IAPP IAPP News – Page 26 – CyberSecurity Confabulation

EDPB adopts statement on age assurance, launches AI enforcement task force

Posted 4 weeks ago by IAPP IAPP News

The European Data Protection Board adopted a statement on age verification and created a task force for AI enforcement at its latest plenary session. The statement on age assurance features 10 EDPB principles for legal processing of personal data to determine the age or age range of an individual. The EDPB AI taskforce will comprise the board's ChatGPT taskforce with a broadened scope.
Full story

Global DPAs reaffirm commitment to ‘privacy-protective AI’

Posted 4 weeks ago by IAPP IAPP News

A group of global data protection authorities took steps to restate their commitments to maintaining "privacy-protective AI" on the sidelines of France's AI Action Summit. DPAs from Australia, France, Ireland, South Korea and the U.K. joined on a statement confirming a common approach to AI risk mitigation. The group highlighted the need to ensure privacy-by-design principles and strong data governance frameworks are each introduced from the onset of AI development.
Full story

OPC opens formal PIPEDA probe over PowerSchool breach

Posted 4 weeks ago by IAPP IAPP News

Privacy Commissioner of Canada Philippe Dufresne provided an update on the data breach of education technology software provider PowerSchool. Dufresne said his office "remains actively engaged in this matter," while confirming the OPC received a breach report from PowerSchool and a formal complaint. Additionally, Dufresne said the OPC opened an investigation into the breach under the Personal Information Protection and Electronic Documents Act.
Full story

European Commission launches online advertising codes of conduct workshops

Posted 4 weeks ago by IAPP IAPP News

The European Commission will run a series of Digital Services Act-mandated workshops to explore with stakeholders the potential benefits and the impacts of potentially instituting voluntary codes of conduct for online advertising. The discussions within the workshops will focus on data transparency, ad placement, business users and the malicious use of advertising systems.
Full story

First litigation filed under Washington state’s My Health My Data Act

Posted 4 weeks ago by IAPP IAPP News

A federal lawsuit alleged Amazon violated Washington state's My Health My Data Act and U.S. wiretapping laws through the collection of user data by licensing its software development kits to a "variety of apps," Bloomberg Law reports. The data collected by Amazon allegedly included "biometric data and precise location information that could reasonably indicate a consumer's attempt to acquire or receive health services or supplies," according to the lawsuit, which is the first MHMDA consumer complaint. Editor's note: A recent contributed analysis for the IAPP looks at the state of US reproductive privacy law in 2025.Â
Full story

Deregulation, competition take center stage at AI Action Summit

Posted 4 weeks ago by IAPP IAPP News

The AI Action Summit is underway in Paris, France, bringing together more than 100 nations to discuss potential global alignment on AI development and use. Though the summit was expected to take a pro-innovation tune, some world leaders in attendance went as far as proposing softer rules and deregulation as the key to unlocking improved growth and competition across the AI landscape. IAPP News Editor Joe Duball rounds up highlights from the summit.
Full story

EDPS appointment likely months away

Posted 4 weeks ago by IAPP IAPP News

The European Data Protection Supervisor appointment will not be made until March at the earliest, due to disagreements between the European Parliament and the Council of the European Union, Euronews reports. Parliament and the council have not reached a consensus on tapping European Commission Head of International Data Flows and Protection Unit Bruno Gencarelli or reappointing former EDPS Wojciech WiewiÃ³rowski. Editor's note: IAPP Staff Writer Lexie White reported on the candidates in the running to be the next EDPS.
Full story

OECD report underscores need for free flow of data with trust

Posted 4 weeks ago by IAPP IAPP News

The Organization for Economic Co-operation and Development published a report examining the stakes and costs associated with global initiatives to regulate data flows. The report "aims to identify the potential economic implications and opportunity costs associated with different data flow and data localisation regulations," according to its executive summary. The report indicated the pursuit of "data autarky" policies would decrease global gross domestic product 4.5% while exports would reduce by 8.5%.
Full story

ANPD dismisses appeal by Worldcoin to continue payments for iris scans

Posted 4 weeks ago by IAPP IAPP News

The Board of Directors of Brazil's data protection authority, the Autoridade Nacional de ProteÃ§Ã£o de Dados, dismissed the appeal brought by Worldcoin parent company Tools for Humanity over the suspension of the company's payments for citizens' iris scans. Meanwhile, the ANPD completed an investigation of the data processing activities of pharmacy chains and their rewards program providers.
Full story

How employees can protect themselves against workplace surveillance

Posted 4 weeks ago by IAPP IAPP News

With a variety of surveillance tools used by companies, concerns around employee privacy implications are growing, The Washington Post reports. Electronic Frontier Foundation Associate Director of Legislative Activism Hayley Tsukayama said, with a lack of transparency surrounding the use of workplace surveillance, employees should work to protect their privacy by identifying potential surveillance tools and limit the amount of personal information shared with workplace devices.
Full story