CDP Institute

A survey of 200 risk and compliance executives conducted by Compliance Week indicated that companies that lack integration of their risk, compliance and audit data are impeded when It comes to detecting and responding to data threats. Fifty-six percent said their organizational data was stored across multiple internal and external platforms with only 16% saying their data resides in a single, centralized place.

The US Federal Trade Commission (FTC) has charged real-time bidding platform OpenX Technologies $2 million for violating the Children’s Online Privacy Protection Act (COPPA). Violations include sharing of geodata and collecting information on children under age 13.

The regulator said the company’s data scraping practices are in violation of EU regulations.

By offering affordable, self-service tools, Pixalate’s new Ad Trust and Safety API suite provides tools that had been out of reach cost-wise for many small companies and independent developers.

Despite its highly publicized privacy control claims, Apple may in fact be allowing user-level data access, according to The Financial Times. The publication alleges a handful of big tech developers claim they can obtain signals via a cohort-focused approach rather than from individual iPhones, so long as data is anonymized and aggregated.

A survey by Ebiquity and Cookiebot CPM tracked nearly 200,000 3rd party marketing cookies (3PMCs) conducted from an IP in the EU and found more than 32% were fired prior to site visitors granting consent. This poses a major concern in the context of international data transfer regulations, since more than 70% of all 3PMCs transfer to non-EU territories, so is in violation of GDPR.

A German court has ruled sharing IP addresses with US-based servers for cookie consent is unlawful under Schrems II. The Wielsbaden Administrative Court found that a German university using a cookie preference service that shared IP addresses of end users with a company headquartered in the US was in violation because users could be identified by using the IP addresses and a key that is stored in the user’s browser.

The US and allies have elevated concerns about cybercriminals to the level of national security. This week, the US Cyber Command’s top general confirmed the military in cooperation with law enforcement is tracking ransomware groups. Canada imposed similar measures, and Ireland stepped up its activities following cyberattacks that disrupted healthcare in the country. Concerns have grown as infrastructure that promotes critical services, such as healthcare and pipelines, have been targeted.

With twin goals of safely harnessing the power of data for business and combating critical transnational privacy concerns, the White House and UK announced the joint prize challenge to develop privacy-enhancing technologies (PETs). The initiative is intended to encourage top minds to evolve new solutions to address global privacy issues ranging from financial crime to health data security.  First winners will be announced next year.

In the latest crackdown on Big Tech overreach, Italy’s anti-trust regulator charged Amazon $1.28 billion for alleged abuse of market dominance. Amazon has denied the claim that it leveraged its dominant position in the Italian marketplace to favor adoption of its own fulfillment service over others.

A DataDome survey conducted by Forrester found 84% of enterprise firms are prioritizing customer experience (CX) and app experience along with bot detection and management (79%). One key finding is that bots are being used to target high-profile events by using card, inventory and account fraud.

The family safety app used globally by 33 million people to track their children’s movements via cellphone, is in fact selling that data to more than a dozen data brokers according to former employees as reported by The Markup.