Search & browse the archive

FTC Consumer Protection · May 20, 2026 · US Federal

FTC Sends Warning Letters to Companies About Compliance with the TAKE IT DOWN Act

The Federal Trade Commission sent warning letters today to a dozen websites advising them of their obligation to comply with the TAKE IT DOWN Act (TIDA), which requires platforms to give people a way to request the removal of intimate photos or videos shared online without their consent, and to remove the intimate photos or videos within 48 hours of a valid request. “Today we’re demonstrating just how serious we are about protecting the public, especially children, from abusive online conduct,” said FTC Chairman Andrew N. Ferguson. “Platforms no longer have any excuses—they must comply with t…

Who should care: Lawyers · Compliance · General readers · Privacy officers · Policy

Information Commissioner's Office · May 20, 2026 · UK

Glasgow-based energy company fined £160,000 for making unsolicited marketing calls

Glasgow-based energy company fined £160,000 for making unsolicited marketing calls  Information Commissioner's Office

Who should care: Lawyers · Privacy officers · Compliance

IAPP · May 20, 2026 · International

How countries are regulating AI companion chatbots to protect children

How countries are regulating AI companion chatbots to protect children  IAPP

Who should care: Lawyers · Compliance · General readers · AI governance · Policy

IAPP · May 20, 2026 · International

AI such as Mythos Preview raises the urgency of cross-border flows of cybersecurity data

AI such as Mythos Preview raises the urgency of cross-border flows of cybersecurity data  IAPP

Who should care: General readers · AI governance · Policy

FTC Consumer Protection · May 19, 2026 · US Federal

FTC Begins Enforcing the TAKE IT DOWN Act

The FTC has begun enforcing the TAKE IT DOWN Act, which compels online platforms to remove nonconsensual intimate imagery upon victim request. The agency launched a dedicated complaint portal where affected individuals can report platforms that fail to establish or honor removal procedures.

Why this matters: The law extends meaningful data-removal rights to victims of image-based abuse, establishing a federal accountability mechanism for platforms. How broadly the FTC interprets compliance requirements will shape whether platforms build robust, privacy-protective takedown systems or treat them as procedural minimums.

Who should care: Lawyers · Privacy officers · Compliance · General readers · Policy

OECD AI Policy Observatory · May 19, 2026 · International

The European Union is deploying AI across strategic sectors

The European Union is integrating AI systems into healthcare, manufacturing, transportation, and agriculture, framing the initiative around the concept of 'trustworthy AI' as a means to strengthen economic competitiveness across member states.

Why this matters: Large-scale AI deployment across health and mobility sectors raises questions about data collection, algorithmic decision-making, and individual oversight — tests of whether the EU's trustworthy AI framework translates into meaningful protections in practice.

Who should care: AI governance · Lawyers · Administrators · General readers · Policy

Information Commissioner's Office · May 19, 2026 · UK

One month to go: what businesses need to know to meet new data law

One month to go: what businesses need to know to meet new data law  Information Commissioner's Office

CNIL · May 19, 2026 · EU / France

Annual report: CNIL's achievements and key actions in 2025

Annual report: CNIL's achievements and key actions in 2025  CNIL

Krebs on Security · May 18, 2026 · International

CISA Admin Leaked AWS GovCloud Keys on Github

Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems. Security experts said the public archive included files detailing how CISA builds, tests and deploys software internally, and that it represents one of the most egregious government data leaks in recent history.

Who should care: Cybersecurity · Privacy officers · Administrators

Information Commissioner's Office · May 18, 2026 · UK

Our advice to government on potential changes to online advertising rules

Our advice to government on potential changes to online advertising rules  Information Commissioner's Office

Who should care: Lawyers · Compliance

IAPP · May 18, 2026 · International

Privacy for everyone: Why accessibility belongs at the center of modern privacy programs

Privacy for everyone: Why accessibility belongs at the center of modern privacy programs  IAPP

IAPP · May 18, 2026 · International

Thought for the week: Is Poland's ABW report a sign of the trajectory of nation-state cyberattacks?

Thought for the week: Is Poland's ABW report a sign of the trajectory of nation-state cyberattacks?  IAPP

IAPP · May 15, 2026 · International

Notes from the IAPP Canada: Special report on CRA breaches raises fresh privacy concerns

Notes from the IAPP Canada: Special report on CRA breaches raises fresh privacy concerns  IAPP

IAPP · May 15, 2026 · International

Why is it still so hard to get corporate buy-in for privacy compliance?

Why is it still so hard to get corporate buy-in for privacy compliance?  IAPP

Who should care: Lawyers · Compliance

IAPP · May 15, 2026 · International

How Canada is approaching the evolving cybersecurity landscape

How Canada is approaching the evolving cybersecurity landscape  IAPP

IAPP · May 15, 2026 · International

Brazil reshapes children's data protection under the 'Digital ECA' framework

Brazil reshapes children's data protection under the 'Digital ECA' framework  IAPP

Who should care: General readers · Privacy officers · Policy

Information Commissioner's Office · May 14, 2026 · UK

Five steps to protect your organisation from AI-powered cyber threats

Five steps to protect your organisation from AI-powered cyber threats  Information Commissioner's Office

Who should care: General readers · AI governance · Policy

IAPP · May 14, 2026 · International

A view from Brussels: To ban or not to ban

A view from Brussels: To ban or not to ban  IAPP

IAPP · May 14, 2026 · International

King's Speech signals diffuse UK digital policy agenda, but no AI bill

King's Speech signals diffuse UK digital policy agenda, but no AI bill  IAPP

Who should care: General readers · AI governance · Policy

IAPP · May 14, 2026 · International

Notes from the Asia-Pacific region: Malaysia tightens data protection expectations with trio of guides

Notes from the Asia-Pacific region: Malaysia tightens data protection expectations with trio of guides  IAPP

Who should care: General readers · Privacy officers · Policy

Privacy Commissioner of Canada · May 14, 2026 · Canada

Letter to the Standing Senate Committee on Rules, Procedures and the Rights of Parliament on its study on the inclusion of provisions relating to e-petitions into the Rules of the Senate

Letter to the Standing Senate Committee on Rules, Procedures and the Rights of Parliament on its study on the inclusion of provisions relating to e-petitions into the Rules of the Senate

Who should care: Lawyers · Compliance

Privacy Commissioner of Canada · May 14, 2026 · Canada

Letter to the Standing Committee on Access to Information, Privacy and Ethics on the Main Estimates for the Office of the Privacy Commissioner of Canada for 2026-2027

Letter to the Standing Committee on Access to Information, Privacy and Ethics on the Main Estimates for the Office of the Privacy Commissioner of Canada for 2026-2027

Privacy Commissioner of Canada · May 14, 2026 · Canada

Letter to the Standing Committee on Procedure and House Affairs on the privacy implications of Bill C-25

Letter to the Standing Committee on Procedure and House Affairs on the privacy implications of Bill C-25

FTC Consumer Protection · May 13, 2026 · US Federal

Shutterstock to Pay $35 Million to Settle FTC Allegations Over Illegal Subscription and Cancellation Practices

Shutterstock Inc. will pay $35 million to settle Federal Trade Commission allegations that the online digital photo and video platform illegally made tens of millions of dollars from a range of unfair and deceptive practices, including charging consumers for products without their informed consent and making it difficult to cancel subscriptions. “Subscription and negative option features can be beneficial for both companies and consumers, making renewal simpler and streamlining payment processes,” said Christopher Mufarrige, Director of the FTC’s Bureau of Consumer Protection. “But these bene…

Who should care: General readers · Privacy officers · Policy