CDP Institute

Pushback from UK creatives have stalled aggressive government AI plans to override existing copyright law and allow broad use of text and data mining. Regulations currently allow developers and researchers to leverage disparate data sets to train algorithms, but access is not widely allowed for business because of risks of data getting into the hands of third parties. Now, the UK’s Intellectual Property Office’s (IPO) intention to extend existing access has hit a roadblock from the creative community, including music and publishing companies, which cited the need to protect copyrighted... Read More >

One massive database. Info on nearly every New Zealander. More than 100 breaches (though many were minor). But that’s still small consolation to anyone whose data may be at risk. Since 2013, IDI’s data trove has gathered information from government departments and shared information, including from Census surveys, with 1400 researchers – and the list keeps growing. There have been more than 100 breaches since 2015, and the pace has been accelerating causing concern.

The EU wants to get a move on with General Data Privacy Regulation (GDPR) oversight, to stop corporate negligence and infractions! No more waiting two, three and four plus years, as was the case with Meta and Google, for European regulators to issue decisions. Now, the European Commission will insist regulators handling large-scale cases that impact citizens in multiple countries provide the Commission with every-other-month progress reports.

GoodRX, a discount drug app used by millions to find lower prices on prescription drugs, has been accused by the US Federal Trade Commission (FTC) of sharing users’ personal data about medications and illnesses with Facebook, Google and other companies. Done without authorization, this is in violation of federal rules requiring health apps to notify consumers of wrongful disclosure of information. The company, though denying the charges, has agreed to settle. Additionally important, according to the New York Times, is that “this is the first time the FTC has brought... Read More >

Cisco’s annual survey: ROI on Privacy Investment found that 95% of global respondents deemed privacy a “business imperative” with 98% reporting privacy-related metrics to their company’s Board of Directors. Participants also indicated privacy was a priority spend for their company even in tough economic times with a strong return on investment that averaged 1.8x spending.

Italy’s regulator, the Guarantor for the Protection of Personal Data (GPDP), has ordered US-based AI chatbot maker, Replika to stop processing Italian user data because of risks the technology can pose to minors and to some adults. The freemium app offers ‘virtual friendship’ via AI avatars trained to foster human engagement. Concerns include that some content is not age-appropriate for children, that children and emotionally vulnerable adults could develop addiction to the app, and that users will be encouraged to spend lots of money on avatar development.

The ed tech company, which had repeated security breaches since 2017 that allowed sensitive data of millions of student users vulnerable to exposure, has been ordered to tighten security.

DSPM systems, according to Gartner, are systems that “provide visibility on where sensitive data is located, who has access to it and what the security posture of the data store or application is.”