Welcome to the privacy news recap for week 13 of 2024!
In this edition:
✳ French CNIL Issues Draft Recommendation on Multi-Factor Authentication,
✳ UK DSIT issues Guide on Responsible AI in Recruitment,
✳ US Treasury Department Issues AI Cybersecurity Framework for Financial Services,
✳ Italian Garante Issues Guidelines for Interaction Platforms between Medical Professionals and Patients,
and more!
The Privacy Explorer – Week 13 Read More »
🚀 CNIL’s 2024 update to the Guide on Security of Personal Data is out and here are some key points:
🎓 Aimed at DPOs, CISOs, computer scientists, and privacy lawyers, the guide provides actionable advice for implementing effective security measures in compliance with GDPR Article 32.
🛠️ It offers a structured approach across five key areas: users, IT and equipment, data control, incident preparedness, and and specialized topics, simplifying navigation and understanding of complex security requirements.
🔄 New factsheets on cloud computing, mobile apps, AI, APIs, and data management have been added, reflecting the latest advancements in technology and data security challenges, aiming to provide a comprehensive resource for implementing effective data security measures.
💡Deeper dive in the article! 🔐
CNIL Updates Its Practice Guide for the Security of Personal Data Read More »
Welcome to the privacy news recap for week 12 of 2024!
In this edition:
✳ Google Fined €250M for Copyright Breaches and AI Misuse,
✳ New Era for Chinese Cross-Border Data Flows,
✳ You shouldn’t collect date of birth during checkout in your online store,
✳ You also shouldn’t require the creation of an account for purchasing,
✳ Italian telemarketing guidance,
✳Even public authorities get GDPR compliance wrong and are severely sanctioned (Norway)
✳First privacy lawsuit against a car manufacturer for unlawful data sharing
…and that’s barely scratching the surface!
The Privacy Explorer – Week 12 Read More »
I recently wrote about the Black Mirror episode “Joan is Awful“📺, where the main character finds herself the protagonist of a broadcasted TV series🎥, for which she had allegedly given consent in the lengthy terms of service she signed. Perhaps the best articulation of why the prevalent approach of focusing on consent is problematic,
Can people really be in control of their data, and can consent ensure that? Read More »