Filter by content type:
Filter by related issues:
Filter by related legal case
ContentsExecutive SummaryBreaking it Down: What Does Comprehensive Data Privacy Legislation Look Like?Sketching the Landscape: What Real Privacy...
... passage of both the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). With ...
For many years now, EFF has argued that pervasive online behavioral surveillance, which powers the exploitative data broker industry as well as some...
... is, of course, not Meta’s choice. They sidestepped the GDPR using Terms of Service trickery for as long as they ... announcement , recent court interpretations of the GDPR, as well as the incoming Digital Markets Act (DMA), have ... a $1.3 billion fine already levied against it for another GDPR violation). Opt-in consent to collect, retain, ...
Esta é a terceira parte de uma série em andamento de cinco partes. A primeira parte, a introdução, é aqui. A segunda parte, sobre a quebra de...
... da UE. O Regulamento Geral de Proteção de Dados (GDPR) da União Europeia proíbe a vigilância para fins de ...
In a preliminary victory in the continuing fight against privacy-invasive software that “watches” students taking tests remotely, a French...
... by the EU’s General Data Protection Regulation (GDPR) for processing people’s personal data. Under the GDPR, processing of personal data must be authorized by law, ... had no lawful basis among those provided for by the GDPR and was disproportionate to the intended purpose, i.e. ...
Argentinian telecommunications providers have made strides in their commitments to protecting users’ data privacy, but the gains are uneven—they are...
... Governance Model based mainly on compliance with the EU GDPR, and is the only featured ISP that reported on how the ...
Targeted advertising’s days may be numbered. The Wall Street Journal and Reuters report that the European Data Protection Board has ruled that Meta...
... European Union’s General Data Protection Regulation ( GDPR ). This is a big step in the right direction: voluntary ... to target ads. This sleight of hand takes advantage of the GDPR concept of “ contractual necessity ,” in which the GDPR allows data processors to collect and use information as ...
Privacy and online free expression are once again under threat in India, thanks to vaguely worded cybersecurity directions—promulgated by India’s...
... from detection—compared to 72 hours under the EU’s GDPR to notify data breaches—an onerous requirement for ...
Spanish Internet Service Providers (ISPs) continue to fall short of robust transparency about their data protection and user privacy practices, with...
... Spain’s data protection legislation (which incorporates GDPR obligations). They have also fallen short of other parameters that build on GDPR's transparency rules for user data processing. For ...
The executive body of the European Union published today a legislative proposal (text) that, if it became law, would be a disaster for online privacy...
... the adoption of the General Data Protection Regulation, or GDPR. This new proposal suggests the EU may head in a ...
Brazil’s biggest internet connection providers continue to make strides towards better protection of customer data and greater transparency about...
... to Brazil’s new law, the EU General Data Protection Act (GDPR)-inspired regulation that took effect last year. Oi and ...
This is the third post in a series about recommendations EFF, EDRi, CIPPIC, Derechos Digitales, TEDIC, Karisma Foundation, and other civil society...
... biometric data than required by competing laws such as the GDPR , the EU Law Enforcement Directive , and the Council of ...
In Privacy Without Monopoly: Data Protection and Interoperability, we took a thorough look at the privacy implications of various kinds of...
... actually have. The General Data Protection Regulation (GDPR), a powerful , far-reaching , and comprehensive (if ... of interoperability, prompting two questions: Does the GDPR mean that the EU doesn’t need interoperability in order to protect Europeans’ privacy? And Does the GDPR mean that interoperability is impossible, because there ...
Virtual worlds are increasingly providing sophisticated, realistic, and often immersive experiences that are the stuff of fantasy. You can enter them...
... put our fingers on. Data protection laws, like the GDPR, require that personal data collected for a specific ...
Special thanks to former legal intern Hinako Sugiyama, who was a lead co-author of this post.
Technology users around the world are increasingly...
Technology users around the world are increasingly...
... data under the EU’s General Data Protection Regulation (GDPR) refers to things that are "online identifiers." GDPR guidelines specifically mention that cookie identifiers ...
Last week, the New York Times highlighted the Trump 2020 campaign’s use of deceptive web designs to deceive supporters into donating far more money...
... for email opt-ins. Likewise, the European Union’s GDPR has banned the use of pre-selected checkboxes for ...
WhatsApp users have recently started seeing a new pop-up screen requiring them to agree to its new terms and privacy policy in order to keep using...
... by the EU’s General Data Protection Regulation, or GDPR. The GDPR prevents WhatsApp from simply passing on user data to ... violates the “coupling prohibition” under the GDPR. The Problems with Messenger Monetization Facebook has ...
