A big FTC settlement, student privacy, state and federal privacy legislation, security and privacy issues on Mastodon … and more! \u00a0 <\/p>\n
the Premerger Notification Office Staff on Federal Trade Commission (ftc.gov)<\/p>\n
Epic will pay a $275 million penalty for violating children\u2019s privacy law, change default privacy settings, and pay $245 million in refunds for tricking users into making unwanted charges. \u00a0Of course it’s still just a “cost of doing business”, but $500 million. here, $500 million there, and pretty soon you’re talking some real money!<\/p>\n
ALSO:<\/p>\n
David A. Zetoony on The National Law Review (natlawreview.com)<\/p>\n
In the latest in a series based on Greenberg Traurig LLP’s review of the publicly available privacy notices and practices of 555 companies, Zetoony looks at the dreaded cookie banners. \u00a0From a privacy perspective, the best option is “opt in”: you don’t get cookies unless you explicitly request them. \u00a0By contrast, an “opt out” approach (cookies unless you say know) means that companies can exploit your data unless you say otherwise. \u00a0Even worse is what Zetoony describes as “deemed consent” and “notice only”: a \u00a0notice telling you that they’re using cookies and there’s nothing you can do about it; or no banner at all, so you don’t even know what they’re using cookies for. \u00a0<\/p>\n
This analysis shows that 28.5% of the sites they looked at are opt in … kudos to them for doing the right thing, and brickbats to everybody else. \u00a0And kudos to Zetoony and Greenberg Traurig LLP, this kind of data <\/p>\n
Tonya Riley on CyberScoop (cyberscoop.com)<\/p>\n
96% of the apps used in U.S. K-12 schools share children\u2019s personal information with third parties \u2014 \u00a0including advertisers \u2014 often without the knowledge or consent of users or schools, according to a study by Internet Safety Labs published Tuesday<\/a>.<\/p>\n Researchers looked at 13 schools in every state, leading to a total of 663 schools representing nearly half a million students. They found that most schools had more than 150 approved technologies for classrooms, a dizzying number for parents and school administrators to monitor. One school had as many as 1,411.<\/p>\n The report follows previous research from the group, formerly known as the Me2B Alliance, finding hundreds of advertisers collected valuable student data<\/a> from a website specializing in school sports data.<\/p><\/blockquote>\n By: JuYeon Kim on KSHB 41 Kansas City News (kshb.com)<\/p>\n Kansas City, Kansas, Public Schools is considering cameras in classrooms, but some community members are concerned.<\/p>\n Jason Kelley and Aaron Mackey on Electronic Frontier Foundation (eff.org)<\/p>\n Everybody agrees that doing something about the abuses of kids’ privacy is critical … but even though the controversial<\/a> and unconstitutional \u00a0Kids Online Safety Act (KOSA<\/a>) has some privacy-related provisions, it’s still a bad bill. \u00a0The sponsors have made some changes in response to the letter that more than 90 human rights and LGBTQ Groups<\/a> sent opposing KOSA last mongth, but as Kelley and Mackey discuss they don’t address the underlying problems. <\/p>\n Last week Emily Brinbaum of Bloomberg reported that the White House is making calls to legislators pressuring them to attach this anti-LGBTQ bill to the must-pass “omnibus” spending bill<\/a>, but House Democrat leadership is pushing back. \u00a0As I was writing this newsletter, Ashley Gold of Axios reported that she’s heard that KOSA isn’t in the omnibus. \u00a0If so that’s good news. \u00a0Keep your fingers crossed!<\/p>\n Jon Pincus, the Nexus of Privacy (thenexusofprivacy.net)<\/p>\n The American Data Privacy and Protection Act (ADPPA) consumer privacy bill also seems unlikely to be attached to the omnibus at this point (although it ain’t over til its over) but with its bipartisan sponsorship it’s likely to be back on the table next year. \u00a0Recent events at Twitter provide some clear examples of what\u2019s at stake with real-world privacy-abuses to test how effective ADPPA is going to be in practice.