Privacy Transformation - Issue 255

Curated privacy, security & tech news, insights & resources with a focus on Irish and EU developments.

PRIVACY

Lawmakers to approve updated GDPR rules despite companies' concerns

Lawmakers are set to approve rules under the EU's General Data Protection Regulation designed to ease cross-border cooperation between national data protection authorities. Companies fear that the new rules actually limit their rights, however, claiming that the defendant's involvement in cases is likely to be reduced.

ICO sets out priorities to protect children's privacy online

The UK Information Commissioner’s Office is calling on social media and video-sharing platforms to improve their data protection practices so children are safer when using their services. This comes as the regulator sets out its 2024-2025 priorities for protecting children's personal information online.

SECURITY & TECH

Microsoft enhanced AI protections: Protecting the data of our commercial and public sector customers in the AI era

Microsoft has announced enhanced data privacy and governance controls for users of its AI-backed services, including Azure OpenAI Service and Copilots.

Project 'Ghostbusters': Facebook secretly spied on Snapchat data, docs allege

Facebook spied on some Snapchat users’ traffic data from 2016 through 2019 using a tool installed on their phones, according to newly released court documents from an antitrust lawsuit against the Bay Area tech giant.

Google to delete records from Incognito tracking

Google has agreed to delete billions of records and submit to some restrictions on its power to track users, under the terms of a proposed legal settlement. The deal aims to resolve a class action lawsuit brought in the US in 2020, which had accused the tech giant of invading people's privacy by collecting user data even when they were browsing in "private mode".

DATA BREACH

AT&T data breach: Millions of customers caught up in major dark web leak

Personal data belonging to 73 million current or former AT&T customers has been leaked online. Information including addresses, social security numbers and passcodes was published on the dark web, the US telecoms giant said.

ENFORCEMENT

Portuguese DPA suspends Worldcoin biometric data collection

The Portuguese Supervisory Authority (CNPD) has temporarily suspended the collection of biometric data of the iris, eyes and face carried out by the Worldcoin Foundation, in order to safeguard the fundamental right to the protection of personal data, in particular of minors.

ICO joins global data protection and privacy enforcement programme

The UK Information Commissioner’s Office has signed onto a new international multilateral agreement with the Global Cooperation Arrangement for Privacy Enforcement (Global CAPE) to cooperate in cross-border data protection and privacy enforcement.

European Commission opens non-compliance investigations against Alphabet, Apple and Meta under the Digital Markets Act

The Commission has opened non-compliance investigations under the Digital Markets Act (DMA) into Alphabet's rules on steering in Google Play and self-preferencing on Google Search, Apple's rules on steering in the App Store and the choice screen for Safari and Meta's “pay or consent model”.

CONTRIBUTE
Have an interesting article, book, video, podcast or other resource that you would like to share with your fellow privacy practitioners? Please do drop me a note!