In what could be bad news for companies such as Facebook and Google, the European Parliament has voted to toughen limits on the use of consumer data for advertising. The Committee on Internal Market and Consumer Protection (IMCO) voted overwhelmingly under the Digital Markets Act (DMA) to support stricter consent requirements for how personal information is used to serve ads, expanding the draft legislation to include a ban on the commercial use of the personal data of minors. The proposed law blacklists some practices of Big Tech platforms and empowers the EU Commission to undertake investigations, adding sanctions for non-compliant behavior. Continue reading European Union Supports New Restrictions on Targeted Ads

The Federal Trade Commission is looking into establishing stronger online privacy protections that would hold businesses such as Facebook, Google and Twitter more responsible for how they handle consumer data. The early discussions, under the leadership of new chair and vocal Big Tech critic Lina Khan, are addressing the possibility of introducing FTC regulation due to what is perceived as gridlock in Congress in creating a federal law. Privacy and civil rights groups have advocated for a single federal law — similar to Europe’s General Data Protection Regulation (GDPR) — rather than state laws (or no regulation at all). Continue reading FTC Is Considering the Need for Stricter Online Privacy Rules

European Union nations are voicing discontent over delays in enforcement of the General Data Protection Regulation (GDPR) implemented in May 2018. Earlier this month Ireland announced a $266 million fine against WhatsApp, after haggling to boost the original sanction of up to $59 million by the Irish Data Protection Commission (WhatsApp parent Facebook has European headquarters in Ireland). The situation has prompted calls to revise how the 27 EU member countries participate in overlapping cases, with expanded pan-EU rules also under consideration. Continue reading European Union Members Are Concerned Over GDPR Delays

Analytics firm Pixalate has announced $18.1 million in growth capital for connected TV and mobile advertising initiatives. The new round brings total capital raised to $22.7 million for the 9-year-old firm, which specializes in fraud prevention, privacy protection and legal compliance via offices in Santa Monica, Palo Alto and London. The move comes as Pixalate rises to meet the challenges of enterprise clients fending off bot attacks, ad fraud and other malicious threats. Malware incursions by intruders like Puppeteer siphon tens of millions of dollars in annual ad revenue, according to Pixalate. Continue reading Pixalate Raises $18.1M to Combat Click Tricks and Ad Fraud

In its first major ruling against social media giant Facebook, Irish authorities fined the company’s WhatsApp messaging service almost $270 million (225 million euros) under the General Data Protection Regulation (GDPR). Those authorities stated that WhatsApp was not transparent about how data collected by those using the app is shared with other Facebook properties, including Instagram. WhatsApp said it would appeal the decision. Since established three years ago, the GDPR has not resulted in any major fines or penalties for Facebook until now. Continue reading Ireland Slaps Facebook’s WhatsApp Service with GDPR Fine

Since leaving the European Union, the UK government, which has inherited the EU’s General Data Protection Regulation (GDPR) that went into effect in 2018, is now faced with creating its own privacy laws in order to enact data transfer agreements with other nations. The EU stated that the new UK regulations must feature those that are equivalent to the GDPR. So far, the UK government has said that its privacy rules will be “innovation-friendly” and permit easier data sharing but eliminate the EU’s “box-ticking” requirements. Continue reading Post-Brexit, UK Plans to Create Its Own Privacy Regulations

China passed the Personal Information Protection Law (PIPL) for data privacy, to take effect November 1 of this year. The law is similar to the European Union’s General Data Protection Regulation (GDPR) and includes a requirement for organizations and individuals to minimize data collection of Chinese citizen’s personal data and obtain prior consent. Unlike the GDPR, however, the Chinese law is not expected to limit state surveillance or access to such data, though it could apply to lower-level government agencies. Continue reading China’s New Data Privacy Law Targets Big Tech Companies

The European Union has launched a formal antitrust investigation into Alphabet’s Google, after the European Commission, its main antitrust enforcer, probed the issue informally since at least 2019. The formal investigation will examine numerous allegedly anticompetitive practices involving how the tech giant brokers ads and shares user data with advertisers across websites and mobile apps. In addition to reviewing issues covered by U.S. states, such as Google favoring its own ad-buying tools, the probe will cover new territory. Continue reading European Union to Conduct Antitrust Investigation of Google

By 2022, Google plans to block cookies on its Chrome browser, used by about 70 percent of global desktop computer owners, instead offering a solution that will protect privacy and still target ads. Even as privacy advocates find flaws in Google’s idea, advertising technology companies are joining forces to create tracking tools based on email addresses. Amazon has responded by blocking Chrome from collecting data on which users go to its websites. Politicians from around the world say Google’s move could hurt its rivals. Continue reading Google’s Solution to Replace Cookies Under Review at W3C

Clearview AI, the facial recognition tool based on a database of faces scraped from Facebook and elsewhere, is facing several legal complaints from privacy watchdogs in Austria, France, Greece, Italy and the United Kingdom. The complaints, originally filed by privacy advocates, state that Clearview AI violates privacy protections established under the GDPR data privacy law and its UK equivalent. The New York City-based company claims to have helped thousands of U.S. law enforcement agencies arrest criminals and predators. Continue reading EU Nations and UK Accuse Clearview AI of Privacy Violations

Google is making its first moves to adopt the Federated Learning of Cohorts (FLoC) tracking system by 2022. FLoC allows advertisers to target ads without exposing individuals’ personal data but, instead, groups people by similar interests, such as football fans, retired travelers or truck drivers. Google group product manager, user trust and privacy Chetna Bindra explained that, “this approach effectively hides individuals ‘in the crowd’ and uses on-device processing to keep a person’s web history private on the browser.” Continue reading Google Plans to Swap Cookies for Another Targeted Ad Tech

Beginning April 15, TikTok’s policy on personalized ads is changing. According to notices that TikTok users are seeing on their feeds, personalized ads will be mandatory — and users will no longer have the ability to opt out of such ads based on their actions — although the users will still be able to opt out of ads based on data TikTok gets from its advertising partners. Not included in this policy change are users in the European Union who are protected from personalized ads by the General Data Protection Regulation (GDPR) that requires user consent for such ads. Continue reading New TikTok Personalized Ad Policy Ends Choice to Opt Out

The European Data Protection Supervisor (EDPS) Wojciech Wiewiórowski, the European Union’s top privacy regulator, called for a complete ban on targeted advertising. That’s a harsher recommendation than that of the European Commission, which simply suggested increased transparency on political ads and limits to micro-targeting and psychological profiling. Wiewiorówski’s proposal was in response to a request for EU lawmaker consultation on the Commission’s Digital Services Act (DSA) introduced in December. Continue reading Top EU Privacy Regulator Calls for Total Ban on Targeted Ads

The European Union’s executive branch issued drafts of two bills that would hike fines for illegal content and anticompetitive behavior up to 6 percent or 10 percent of annual worldwide revenue and even break up Big Tech firms to stop “competitive abuses.” Although the bills don’t mention any firms by name, they could be applied to Amazon, