U.S. President Joe Biden signed into law the Protecting Americans from Foreign Adversary Controlled Applications Act. The Act was bundled within the package of laws on military aid to Ukraine, Taiwan, and Israel, Fentanyl trafficking sanctions, and sanctions against Hamas and Iranian leaders.
As of January 2025, the law bans “foreign adversary-controlled applications”, a term defined in the statute to ...
The Illinois State Senate has approved the first significant amendment to the Biometric Information Privacy Act (BIPA) since its enactment in 2008. The amendment, now making its way through the Illinois House of Representatives, addresses concerns raised by businesses, and follows the Illinois Supreme Court’s call for action to resolve a statutory miscalculation that led to multiple multi-million-dollar settlements involving ...
The California Privacy Protection Agency (CPPA) issued its first-ever enforcement advisory, discussing the principle of data minimization as applied to consumer requests. The advisory explains that data minimization is a “foundational principle in the CCPA”, and that it applies also to the processing of consumers’ CCPA requests.
The advisory begins with an overview of the data minimization principle and the ...
The German Federal Office for Information Security (BSI) recently published a guide titled “Generative AI Models – Opportunities and Risks for Industry and Authorities”. The guide provides an in-depth overview of the opportunities and risks associated with large language models (LLMs), a specialized subset of generative artificial intelligence (AI). LLMs extend beyond simple text processing to fields such as computer ...
The Israeli Privacy Protection Authority (“PPA“) issued guidelines for managing cybersecurity risks arising from open-source software (“OSS“), emphasizing compliance with the Protection of Privacy Law, and the Protection of Privacy Regulations (Data Security). The guidelines explain that using OSS can carry risks, including privacy risks, especially when the code is not properly maintained. OSS may contain ...
On April 12, 2024, the Nebraska legislature passed the Data Privacy Act (NEDPA), scheduled to take effect on January 1, 2025. NEDPA defines consumer rights, sets obligations for data controllers and processors, and assigns enforcement authority to the Nebraska Attorney General.
NEDPA targets businesses operating in Nebraska or serving Nebraskans, which process or sell personal data. NEDPA excludes those classified ...
The European Data Protection Board (EDPB) has issued a comprehensive opinion addressing the challenges of “consent or pay” models used by large online platforms. The opinion explains that valid consent is often unattainable when users are only given a binary choice between consenting to data processing for behavioral advertising or paying a fee to access the service. According to the ...
New user? Click here to register