<\/p>\n Lauren Feiner on CNBC (cnbc.com)<\/p>\n The group that sued Texas and Florida over social media laws that seek to restrict the tech industry\u2019s liability shield for content is going after California.<\/p>\n Hayley Tsukayama on Electronic Frontier Foundation (eff.org)<\/p>\n As California\u2019s new two-year session kicks off, EFF looks back at the past session which featured several victories for EFF and its allies advocating for digital rights victories. California is often seen as a leader in recognizing the importance of privacy, innovation, and free expression. \u00a0Similar bills are being considered this y year in Washington, and no doubht other states, so hopefully we’ll be able to build on California’s leadership. <\/p>\n Theodore Augustinos on JD Supra (jdsupra.com)<\/p>\n A look at new consumer privacy laws coming into effect in California, Colorado, Connecticut, Utah, and Virginia. \u00a0We’ve included similar analyses in past issues of the newsletter, but it’s interesting to see the different perspectives. \u00a0This one for example has a useful chart comparing the different laws<\/a>, which highlights both similarites and some important differences.<\/p>\n Tonya Riley, Cyberscoop (cyberscoop.com)<\/p>\n An excellent high-level look at the security and privacy risks of Mastodon and other Twitter alternatives. \u00a0A lot of the articles I’ve seen stop with the basics: Mastodon, like Twitter and Facebook, doesn’t encrypt private messages, so admins can read them. \u00a0But that’s just the tip of the iceberg. \u00a0For example:<\/p>\n As the number of Mastodon grow, so too will data requests from law enforcement. In recent years, law enforcement has increasingly leaned on tech companies for data that can be used to prosecute crimes \u2014 including criminalized abortion<\/a>. In just the first six months of 2022, Twitter received nearly 50,000 legal demands, including a 103% increase<\/a> in legal demands from governments targeting journalists.<\/p>\n Privacy and security experts are concerned that platforms such as Mastodon are poorly positioned to properly deal with data requests like these. Addressing them would likely fall on independent Mastodon server administrators or their hosting companies, not Mastodon. While Mastodon is based in Germany, its administrators and their hosting companies span the globe.<\/p><\/blockquote>\n Yeah really. \u00a0Riley quotes several Mastodon instance admins who basically say, well, if it happens they’ll get a lawyer. \u00a0As privacy and security expert Violet Blue pointed out in her Cybersecurity Roundup<\/a> on December 13, there are some big red flags here. \u00a0Not to sound like a broken record, but assume that nothing on Mastodon is private, and do not use it for confidential information<\/strong>!<\/p>\n Riley also briefly discusses Hive Social, another Twitter alternative. \u00a0Hive had a very high-profile security problem, and shut down for a few weeks to address the underlying issues (although it’s now back up). \u00a0As Violet Blue points out, Hive did the right thing here by prioritizing user safety. \u00a0<\/p>\n Melissa Heikkil\u00e4 on MIT Technology Review (technologyreview.com)<\/p>\n The internet is increasingly awash with text written by AI software. We need new tools to detect it.<\/p>\n 23-12-2021 on ECNL (ecnl.org)<\/p>\n ECNL, INCLO and Privacy International joint report focuses on global lessons from the COVID-19 pandemic.<\/p>\n Nick Blizzard on Dayton Daily News (daytondailynews.com)<\/p>\n Dayton, Miamisburg have added automated license plate readers in past several months; Beavercreek and Kettering among police departments that say they help solve crimes while Ohio ACLU, others raise questions.