All Data Privacy articles – Page 4
-
PremiumICO proposes $7.8M fine against NHS contractor in warning to IT providers
The U.K. Information Commissioner’s Office proposed a 6.1 million pound (U.S. $7.8 million) fine against Advanced Computer Software Group, an IT contractor for the National Health Service that allegedly failed to secure the data of 83,000 people after a cyberattack.
-
News BriefDOJ lawsuit alleges TikTok ignored order to enhance COPPA compliance
TikTok is in hot water with the Department of Justice and Federal Trade Commission over widespread failures to comply with a 2019 consent order to enhance compliance with children’s privacy laws.
-
PremiumLexisNexis survey: Compliance costs soared for U.K. banks in 2023
Nearly all but a tiny minority of financial institutions saw their costs of financial crime compliance rise in 2023, a survey by LexisNexis and Oxford Economics found.
-
PremiumMany dating apps a matchmaker for cybercriminals, study finds
Location-based dating apps are not doing enough to protect user privacy, with exact location and other personal data being exploited by stalkers and bad actors, a recent analysis found.
-
PremiumDORA set to enhance cyber resilience requirements for EU financial firms
The European Union’s Digital Operational Resilience Act, which is set to take effect next year, will require financial services firms to implement stronger measures to protect not only themselves from disruption caused by cyberattacks but also the sector as a whole.
-
PremiumSFO staffing shortages improve under new leadership
Staffing shortages that have plagued the U.K. Serious Fraud Office are trending in the right direction since its new director took charge, with the anti-bribery agency forging ahead with initiatives to ensure its future sustainability.
-
News BriefMeta reaches $1.4B settlement over Texas biometric data privacy lawsuit
Meta agreed to pay $1.4 billion to the state of Texas to settle allegations regarding the unauthorized capture and use of personal biometric data of state residents.
-
PremiumWhat’s on tap for CPPA from its deputy director of enforcement
Michael Macko, deputy director of enforcement at the California Privacy Protection Agency, described priorities for the agency now and in the near future during a recent board meeting.
-
WebcastCPE Webcast: Proactive AI compliance: 4 essential steps to minimize exposure
As artificial intelligence (AI) continues to advance rapidly and organizations expand their usage to optimize efficiency and productivity, implementing internal AI policies to ensure regulatory compliance and minimize exposure remains a hot topic.
-
News BriefFTC wants answers from Mastercard, JPMorgan, others on use of AI to collect data
Eight large companies, including Mastercard and JPMorgan Chase, have been ordered by the Federal Trade Commission to provide detailed reports about their possibly secret use of artificial intelligence to track customers and use the information to set prices.
-
News BriefLithuanian DPA orders Vinted to pay $2.6M over GDPR violations
The data protection authority of Lithuania levied a fine of 2.4 million euros (U.S. $2.6 million) against Vinted UAB, an online clothing trading and exchange platform, for alleged violations of the European Union’s General Data Protection Regulation.
-
News BriefEuropean Commission informs X it may be in breach of Digital Services Act
The European Commission informed X, formerly Twitter, that it may be the first company found to be in violation of the European Union’s Digital Services Act in areas “linked to dark patterns, advertising transparency, and data access for researchers.”
-
News BriefFCC orders Sorenson unit to pay $34.6M over illegal data retention
Sorenson Communications agreed to pay $34.6 million and implement a comprehensive compliance program to settle allegations levied by the Federal Communications Commission that its subsidiary illegally retained call content of users who relied on captions to make and receive calls.
-
News BriefFTC proposes $5M penalty for NGL Labs, founders over COPPA violations
The Federal Trade Commission ordered anonymous messaging app creator NGL Labs and its two founders to pay $5 million for unfairly marketed to children and falsely claiming artificial intelligence filtered out bullying messages and threats.
-
PremiumHow fintechs can overcome major compliance hurdles in embedded finance
Margaret Holmes Tibbets, chief compliance officer at financial technology company Pipe, explains how firms are facing an existential compliance crisis, and to survive they’ll need to overcome not one but two hurdles.
-
News BriefSpongeBob game developer ordered to pay $500K over CCPA, COPPA violations
Popular children’s mobile game developer Tilting Point Media agreed to pay $500,000 to settle allegations the company illegally collected children’s personal data, a violation under the California Consumer Privacy Act and a federal children’s privacy law.
-
News BriefClearview AI agrees to pay stake in company to settle Illinois privacy lawsuit
Facial recognition company Clearview AI reached a preliminary settlement in a class action lawsuit alleging it violated the Illinois Biometric Privacy Act, with the company agreeing to compensate victims with stake in the company.
-
PremiumCiti report: GenAI revolution will bring increased need for compliance
A new report on the use of artificial intelligence in financial services predicts that the technology will drive profits, disruptions, and change over the next decade.
-
News BriefOCC emphasizes compliance’s role in FI’s operational resiliency
Compliance departments at financial institutions must become more involved in ensuring their firm’s operational resiliency to address emerging risks, the Treasury Department’s Office of the Comptroller of the Currency said in its semi-annual risk perspective.
-
News BriefSEC orders R.R. Donnelley to pay $2.1M over cyber-related control violations
A business communications and marketing services company agreed to pay more than $2 million to settle charges levied by the Securities and Exchange Commission over cybersecurity-related control violations.