Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching the title or clicking on the hyperlinked reference number.
Social Media
Social media platforms are facing intense scrutiny over how they collect, share and monetize user data. As new state and federal laws focus on age verification, parental controls and transparency requirements, social media companies face legal risks around algorithmic targeting, third-party tracking and children's safety. This page follows key legislation, investigations and lawsuits shaping privacy practices for major social platforms.
Consumers filed 214 complaints in the first year since the Oregon Consumer Privacy Act (OCPA) took effect, with the majority concerning online data brokers, according to a report from the state’s DOJ. The right to delete data was consumers' top complaint.
The 10th U.S. Circuit Court of Appeals scheduled oral argument on NetChoice's challenge of a Utah age-verification law for Nov. 20 at 9 a.m. MT.
A California bill to set notification deadlines for data breaches passed the Senate unanimously on Thursday and could be headed to the governor’s desk soon. The Senate passed SB-446 on May 28 and it’s been sailing through the Assembly on consent agendas since then (see 2508200033). Meanwhile, state fiscal hawks advanced many privacy and AI bills, while holding back some others, at committee meetings Friday.
Political parties must be guided by data protection rules during election campaigns, the Norwegian data protection authority said Thursday.
The as-applied challenges and vagueness challenge in NetChoice's amended complaint in a case against a Tennessee age-verification law should be dismissed, argued Attorney General Jonathan Skrmetti Tuesday. In case 3:24-cv-01191, NetChoice argued the statute violates the First Amendment and other privacy measures (see 2501170070), but the U.S. District Court for Middle Tennessee declined to preliminarily enjoin HB-1891 in June (see 2506200017).
An Ohio law requiring websites targeting children younger than 18 to obtain parental consent before engaging in contracts with minors is not a violation of the First Amendment, said a bipartisan coalition of 31 states plus the District of Columbia in a joint amicus brief to the 6th U.S. Circuit Court of Appeals Tuesday. Later that day, South Carolina filed a document joining the coalition in asking the court to reverse a district court's 2024 decision to block the law (see 2402130041).
Organizations providing content accessible to kids “should prepare for greater legal and regulatory scrutiny,” said an IAPP analysis on age assurance published Monday.
Parents who share photos and videos of their children on social media for "sharenting" shouldn't because it creates risks to their kids, French data protection agency CNIL said Monday.
The need to succeed in AI must happen “without sacrificing the well-being of our kids in the process," said a bipartisan coalition of 44 state and territory attorneys general in a Monday letter to several Big Tech organizations. The AGs notified the companies, including Anthropic, Apple, Chai AI, Google, Luka, Meta, Microsoft, Nomi AI, Open AI, Perplexity AI, Replika and Xai, that they “will be held accountable for [their] decisions.”