Legislators can help protect kids on social media, but a cultural shift on the issue of child safety also will require collaboration from Big Tech, Arkansas Governor Sarah Huckabee Sanders (R) said Tuesday.
The head of a tech association blamed age-verification mandates for a Discord data breach Sept. 20 that exposed the personal information and some government ID images of its users.
El Cajon, a city 17 miles east of San Diego, broke the law when it shared license plate data with federal and out-of-state law enforcement agencies, argued California Attorney General Rob Bonta (D) in a lawsuit filed Friday.
The $1.35 million California enforcement action against Tractor Supply Co. this week raised the bar for privacy compliance, emphasizing that privacy laws and rights extend beyond consumers, privacy lawyers and advocates said in interviews with Privacy Daily. The California Privacy Protection Agency (CPPA) found that the country's largest rural lifestyle retailer violated the California Consumer Privacy Act (CCPA) in several instances, including how it handled candidates for employment (see 2509300010).
Privacy is an ever-evolving landscape, meaning that company privacy policies, technologies and teams must be constantly updated, panelists said Wednesday during a webinar hosted by Didomi, a consent-management software vendor. With enforcement actions by regulators increasing and legislators continuing to implement new laws, companies must stay on top of the latest developments, they added.
Ohio senators on Tuesday weighed whether a bill requiring age verification at the app store level, or one that features age verification by app stores and developers, would better protect kids online.
Montana became the third state to regulate neural data as an amendment to the state’s genetic privacy law took effect Wednesday, adding to a trend of states overseeing the neurotechnology space (see 2508180034). On the same day, amendments to Montana’s comprehensive privacy law took effect, expanding its scope and introducing more protections for children.
Companies that collect customer data should strengthen their defenses against phishing, since it remains among the top cyberattack tactics, said panelists during a Practising Law Institute cybersecurity conference Monday.
When carrying out enforcement actions, regulators are looking for companies to be upfront about incidents and willing to work with them to solve issues, said state and federal regulators during a panel at a Practising Law Institute (PLI) cybersecurity conference Monday.
Although every state has a data breach notification law, each one imposes different regulations and reporting requirements, Emory Roane, associate director of policy at Privacy Rights Clearinghouse (PRC), said in a recent interview with Privacy Daily. While some protections exist at the federal level, a comprehensive breach law would help, as would data minimization principles, privacy pros added.