TrustArc’s third annual Global Privacy Benchmark Report found that as the list of global laws has grown and risks become more prevalent, demands on companies have increased substantially. Now 90% of medium and large enterprises have privacy offices, but the reporting line still varies significantly, with 18% reporting to a CPO, 16% respectively to a CISO or CFO, 13% to a CTO, and 10% to a CIO.
Eureka!! California breaks the log jam and forges ahead with privacy legislation – in the US, and for kids! Meet the California Age-Appropriate Design Code Act (ADCA). Modeled on the UK’s Age-Appropriate Design Code, this game-changer now awaiting the governor’s signature, will go much farther than the federal Children’s Online Privacy Protection Act (COPPA) protecting teens and children by default. Specifically, online sites deemed likely to access youth data will not be allowed to share that data unless they can prove: 1) it is necessary to do so to provide a specific service, or 2) that doing so is in the young person’s best interest. Further, businesses will in most cases be required to implement the most privacy-protective settings by default, and there’s no provision built in for parents or kids to opt-out via consent.
The fine is the second highest levied under GDPR (after Amazon) and the third highest for a Meta-owned company (after WhatsApp and Facebook) handed down by the Irish regulator. Plus, according to Politico which broke the story, the Irish DPC has at least six more investigations pending of Meta-owned companies. More information will be released by the DPC within the week.
GrowthLoop will use TransUnion identity data to improve U.S. consumer match rates on client files sent to advertising media such as Facebook and Google Ads. The data should also help clients to find matches among records within their files, building more accurate customer profiles. GrowthLoop calls itself a “composable CDP”, meaning it works with data assembled in external data warehouses.