EU & UK
- EDPS published an opinion on the draft Europol Management Board Decision regarding retention periods for administrative personal data.
- ESAs published an opinion following the Commission’s rejection of DORA implementing technical standards.
- The European Data Protection Board (EDPB) adopted Guidelines 2/2023 on the Technical Scope of Art. 5(3) of the ePrivacy Directive following a public consultation.
- North Rhine-Westphalia’s LDI NRW started an investigation into real estate agency for using drones without consent
- ICO fined two companies a total of EUR 150k after bombarding people with spam texts offering financial, and debt services.
AMERICAS
- District Court rejected the dismissal of a lawsuit against Meta for violating COPPA and other harmful practices against children.
- Federal agencies including the DoJ, Department of State, EEOC, and DoI have published compliance plans detailing their AI governance procedures.
- New York’s NYDFS released guidance on cybersecurity and privacy risks from AI.
ASIA PACIFIC & INDIA
- Securities and Exchange Board of India proposed a new data-sharing policy for intermediaries, MIIs, to facilitate ease-of-doing business and data privacy.
- Singapore’s CSA published an updated version of data privacy standards for mobile apps called the ‘Safe App Standard 2.0’.
- ACMA fined Commonwealth Bank of Australia AUD 7.5M for sending unsolicited direct marketing emails.