Visa, the credit card network, is trying to buy financial technology company Plaid for $5.3 billion. The merger is bad for a number of reasons. First...
... tool, which was apparently introduced in mid-2018 (after GDPR went into effect in Europe), is useful—for users who ...
We're proud to announce a new updated version of The State of Communications Privacy Laws in eight Latin American countries and Spain. For over a...
... the EU's 2018 General Data Protection Regulation (GDPR). Since 2018, several countries, including Barbados and Panama have led the way in adopting GDPR-inspired laws in the region, promising the beginning of ... In fact, the privacy protections of Brazil ’s new GDPR-inspired law took effect last week, on September 18, ...
ETICAS Foundation’s second ¿Quien Defiende Tus Datos? (Who Defends Your Data?) report on data privacy practices in Spain shows how Spain’s leading...
... under the new General Data Protection Regulation (GDPR), the European Union’s data privacy law that sets ... practices and conduct. In light of the adoption of the GDPR, this year’s report assessed companies against several ... earning partial credit in 2018. The implementation of the GDPR has had a positive effect on privacy policies at only ...
With numbers of COVID-19 infections soaring again in the United States and around the world, we have to learn how to manage its long-term...
... do not. Under the EU General Data Protection Regulation (GDPR), an employee's personal data concerning their health ... or release personal data. In the European Union, under the GDPR, consent can't be a valid legal ground to process the ...
In their efforts to contain the spread of the pandemic, governments around the world are rolling out body-worn devices (“wearables”) to assist in...
... subject to Europe's General Data Protection Regulation (GDPR), which applies in Liechtenstein . As a general rule, ... when their employer tells them to strap it on. Under the GDPR, consent can't be freely given if there is a clear ...
Twitter greeted its users with a confusing notification this week. “The control you have over what information Twitter shares with its business...
... users differently depending on whether they are subject to GDPR. Previously, anyone in the world could opt out of Twitter’s conversion tracking (type 1), and people in GDPR-compliant regions had to opt in. Now, people outside of ... and Facebook is a new phenomenon. For people protected by GDPR, type-1 data sharing remains opt-in, and type ...
A data privacy bill in Washington State has gained momentum. The bill, 2SSB 6281 (also known as the Washington Privacy Act, or WPA), has received...
... Cambridge Analytica scandal and Europe’s adoption of the GDPR , legislators across the U.S. are newly interested in ... Act (CCPA) or the General Data Protection Regulation (GDPR) in Europe. While 2SSB 6281 addresses some issues, such ... far short of the protections provided by the CCPA and GDPR. Washington can—and must—do better. After passing ...
The European Union’s controversial new copyright rules are on a collision course with EU data privacy rules. The GDPR guards data protection, privacy...
... are on a collision course with EU data privacy rules. The GDPR guards data protection, privacy, and other fundamental ... that steer clear of automated filters that violate the GDPR by censoring and discriminating against users. Platforms ... plead their case. Can’t See the Wood For the Trees: the GDPR There’s something awfully familiar about the idea of ...
The bad news is that Twitter has disclosed a failure to protect users' phone numbers, again. The good news is that Twitter users can take steps to...
... is unchecked, too.) Unless you are in the EU, where the GDPR requires that features like this be opt-in, these are ...
Today marks the 39th anniversary of the Council of Europe's "Convention for the Protection of Individuals with Regard to the Automatic Processing of...
... laws, including the General Data Protection Regulation (GDPR), as well as similar laws in Canada, Australia, India, ... as a term, at least before companies started sending those GDPR update e-mails in 2018. And because the U.S. model of ... authors paid little attention to compatibility with the GDPR. But, looking at the two side-by-side , what is clear is ...
A new year often starts with good resolutions. Some resolve to change a certain habit, others resolve to abandon an undesired trait. Mobile app...
... data under the EU General Data Protection Regulation (GDPR) and consumers have no practical option to avoid being ... into exploitative practices in contradiction to the GDPR, the report says. While the research was carried out in ...
Foreign police often want to investigate a crime by gathering potential evidence from Internet companies located in another country. What if police...
... due to the General Data Protection Regulation (GDPR). ISPs are also subject to an even stricter legal ...
Ever since the Cambridge Analytica scandal last summer, consumer data privacy has been a hot topic in Congress. The witness table has been dominated...
... back. The Senate Judiciary committee held a hearing called GDPR & CCPA: Opt-ins, Consumer Control, and the Impact on ... top Democrat, Senator Dianne Feinstein, asked if the GDPR was bad for business. CDT’s Michelle Richardson responded by saying that because the GDPR is so new, we don’t yet know its effects. Richardson ...
The way we design user interfaces can have a profound impact on the privacy of a user’s data. It should be easy for users to make choices that...
