PrivacySignal

Search & browse the archive

The full corpus — beyond today's front page.

Reset

764 results · page 29 of 32

AI Governance
IAPP · · International

Companies pair up to release Automated AI Governance Package

Two companies have jointly launched an automated AI governance package, targeting organizations seeking structured tools to manage compliance and oversight of artificial intelligence systems. The product appears aimed at streamlining governance workflows, though specific technical details and partner identities were not disclosed in the announcement.

Why this matters: Automated governance tools can embed accountability into AI pipelines, but they may also create a false sense of compliance while obscuring how personal data is actually processed — making independent human oversight and transparency to affected individuals equally critical.

Who should care: AI governance · Lawyers · Administrators · General readers · Policy

#ai-governance#ai Read original →
AI Governance
IAPP · · International

The AI governance conversation is happening in the wrong room

A piece published through the IAPP argues that current AI governance discussions are taking place in forums or among stakeholders that exclude key voices, suggesting the existing deliberative spaces are misaligned with the breadth of interests at stake.

Why this matters: When AI governance is shaped without input from civil society, affected communities, or digital rights advocates, resulting frameworks risk prioritizing industry or institutional interests over individual privacy protections and civil liberties safeguards.

Who should care: AI governance · Lawyers · Administrators · General readers · Policy

#ai-governance#ai Read original →
AI Governance
IAPP · · International

Amendments move Colorado AI Act's focus from risk to transparency

Proposed amendments to Colorado's AI Act would shift the law's regulatory emphasis away from risk-based obligations for developers and deployers toward transparency and disclosure requirements, representing a notable recalibration of how the state approaches AI governance.

Why this matters: A transparency-first framework could give individuals clearer visibility into when and how automated systems affect decisions about them — though it may place less enforceable burden on companies to prevent harm before it occurs.

Who should care: AI governance · Lawyers · Administrators · General readers · Policy

#ai-governance#ai Read original →
AI Governance
Krebs on Security · · International

Patch Tuesday, May 2026 Edition

Artificial intelligence platforms may be just as susceptible to social engineering as human beings, but they are proving remarkably good at finding security vulnerabilities in human-made computer code. That reality is on full display this month with some of the more widely-used software makers -- including Apple, Google, Microsoft, Mozilla and Oracle -- fixing near record volumes of security bugs, and/or quickening the tempo of their patch releases.

Who should care: AI governance · Lawyers · Administrators · General readers · Policy

#ai-governance#ai#security Read original →
Healthcare
The Guardian — Privacy · · International

Palantir’s access to identifiable NHS England patient data is ‘dangerous’, MPs say

UK parliamentarians have raised alarms over NHS England granting Palantir and other contractors broad access to identifiable patient records — before pseudonymisation — as part of an AI platform development project. Internal NHS documents reportedly acknowledged the arrangement carries a risk of eroding public trust.

Why this matters: Providing a US defence-linked firm with pre-anonymised health records raises acute concerns about patient consent, data sovereignty, and the scope of permissible use — particularly given Palantir's history of government surveillance contracts. Individuals rarely anticipate their medical data reaching such actors.

Who should care: Healthcare professionals · Privacy officers · Compliance · General readers · AI governance · Policy

#healthcare#ai Read original →
News
FTC Consumer Protection · · US Federal

FTC Chairman Ferguson Advises Companies to Comply with the Take It Down Act

Federal Trade Commission Chairman Andrew N. Ferguson sent letters today to more than a dozen prominent technology companies reminding businesses of their obligation to comply fully with the Take It Down Act (TIDA) no later than May 19. Signed into law last year by President Donald J. Trump with the strong support of First Lady Melania Trump, TIDA requires covered platforms to establish a process allowing victims, including children, to request removal of intimate photos or videos shared without their consent.  The letters were sent to major platforms, including Amazon, Alphabet, Apple, A…

Who should care: General readers · Privacy officers · Policy

Breach
Information Commissioner's Office · · UK

Fine of nearly £1m issued against South Staffordshire Plc and South Staffordshire Water Plc following major cyber attack and data breach

The UK's Information Commissioner's Office has levied a fine of approximately £1 million against South Staffordshire Plc and its water utility subsidiary following a significant cyberattack that resulted in a personal data breach affecting customers.

Why this matters: When critical infrastructure operators fail to secure personal data, ordinary people bear the consequences of exposed information with little recourse. Regulatory penalties signal that custodians of sensitive data face accountability, reinforcing individuals' right to expect adequate protection.

Who should care: Cybersecurity · Privacy officers · Administrators · Lawyers · Compliance

#breach#enforcement Read original →
News
Data Protection Commission · · EU / Ireland

ARC Conference

ARC Conference  Data Protection Commission

Who should care: General readers · Privacy officers · Policy

News
Data Protection Commission · · EU / Ireland

Untitled

Untitled  Data Protection Commission

Who should care: General readers · Privacy officers · Policy

News
EDPS · · EU

Safe and Ethical AI: a big European idea for the world

Safe and Ethical AI: a big European idea for the world miriam Thu, 05/07/2026 - 16:04 Fri, 05/08/2026 - 12:00 On 9 May, Europeans celebrate Europe Day. Europe has continued to shape big ideas that unite people around shared values & fundamental rights. Our commitment to human-centric, transparent technology remains more important than ever. 1 Read the blog post

Who should care: General readers · AI governance · Policy

Enforcement
Privacy Commissioner of Canada · · Canada

Media advisory: Privacy regulators to discuss findings of joint investigation into ChatGPT

Privacy regulators from multiple jurisdictions are set to publicly discuss the findings of a coordinated joint investigation into ChatGPT, signaling a formal multinational regulatory examination of the AI system's data practices.

Why this matters: A unified international regulatory front examining ChatGPT could establish precedents governing how AI systems collect, retain, and process personal data — with direct implications for individuals whose information may have been ingested or generated without clear consent.

Who should care: Lawyers · Privacy officers · Compliance

#enforcement#regulation Read original →
Enforcement
Privacy Commissioner of Canada · · Canada

News release: Joint investigation by Canadian privacy regulators into OpenAI’s ChatGPT leads to better protections for Canadians’ personal information

Canadian federal and provincial privacy regulators concluded a joint investigation into OpenAI's ChatGPT, resulting in commitments from the company to strengthen how it handles Canadians' personal information. The investigation examined whether ChatGPT's data practices complied with Canadian privacy law.

Why this matters: The outcome signals that coordinated regulatory pressure can extract concrete privacy commitments from major AI platforms, offering a potential model for curbing how large language models collect and process individuals' data without meaningful consent.

Who should care: Lawyers · Privacy officers · Compliance

#enforcement#regulation Read original →
Enforcement
FTC Consumer Protection · · US Federal

FTC to Ban Kochava and Subsidiary from Selling Sensitive Location Data to Settle Charges They Sold Location Data Linked to Millions of Mobile Devices

The FTC has reached a settlement barring data broker Kochava and its subsidiary from selling sensitive location data without consumers' explicit consent, following allegations the companies traded precise movement data tied to hundreds of millions of mobile devices, including visits to sensitive locations.

Why this matters: The case highlights how commercial data brokers can quietly monetize individuals' physical movements — including visits to medical or religious sites — without their knowledge, underscoring the gap between lawful data collection and meaningful consent.

Who should care: Lawyers · Privacy officers · Compliance · General readers · Policy

#enforcement#privacy Read original →
← Prev Page 29 of 32 Next →