French data protection regulator CNIL's guidelines on AI models "illustrate a more pragmatic approach than other regulatory positions addressing multiple issues raised by AI," Hogan Lovells privacy attorneys argued in a Feb. 18 post. For example, CNIL's position differs from that of Garante, the data protection authority (DPA) in Italy. Meanwhile, DPAs in other EU countries are waiting to see if the European Data Protection Board (EDPB) can craft a consensus, Etienne Drouard, a co-author of the post, said in an interview Thursday.
A bipartisan group of 18 California state legislators told the California Privacy Protection Agency that the organization lacks authority to regulate AI and should scale back proposed automated decision-making technology (ADMT) rules. The legislators wrote to the CPPA board Wednesday, which was the CPPA’s deadline for written comments on draft rules for ADMT and other issues. A coalition of business groups and trade associations condemned the draft rules in a separate letter that day.
Policy debates about age verification methods and privacy should be informed by recent developments in technology, not the assumption that privacy and security are always at odds, Luke Hogg, director of technology policy, and Evan Swarztrauber, senior fellow, Foundation for American Innovation, said in a research paper posted Tuesday.
Minimizing the amount of data collected and stored can diminish the risk of data breach litigation and reduce storage costs, a panel of privacy experts said during an IAPP webinar Wednesday.
The U.K. Information Commissioner's Office (ICO) published its Tech Horizons 2025 report, identifying privacy and data protection implications of four emerging technologies: (1) connected transport, (2) quantum sensing and imaging, (3) digital diagnostics, therapeutics and healthcare infrastructure (such as AI-assisted diagnosis) and (4) synthetic media (partly or wholly generated using AI/machine learning) and its identification and detection.
The European Data Protection Board's (EDPB's) Dec. 18 opinion on processing personal data for AI models has "sparked intense debate" because "the more you reflect on it, the more it resembles a Rorschach test -- everyone seems to see what they want to see," civil and human rights group European Digital Rights (EDRi) posted Wednesday.
South Korea’s privacy regulator temporarily suspended DeepSeek on Saturday, the Personal Information Protection Commission (PIPC) said Monday.
Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching on the title or by clicking on the hyperlinked reference number.
The Electronic Frontier Foundation expects an "onslaught" of privacy issues in Congress this year, said Maddie Daly, EFF assistant director-federal affairs, in an interview with Privacy Daily. Some of EFF's top priorities, including a national privacy bill, may be "idealistic," but it's still important to push for them, Daly said.
An AI transparency bill introduced in the Maryland General Assembly is overly broad and anti-competitive, tech industry representatives told state lawmakers Tuesday.