<\/p>\n Lindsay Clark on The Register (theregister.com)<\/p>\n Campaigners say it\u2019s unlikely to pass a test in the courts, though<\/p>\n Colin Lecher on The Markup (themarkup.org)<\/p>\n Letters to the companies, signed by Warren and others, cite a recent Markup investigation<\/p>\n Aihik Sur on Moneycontrol (moneycontrol.com)<\/p>\n This comes a few days after the Greater Chennai Police admitted to using the technology in response to a tweet by a Chennai resident.<\/p>\n Scott Ikeda on CPO Magazine (cpomagazine.com)<\/p>\n Organizations found to be responsible for a privacy breach now face a maximum penalty of AUD 50 million, 30% of adjusted annual domestic turnover, or three times the value of any benefit obtained through the misuse of the leaked information.<\/p>\n Martin Coulter on Reuters (reuters.com)<\/p>\n Microsoft Corp said on Thursday its European Union cloud customers will be able to process and store parts of their data in the region from Jan. 1.<\/p>\n Beryl Lipton on Electronic Frontier Foundation (eff.org)<\/p>\n The majority of federal agencies \u2014 including law enforcement agencies like Customs and Border Protection \u2014 are refusing to release some of the most basic guidance materials used by their Freedom of Information Act (FOIA) offices: procedures for how they do their jobs.Government Attic, a website…<\/p>\n Warren Paul Anderson, Discreet Labs on VentureBeat (venturebeat.com)<\/p>\n Privacy in Ethereum must not be a bolt-on feature; it should should become a built-in foundation that enhances user experience.<\/p>\n Jordan Hart on Insider (businessinsider.com)<\/p>\n \u201cHow many other women has he done this to, and how else is he using my information?\u201d Strauss asked in a TikTok post that went viral earlier this week.<\/p>\n Jim Love on IT World Canada (itworldcanada.com)<\/p>\n On Dec 13th, a new search engine, described by some as the \u201canti-google\u201d called Neeva will be available to use in Canada. Here’s an interview with Neeva’s CEO.<\/p>\n Jos\u00e9 EFA and Hayley Tsukayama on Electronic Frontier Foundation (eff.org)<\/p>\n The general counsel of the National Labor Relations Board (NLRB) issued an important memo that calls for regulators to protect workers against what she described as \u201cunlawful electronic surveillance and automated management practices.\u201d<\/p>\n Mia Armstrong-L\u00f3pez on Slate (slate.com)<\/p>\n Plus, stories from the recent past of Future Tense.<\/p>\n Wendy Kramer is Co-Founder and Director of the Donor Sibling Registry (DSR). on Psychology Today (psychologytoday.com)<\/p>\n Walking the fine line between privacy and secrecy is inherent in donor families.<\/p>\n Rory Carroll on The Guardian (theguardian.com)<\/p>\n Leaked clip of deputy leader also fuels moves to tighten social media regulation<\/p>\n Brian Wong on South China Morning Post (scmp.com)<\/p>\n Ho Muk-wah received 8 months\u2019 jail for seven counts of disclosing personal data without consent, including creating fake online accounts under ex-partner\u2019s name.<\/p>\n Ryan P. Blaney on The National Law Review (natlawreview.com)<\/p>\n Judge Jeffrey White of the Northern District of California recently dismissed a putative class action lawsuit in which plaintiffs claimed they faced an imminent threat of future of harm in the form of identity theft and fraud because their personal information, specifically their driver\u2019s license numbers, may have been compromised in a data breach. \u00a0In doing so, the court determined that driver\u2019s license numbers \u201care not as sensitive as social security numbers,\u201d and that they don\u2019t rise to the level of sensitive personal information \u201cneeded to establish a credible and imminent threat of future harm\u201d for Article III standing.<\/p>\n iednewsdesk on India Education (indiaeducationdiary.in)<\/p>\n Researchers at the Oxford Internet Institute are launching \u2018The Algorithmic Pedestal,\u2019 a public exhibition taking place at J\/M Gallery in London from 11-17 January 2023, which will highlight differences between human and algorithmic ways of seeing. Artist Fabienne Hess is bringing her human perspective, while the Instagram algorithm adds the machine perspective.