021-02’), to better allow comparisons across this study, and with future studies.
🎙 PODCAST: The Ever Changing Privacy Landscape with Robert Bateman
Privacy and data protection writer and expert Robert Bateman, who has published over 1500 articles related to privacy, joins the latest episode of the Partially Redacted podcast to breakdown the evolution of privacy regulations in Europe, the impact that’s had on businesses, and explain the challenges surrounding transatlantic data transfers.
CONTRIBUTE
Have an interesting article, book, video, podcast or other resource that you would like to share with your fellow privacy practitioners? Please do drop me a note!