Weekly Privacy News Update – Episode 32


Lobbyists from big tech companies roll out in states with consumer privacy legislation

Tech industry groups stationed their lobbyist in states undertaking consumer privacy legislation. The action from big tech companies is due to their intention to influence the final bill from these states. During the passage of the Utah Consumer Privacy Act, 23 active lobbyists, most of them prominent in shaping the legislation in Utah. There are 445 lobbyists registered in 31 states that are considering privacy legislation.

Source: IAPP, The Markup

The latest from Google’s Privacy Sandbox

Ahead of its beta release, Google announces the newest updates of its Privacy Sandbox for Android. Part of this is “Topics,” available as a developer trial. Also included are concepts such as First Locally-Executed Decision over Groups Experiment and Attribution Reporting, targetted for May or June. According to Google, the beta release will have key components of the Privacy Sandbox that will be released as mainline modules to Android devices.

Source: IAPP, Android

FTC fines Twitter $150M for deceptive data collection

The US Federal Trade Commission fined Twitter $150 million for using account security data for targeted advertising, in violation of a 2011 order. The FTC said Twitter asked for user phone numbers and email addresses to protect accounts, then allowed advertisers to use the data, affecting 140 million users. In addition to the fine, Twitter is banned from profiting from deceptively collected data, must notify users the data was misused, and implement and maintain a privacy and information security program.

Source: IAPP, FTC

Press group penalized by Belgian DPA

The Roularta press group, which managed the cookies for two websites, faces a EUR 50,000 fine from Autorité de protection des données, the Belgian Data Protection Authority (DPA). The fine was issued due to the company not meeting the conditions for collecting user consent for the placement of cookies under the EU General Data Protection Regulation (GDPR).

Source:  IAPP, Autorité de protection des données

Masha Komnenic CIPP/E, CIPM, CIPT, FIP
More about the author

Written by Masha Komnenic CIPP/E, CIPM, CIPT, FIP

Masha is an Information Security and Data Privacy Specialist and a Certified Data Protection Officer. She has been a Data Protection Officer for the past six years, helping small and medium-sized enterprises achieve legal compliance. She has also been a privacy compliance mentor to many international business accelerators. She specializes in implementing, monitoring, and auditing business compliance with privacy regulations (HIPAA, PIPEDA, ePrivacy Directive, GDPR, CCPA, POPIA, LGPD). Masha studied Law at Belgrade University, and she passed the Bar examination in 2016. More about the author

Related Articles

Explore more resources