<\/p>\n","protected":false},"excerpt":{"rendered":" A big FTC settlement, student privacy, state and federal privacy legislation, security and privacy issues on Mastodon … and more! \u00a0 Fortnite Video Game Maker Epic Games to Pay More Than Half a Billion Dollars over FTC Allegations of Privacy Violations and Unwanted Charges the Premerger Notification Office Staff on Federal Trade Commission (ftc.gov) Epic […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[460],"class_list":["post-4156","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-privacy-news"],"_links":{"self":[{"href":"https:\/\/2024.thenexus.today\/index.php\/wp-json\/wp\/v2\/posts\/4156","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/2024.thenexus.today\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/2024.thenexus.today\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/2024.thenexus.today\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/2024.thenexus.today\/index.php\/wp-json\/wp\/v2\/comments?post=4156"}],"version-history":[{"count":0,"href":"https:\/\/2024.thenexus.today\/index.php\/wp-json\/wp\/v2\/posts\/4156\/revisions"}],"wp:attachment":[{"href":"https:\/\/2024.thenexus.today\/index.php\/wp-json\/wp\/v2\/media?parent=4156"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/2024.thenexus.today\/index.php\/wp-json\/wp\/v2\/categories?post=4156"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/2024.thenexus.today\/index.php\/wp-json\/wp\/v2\/tags?post=4156"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}KCKPS leaders consider cameras in classrooms for virtual learning; some concerned about privacy, trust<\/a><\/h4>\n
Federal privacy legislation<\/h2>\n
Dangerous \u201cKids Online Safety Act\u201d Does Not Belong in Must-Pass Legislation<\/a><\/h3>\n
ADPPA and Twitter: eight questions and an elephant<\/a><\/h3>\n
State privacy legislation<\/h2>\n
Tech industry group sues to block California law designed to protect kids online over free speech concerns<\/a><\/h4>\n
Looking Forward and Back at the California State Legislature<\/a><\/h4>\n
U.S. State Privacy Laws in 2023: California, Colorado, Connecticut, Utah and Virginia<\/a><\/h4>\n
Mastodon<\/h2>\n
Fleeing Twitter users face uncertain privacy, security features on alternative platforms<\/a><\/h3>\n
And …<\/h2>\n
How to spot AI-generated text<\/a><\/h4>\n
Under Surveillance: (Mis)use of Technologies in Emergency Responses<\/a><\/h4>\n
Dayton-area police departments expanding license plate reader use as privacy concerns remain<\/a><\/h4>\n
EU takes step towards US data-sharing agreement<\/a><\/h4>\n
Sen. Elizabeth Warren Questions Tax Filing Companies, Meta, and Google About Sharing of Financial Data<\/a><\/h4>\n
Violation of Right to Privacy: Karti Chidambaram on \u2018Orwellian\u2019 usage of facial recognition by Chennai police<\/a><\/h4>\n
Privacy Breaches to Cost More in Australia as Maximum Penalty Increases to AUD 50 Million<\/a><\/h4>\n
Microsoft to roll out \u2018data boundary\u2019 for EU customers from Jan. 1<\/a><\/h4>\n
<\/h4>\n
Federal Agencies Keep Rejecting FOIA Requests for Their Procedures for Handling FOIA Requests<\/a><\/h4>\n
The post-Merge Ethereum ecosystem needs privacy more than ever<\/a><\/h4>\n
Hulu customer claims an employee violated her privacy by using personal information to contact her after a virtual service chat<\/a><\/h4>\n
Is privacy is possible on the Internet? An interview with Neeva founder and former Google exec Sridhar Ramaswamy<\/a><\/h4>\n
EFF Agrees With the NLRB: Workers Need Protection Against Bossware<\/a><\/h4>\n
Is Your Secret Santa App on the Privacy Naughty List?<\/a><\/h4>\n
Secrecy v. Privacy in Donor Conception Families<\/a><\/h4>\n
Leo Varadkar nightclub footage triggers privacy debate in Ireland<\/a><\/h4>\n
Hongkonger jailed for 8 months in first doxxing sentence under revised privacy law<\/a><\/h4>\n
Standing to Sue: Is Theft of Drivers\u2019 License Numbers Sufficient to Allege Imminent Threat of Future Harm?<\/a><\/h4>\n
<\/h4>\n
Exhibit At University Of Oxford Shows Differences Between Algorithmic And Human Curation<\/a><\/h4>\n