The U.S. Court of Appeals for the D.C. Circuit upheld the FCC’s $80 million data breach forfeiture in a unanimous opinion handed down Friday (see 2508150014). T-Mobile was also fined $12.2 million for violations by Sprint, which it later acquired. Judges appeared skeptical of T-Mobile's arguments when the case was heard in March (see 2503240048). T-Mobile is reviewing the decision, a spokesperson said Friday.

California should lead the way in banning data-driven pricing, Assemblymember Chris Ward (D) told Privacy Daily on Thursday.

It’s crunch time for the California legislature, with many privacy and AI bills nearing the finish line as lawmakers return from summer recess Monday. A few of the most potentially impactful measures for businesses cover universal opt-out preference signals, location privacy, automated decisions and so-called surveillance pricing, said privacy lawyers and consumer advocates in interviews with Privacy Daily this week.

Legislation significantly revamping Israel's data protection law took effect Thursday, but the country's privacy watchdog said it will delay enforcement of one of its provisions until October.

Industry will likely turn to the FCC to address a 6th U.S. Circuit Appeals Court decision on Wednesday upholding the agency’s 2024 data breach notification rules. When the rules were approved, now Chairman Brendan Carr and former Republican Commissioner Nathan Simington dissented.

A bipartisan coalition of 37 state attorneys general urged Instagram to make changes to its new location-sharing feature, citing privacy concerns, in a letter Wednesday.

Companies should master the fundamentals of privacy, which will form a solid foundation when handling new privacy regulations, enforcement actions and emerging technologies like AI, said Sourcepoint’s Chief Privacy Officer Julie Rubash and Brian Kane, the chief operating officer of the privacy software company that was recently acquired by Didomi (see 2507080040).

While using data can help build meaningful connections with customers, businesses need to do so effectively and transparently, executives said Tuesday at the Association of National Advertisers' Masters of Data Conference.

Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching the title or clicking on the hyperlinked reference number.

People are increasingly using general-purpose AI chatbots like ChatGPT for emotional and mental health support, but many don’t realize that regulations like the Health Insurance Portability and Accountability Act (HIPAA) fail to cover these sensitive conversations, a Duke University paper published last month found. Industry self-regulation seems unlikely to solve the issue, which may disproportionately affect vulnerable populations, said Pardis Emami-Naeini, a computer science professor at Duke and one of the report’s authors.