Comparing the number of data thefts before and after the General Data Protection Regulation was implemented shows that its data breach notification requirements resulted in a decrease of 2.5%-6.1% in identity thefts, French privacy watchdog CNIL said Thursday.
Spotify must pay more than $6 million for processing personal data in violation of the General Data Protection Regulation (GDPR), Sweden's Administrative Court of Appeal in Stockholm said Tuesday.
The emergence of AI and adtech is forcing a rethink of gathering and managing consent for use of personal data, speakers said Tuesday at a #RISK Digital UK/EU webinar.
A Belgian Market Court decision last month has implications for companies that collect consent from data subjects for tracking, cookies and other online advertising tools using Interactive Advertising Bureau (IAB) Europe's transparency and consent framework (TCF), Hogan Lovells privacy attorney Etienne Drouard said in an interview.
Meta can use data from publicly accessible user profiles on Facebook and Instagram for AI training in Germany, the Cologne Higher Regional Court ruled Friday. Meta didn't immediately comment.
French privacy regulator CNIL fined Solocal Marketing Services $1 million (900,000 euros) for commercial data prospecting without securing prospects' consent and for transferring their data to partners without a valid legal basis.
The European Commission Wednesday unveiled its latest proposals that are intended to reduce administrative costs for European business by simplifying a range of rules, including in the General Data Protection Regulation (GDPR). The GDPR change, which differed slightly from what was expected, drew mixed reactions from stakeholders.
The rise of technologies like generative AI (GAI) and the advent of large language models (LLM) have serious privacy implications, including the idea that individuals can control their data, said three students at UCLA School of Law in a blog for TechPolicy.Press. The "right to be forgotten," as the removal of personal data from public access is called, gained legal acknowledgment under the EU's General Data Protection Regulation (GDPR), which allows individuals to view, edit or delete personal data.
Italian privacy regulator Garante fined U.S. consumer AI company Luka $5.6 million (5 million euros) for General Data Protection Regulation breaches and launched a probe into how it processes data during the life cycle of the generative AI systems that underlie its Replika chatbot, it announced Monday.
The EU-U.S. Data Privacy Framework (DPF) appears to be holding despite Trump administration actions in connection with the FTC and Privacy and Civil Liberties Oversight Board (PCLOB), Irish Data Protection Commissioner Dale Sunderland said during a May 14 interview at the IAPP AI Governance Global Europe conference in Dublin.