PrivacySignal
← Front page

Search & browse the archive

The full corpus — beyond today's front page.

Reset

411 results · page 12 of 18

Breach
FTC Consumer Protection · · US Federal

FTC Gives Final Approval to Order Against Illuminate Settling Allegations It Failed to Secure Students’ Personal Data

The FTC has finalized a settlement with Illuminate Education over a data breach that exposed millions of students' personal information. The order mandates a formal security program, restrictions on how much student data the company may collect and retain, and deletion of data deemed unnecessary.

Why this matters: Students have little say in whether their schools share their data with third-party vendors, making robust regulatory enforcement a primary safeguard. The order's data minimization and deletion requirements acknowledge that limiting collection in the first place reduces exposure when security measures inevitably fall short.

Who should care: Cybersecurity · Privacy officers · Administrators · Lawyers · Compliance

#breach#enforcement Read original →
AI Governance
I Information Technology and Innovation Foundation (ITIF) · · International

The Great American AI Act Seeks Good Governance, but Must Get the Details Right, Says Center for Data Innovation

The Great American AI Act Seeks Good Governance, but Must Get the Details Right, Says Center for Data Innovation  Information Technology and Innovation Foundation (ITIF)

Who should care: AI governance · Lawyers · Administrators · General readers · Policy

#ai-governance#ai Read original →
AI Governance
H Hinshaw & Culbertson LLP · · International

AI Governance Expectations on the Rise for Insurers Amid New Regulatory Activity

Regulatory pressure around AI governance in the insurance sector is intensifying, with new activity signaling that insurers face growing expectations to demonstrate responsible AI use, according to analysis from law firm Hinshaw & Culbertson.

Why this matters: Insurance AI systems routinely process sensitive health, financial, and behavioral data to make consequential decisions about coverage and risk — meaning stronger governance frameworks could offer individuals meaningful protections against opaque, automated determinations affecting their lives.

Who should care: AI governance · Lawyers · Administrators · Compliance · General readers · Policy

#ai-governance#regulation#ai Read original →
News
The Guardian — Tech · · International

I asked AI for help with DIY. It told me to build a subfloor on rotting stumps, but also taught me valuable lessons | Myke Bartlett

Nothing does more for your ego than realising you can make a better decision than a bot with all of human knowledge at its digital fingertips I am not, by nature, an early adopter. There comes a point in our lives where change becomes more irritating than exciting and, I suspect, I reached it sooner than most. But when a workplace recently tasked me with exploring practical applications for AI, I spotted an opportunity to cast off my luddite inclinations. It turned out AI was very good at mimicking most of the things I could already do. Irrespective of quality, it could churn out articles, re…

Who should care: General readers · AI governance · Policy

#ai Read original →
Enforcement
EDPB · · EU

Italian SA fines a company for post-sick leave questionnaires

Background information Date of final decision: 10 July 2025 National case Controller: Magna PT S.p.A.Legal Reference(s): Article 5 (Principles relating to processing of personal data), Article 6 (Lawfulness of processing),  Article 9 (Processing of special categories of personal data),  Article 13 (Information to be provided where personal data are collected from the data subject) Decision: Administrative fine, Definitive ban on data processing Key words: Administrative fine, Principles relating to processing of personal data, Transparency,Retention time, Lawfulness of processing, E…

Who should care: Lawyers · Privacy officers · Compliance

#enforcement Read original →
Breach
EDPB · · EU

The Italian SA fined Poste Vita for data breach

Italy's data protection authority issued an administrative fine against insurance firm Poste Vita S.p.A. following a customer complaint alleging unauthorized disclosure of personal data. The regulator found violations of GDPR principles governing data processing and breach-notification obligations.

Why this matters: The case underscores that insurers hold sensitive personal and financial data, and failures to secure or promptly report breaches leave individuals exposed without timely recourse — a reminder that notification rules exist to protect people, not just satisfy regulators.

Who should care: Cybersecurity · Privacy officers · Administrators · Lawyers · Compliance

#breach#enforcement Read original →
Enforcement
EDPB · · EU

The Italian SA imposed a 40 000 EUR fine on a company for violating the confidentiality of a employee's email account after the end of his employment

Background information Date of final decision: 18 December 2025 National case Controller: LTL S.p.A.Legal Reference(s): Article 5 (Principles relating to processing of personal data), Article 12 (Transparent information, communication and modalities for the exercise of the rights of the data subject), Article 15 (Right to access by the data subject) Decision:  Administrative fine,  Compliance order,  Erasure order or Add here your free text for the decision Key words: Administrative fine, Principles relating to processing of personal data, Transparency,Right of access, &nb…

Who should care: Lawyers · Privacy officers · Compliance

#enforcement#regulation Read original →
Enforcement
F FOX 10 Phoenix · · International

Amazon sued over Ring facial recognition technology

Amazon is facing a lawsuit related to the use of facial recognition technology in its Ring devices, raising legal questions about how the company collects and processes biometric data through its consumer surveillance products.

Why this matters: Facial recognition embedded in widely deployed home security cameras represents a significant expansion of biometric surveillance into residential spaces, where individuals — including neighbors and passersby — have no notice or opportunity to consent to identification.

Who should care: Lawyers · Privacy officers · Compliance · Cybersecurity · General readers · Policy

#enforcement#surveillance#privacy Read original →
Enforcement
Y Yahoo · · International

Amazon sued over Ring facial recognition technology

Amazon is facing a lawsuit related to the use of facial recognition technology in its Ring product line. The legal action raises questions about how biometric data captured by Ring devices is collected, processed, and retained.

Why this matters: Doorbell cameras already extend surveillance into public and semi-public spaces; adding facial recognition compounds that reach, potentially enabling persistent, warrantless identification of individuals without their knowledge or consent.

Who should care: Lawyers · Privacy officers · Compliance · Cybersecurity · General readers · Policy

#enforcement#surveillance#privacy Read original →
AI Governance
I Information Technology Industry Council (ITI) · · International

ITI Reacts to the Great American AI Act

ITI Reacts to the Great American AI Act  Information Technology Industry Council (ITI)

Who should care: AI governance · Lawyers · Administrators · General readers · Policy

#ai-governance#ai Read original →
← Prev Page 12 of 18 Next →