As AI legislation evolves, your company’s privacy policy should keep pace to assure customers of your commitment to safeguard their data. Beyond informing them of how it will be processed, you should clarify: 1) what will be automated via AI, 2) how their data will be used, 3) if the data will be used to train AI models, and of course, 4) how they can opt-out.
Narrow, but interesting for auto privacy buffs is a new law Utah is enacting – the Utah Motor Vehicle Data Protection Act. This states that car brand companies (franchisors) cannot force car dealerships (their franchisees) to provide access to consumer data held in the dealer data systems. The law does not incorporate protection of data the cars can generate, nor data that can be obtained via devices people connect to their cars.
The Protecting Georgia’s Children on Social Media Act has been signed by the governor, and it follows similar laws in other states including Louisiana, Arkansas, Texas, and Utah that require parental consent for minors to create new social media accounts. Opponents of this bill earlier raised concerns it may violate kids’ First Amendment rights.
If you still think that MCP stands for Male Chauvinist Pig, well, the 1970’s want their disco ball back. Today’s hep cats know that MCP stands for Model Context Protocol, a new-but-widely supported standard that lets large language models access structured data as context for their prompts. Early adopters include Salesforce and Adobe, and search platform Algolia is now using it to feed their data to customer-facing real-time AI agents.