Andreea Lisievici

OECD Explores AI, Data Governance, and Privacy Synergies

OECD Explores AI, Data Governance, and Privacy Synergies

AI, OECD |

The OECD’s report “AI, Data Governance, and Privacy: Synergies and Areas of International Co-operation,” published on 25 June 2024, examines the critical intersection of AI and privacy. Emphasizing collaboration between AI and privacy policy communities, it addresses the challenges posed by generative AI. The report covers key developments in Privacy Enhancing Technologies (PETs) and explores the complexities of applying traditional legal frameworks like “legitimate interests” to AI practices. It calls for harmonizing OECD Privacy Guidelines with AI Principles to enhance regulatory compliance and foster international cooperation.

OECD Explores AI, Data Governance, and Privacy Synergies Read More »

Arkansas AG Sues Temu for Data Theft and Privacy Violations

Arkansas AG Sues Temu for Data Theft and Privacy Violations

apps, cybersecurity, Enforcement, United States |

Arkansas Attorney General Tim Griffin sued Chinese e-commerce company Temu for violating the Arkansas Deceptive Trade Practices Act and the Arkansas Personal Information Protection Act. Griffin described Temu as a data-theft business disguised as an online marketplace, alleging it illegally accessed users’ personal information and monetized the data without authorization. The lawsuit targets Temu’s parent companies, PDD Holdings Inc. and WhaleCo Inc., seeking to halt their deceptive practices, impose civil penalties, and provide monetary and equitable relief to affected Arkansas residents.

Arkansas AG Sues Temu for Data Theft and Privacy Violations Read More »

Sweden's PTS Launches E-Service for Cyber Security Act Compliance

Sweden’s Post and Telecom Authority Launches E-Service for Cyber Security Act Compliance

cybersecurity, EU law, Sweden |

On 24 June 2024, the Swedish Post and Telecom Authority (PTS) introduced an e-service, ‘Are we covered by the CSL?’, to help companies determine if they fall under the new Cyber Security Act, effective 1 January 2025. The Act, which implements the NIS 2 Directive, mandates companies in digital infrastructure, ICT services management, space, postal and courier services, and digital supply to register with PTS. This tool is advisory and assists in evaluating compliance, though final responsibility lies with the companies.

Sweden’s Post and Telecom Authority Launches E-Service for Cyber Security Act Compliance Read More »

The Nordic Data Protection Authorities, led by Denmark's Datatilsynet, released guidelines to protect children's data in online gaming. This document emphasizes four key GDPR principles: fairness, transparency, data minimization, and accountability. It aims to guide game developers in ensuring responsible data practices, highlighting the special protections required for children's personal data. These guidelines were formulated in response to the growing digital gaming industry and the need for enhanced privacy measures for young players.

Nordic DPAs Publish Guidance to Strengthen Children’s Data Protection in Online Gaming

children, DPA guidance, EU law, GDPR, Guideline |

The Nordic Data Protection Authorities, led by Denmark’s Datatilsynet, released guidelines to protect children’s data in online gaming. This document emphasizes four key GDPR principles: fairness, transparency, data minimization, and accountability. It aims to guide game developers in ensuring responsible data practices, highlighting the special protections required for children’s personal data. These guidelines were formulated in response to the growing digital gaming industry and the need for enhanced privacy measures for young players.

Nordic DPAs Publish Guidance to Strengthen Children’s Data Protection in Online Gaming Read More »

Scroll to Top