Oregon and Delaware are the latest to pass comprehensive privacy bills. Both states await the Governor's signature to sign the bill into law.
A new EU-US Data Privacy Framework has been adopted by the European Commission saying it allows for safe data transfer between the EU and US.
The FTC have said Ring should pay $5.8 million and impose new security measures following a complaint regarding practices with user videos.
The Malta DPA had told an IT Company that they cannot refuse a consumer's request for access due to police investigation.
Ireland's DPC have decided to find Meta €1.2 billion and have ordered them to stop processing the data of EU/EEA users
Indiana become the seventh state in the United States to adopt a comprehensive privacy law, Indiana Consumer Data Protection Act
The UK's ICO has fined TikTok £12.7 million for illegally processing the data of up to 1.4 million UK children under the age of 13.
Iowa is set to become the sixth US state to pass a privacy law. It awaits the Governor's signature but if passed it will take effect in 2025
Attorney General of Australia has said a European-style "right to be forgotten" privacy law needs to be considered.
CHIME have urged the FTC to do more within their existing authority under the Health Breach Notification Rule.
A healthcare provider has decided to settle a lawsuit about a data breach that lasted 18 months and impacted over 500,000 patients.
An open letter has been sent to Zoom by 28 organizations raising their concerns about Zoom's new exploration of emotion AI.
Chile is making amendments which will change the way data and privacy needs to be handled by all data controllers.
A case against a magazine publisher alleging violation of privacy rights will be moving forward after a motion to dismiss was rejected
Protecting Persona Privacy rights – Federal Bill Helps Individuals Delete PI Across All Data Brokers
Proposed DELETE Act will make it simpler to request deletion of their information across all data brokers
In a sign of what is to come in Brazil, this food delivery company did not value its…
A NY District Court looked at a motion to dismiss a proposed class action case brought against a company by former employees.
A Brazilian website was found to be in violation of LGPD due to selling personal data without consent of the data subjects.
It's reported nearly one third of employees admitted taking data with them when they left their job.
A construction company's employees stored customer personal information in their work email accounts for as long as 20 years
A Bill has been introduced to tackle the telecom industry issue of failing code of practice and do-not-call list.
AEPD found CaixaBank did not obtain consent before using a previous customer's personal data for marketing purposes
Employees filed a class action alleging the company collected their fingerprint data, but failed to provide a retention…