The Irish Data Protection Commission (DPC) has fined social media giant TikTok €345 million ($368 million) for violating the privacy of children between the ages of 13 and 17 while processing their data. In its binding decision, the European Data Protection Board (EDPB) analyzed the design practices implemented by TikTok Read More
The European Commission has proposed a new regulation intended to streamline cooperation efforts between member countries when enforcing the EU’s data privacy laws, known as the General Data Protection Regulation (GDPR). If adopted, the new law would require European privacy regulators, known as data protection authorities (DPAs), to share more Read More
The Federal Communication Commission (FCC) recently announced the launch of a newly created Privacy and Data Protection Task Force, aimed at enhancing data privacy and security practices around consumer communications. This new task force, created by FCC Chairwoman Jessica Rosenworcel and led by FCC Enforcement Bureau Chief Loyaan Egal, is Read More
Artificial intelligence applications like ChatGPT are becoming common tools in the workplace to do everything from generating job descriptions, writing and editing reports, and to managing schedules (See related article, “How Employees Are Using ChatGPT on the Job“). But the apps aren’t perfect. In fact, they can be error prone Read More
Online alcohol marketplace Drizly has been ordered to implement numerous data security measures following a data breach that exposed the personal information of about 2.5 million consumers in 2020, the Federal Trade Commission announced Jan. 10. Additionally, the FTC ordered Drizly CEO James Cory Rellas to “implement an information-security program Read More
Epic Games, creator of the popular video game Fortnite, has been ordered to pay a total of $520 million in two separate record-breaking settlements with the Federal Trade Commission for alleged violations of the Children’s Online Privacy Protection Act (COPPA). As part of a proposed federal court order filed by Read More
Denmark has become the latest European country to find that the use of Google Analytics for web analytics purposes is unlawful, following similar conclusions made by other data protection watchdogs in Austria, France, and Italy. In a Sept. 21 judgment, the Danish Data Protection Authority (Datatilsynet) became the latest data Read More
Morgan Stanley Smith Barney (MSSB), a wholly owned subsidiary of Morgan Stanley, has agreed to pay a $35 million civil penalty to settle charges by the Securities and Exchange Commission for repeatedly failing to safeguard their customers’ personally identifiable information (PII), in which 15 million customers were impacted. According to Read More
Irish regulators have fined social networking platform Instagram 405 million euros (US$404 million) for failing to protect children’s personal data in violation of the EU’s General Data Protection Regulation (GDPR). As the Lead Supervisory Authority for Meta/Instagram, Ireland’s Data Protection Commission (DPC) began an investigation into Instagram in September 2020 Read More
Sephora, a French multinational retail company, must pay $1.2 million in penalties and implement several compliance measures under a proposed settlement with the Office of the California Attorney General (AG) to resolve alleged violations of the California Consumer Privacy Act (CCPA). The California AG’s proposed settlement with Sephora is part Read More