... the European Union’s General Data Protection Regulation (GDPR) by tricking the consumer into giving Google access to ... Google’s consent and transparency practices violate the GDPR. The CNIL fined Google 50 million Euros (equivalent to ...
France’s data protection authority is first out the gate with a big decision regarding a high-profile tech company, and every other enforcer in...
... for breaches of the General Data Protection Regulation (GDPR). This is about 57 million U.S. dollars. The decision ... accounts for Google services on Android devices. Since the GDPR came into effect on May 25, 2018, many companies have ... to users. The Complaints from Privacy Advocates Under the GDPR, processing of personal data is only allowed where there ...
The U.S. government sends a lot of emails. Like any large, modern organization, it wants to “optimize” for “user engagement” using “analytics” and “...
... made the investment to remain FedRAMP, ISO 27001 and GDPR compliant. Privacy and security are our highest and ...
2018 may be remembered as the Year of the Facebook Scandal, and rightly so. The Cambridge Analytica fiasco, Mark Zuckerberg’s congressional testimony...
... On May 25, Europe’s General Data Privacy Regulation (GDPR) took effect . The law includes some of the most ... impact of the regulation has been a mixed bag. On paper, GDPR prohibits tracking unless the user has opted in. In ... like ICANN, made some privacy-positive improvements under GDPR, but did not take the opportunity to go far enough . And ...
To the extent that 260-page regulations can ever be said to be “famous,” Europe’s General Data Protection Regulation (GDPR) certainly had its moment...
... Europe’s General Data Protection Regulation (GDPR) certainly had its moment in limelight in 2018. When it ... that marketed itself (presumably in compliance with the GDPR) by offering to lull its users to sleep with spoken excerpts from the law. Did the GDPR live up to the year’s hype, good or bad? As Premier ...
In terms of technical approaches to protecting user privacy online, 2018 has certainly seen its ups and downs.
On a positive note, we added a ton of...
On a positive note, we added a ton of...
... industry failed after seven years. The advent of the GDPR promised better protection for those covered by it at ... optimistic about the future. With the advent of the GDPR this year, we think browser fingerprinting companies ... cookies, which are easy for users to block and remove. The GDPR unequivocally states that this kind of personal data ...
Google Chrome is the most popular browser in the world. Chrome routinely leads the pack in features for security and usability, most recently helping...
... the EU ratified the General Data Protection Regulation (GDPR), a sweeping (and complicated ) set of guidelines that ...
Yesterday’s Senate Commerce Committee hearing on consumer data privacy was a welcome improvement. The last time the Committee convened around this...
... have made plans to pull out of Europe after the watershed GDPR went into effect earlier this year is proof that ... also called for stiffer financial penalties, as under the GDPR, explaining that even a $22.5 million fine is only a few ...
Add “a phone number I never gave Facebook for targeted advertising” to the list of deceptive and invasive ways Facebook makes money off your personal...
... their hands on it despite explicit requirements under the GDPR that a company give users a “ right to know ” what ...
The Senate Commerce Committee hearing on consumer privacy this morning was exactly what we and other privacy advocates expected: a chorus of big tech...
... shouldn’t adopt standards along the lines of the EU’s GDPR or California’s CCPA. None of this was surprising . ... while the company representatives present claimed that GDPR and the CCPA imposed unreasonable burdens, they all ...
Last month, 360 cyber crime experts from 95 countries gathered in Strasbourg to attend the Octopus Conference. The event sounds like something from...
... treaty on data protection that was the forerunner of the GDPR. Currently, the CoE Cybercrime Committee (TC-Y), ...
Browser fingerprinting is on a collision course with privacy regulations. For almost a decade, EFF has been raising awareness about this tracking...
... European Union, the General Data Protection Regulation (GDPR), which entered into force on May 25th, is intended to ... Europe-wide law. This leads to a key question: Will the GDPR require companies to make fingerprinting as visible to ... “personal data processing” and will be covered by the GDPR. What is browser fingerprinting and how does it work? ...
After grilling Mark Zuckerberg for ten hours this past week, the big question facing Congress is, “What’s next?” The wide-ranging hearings covered...
... implements the EU’s General Data Privacy Protections (GDPR) for their non-European users. But if Congress tries to ...
The company publicly announced last week that it was shutting down its Partner Categories program to “help improve people’s privacy on Facebook.”...
... part of the company’s efforts to comply with the GDPR, the new EU data protection law going into effect in ... did mention the General Data Protection Regulation (GDPR), which applies to all companies that process any ... will shut off in the EU on May 25, 2018—the day the GDPR goes into effect—and at the end of September for the ...