EU & UK
- The EC published guidelines containing a “non-exhaustive list of proportionate and appropriate measures” for protecting children online under the Digital Services Act.
- Ireland’s HC granted TikTok’s ability to pursue a legal appeal of the EUR 530 million fine issued by the DPC for allegedly transferring EU users’ personal data to China.
- Germany’s Federal Commissioner for Data Protection and Freedom of Information announced the launch of a consultation on AI models in the context of the EU GDPR.
- The EC sought public input on the PNR Directive, first launched in 2016, to assess whether it is meeting its goals and how it interacts with other EU regulations.
- NOYB filed three EU GDPR complaints against Chinese apps and websites for allegedly not producing data access requests filed by the organisation.
- The Swedish Supervisory Authority (SA) has issued administrative fines against two companies within the SL Group for violating the GDPR.
AMERICAS
- The shareholders who brought a massive USD8 billion privacy lawsuit against members of the former board of directors of Facebook have reached a settlement.
- Bloomberg Law reported that the use of privacy vendors does not guarantee full legal compliance with U.S. state privacy laws, leaving companies open to potential violations and fines.
- A report by EPIC, Colour Of Change, and the Consumer Federation of America highlighted how tech industry lobbying has influenced U.S. state privacy law efforts.
- Data security company Virtu received USD 50 million in funding to further develop embedded cybersecurity controls for data files.
- JPMorgan Chase said that it is planning to charge fintech’s for accessing customer data, citing the costs of data protection.
