Weekly Privacy News Update – Episode 50


Google asserts its plans to replace tracking cookies

Google clarified its methods to create new technologies that will replace third-party cookies, aiming to enhance the level of privacy in the field of digital advertising. Google’s President for EMEA, Matt Brittin, answered the inquiries on the direction of the Privacy Sandbox project and the critique from privacy advocates. As stated by Britting, users want a web that’s private and safe; we can see that in our search results. But if you want this whole thing to work, you need advertising that works because a subscription model for the web doesn’t deliver for everyone. He also mentioned that it’s about creating a web that works for everyone and that Google’s efforts aim for privacy-safe, high-performance advertising that works for the user and the advertiser.

Source: TechRadar, HiTech Glitz

$85 million settlement from Google for a location privacy case in Arizona

Attorney General Mark Brnovich declared an $85 million settlement with Google for violating user location privacy. The state’s general fund will receive the bulk of the settlement. The investigation was made in 2018 after consumers complained that Google collected and used user location data from their smartphones even though the tracking setting were disabled. Last May 2020, Brnovich charged Google for tracking user location by misleading users and using coercive design tactics in its software, despite telling the tech giant to stop. The lawsuit implicated Google in using user location data to increase ad revenue, violating user privacy, and lacking a straightforward method to opt out of location tracking.

Source: AZ Central, IAPP

Colorado Privacy Act draft rules disclosed by attorney general

Colorado Attorney General released the proposed draft of Colorado Privacy Act rules. Part of the draft rules intends to clarify the definition of biometric information, privacy notice requirements, disclosure requirements on customer loyalty programs, and responses to data subject requests. Meetings for stakeholders are scheduled on Nov. 10, 15, and 17. A public hearing is set on Feb. 1, 2023.

Source: Husch Blackwell, IAPP

Catalog retailer fined by UK ICO for violating data protection law

Catalog retailer, Easylife faces GPB 1.48 million fine from the UK Information Commissioner’s Office (ICO) for misusing the personal data of almost 150,000 customers for targetted advertisements. Easylife was fined GBP 1.35 million for predicting users’ medical conditions based on their data without consent and was used to target them for ads of health-related products. An additional fine of GBP 130,000 was issued after the ICO found that Easylife made 1.3 million predatory direct marketing calls. The investigation also found that 80 out of the 122 items sold by the retailer were used as trigger products to profile customers.

Source: ICO, IAPP

Masha Komnenic CIPP/E, CIPM, CIPT, FIP
More about the author

Written by Masha Komnenic CIPP/E, CIPM, CIPT, FIP

Masha is an Information Security and Data Privacy Specialist and a Certified Data Protection Officer. She has been a Data Protection Officer for the past six years, helping small and medium-sized enterprises achieve legal compliance. She has also been a privacy compliance mentor to many international business accelerators. She specializes in implementing, monitoring, and auditing business compliance with privacy regulations (HIPAA, PIPEDA, ePrivacy Directive, GDPR, CCPA, POPIA, LGPD). Masha studied Law at Belgrade University, and she passed the Bar examination in 2016. More about the author

Related Articles

Explore more resources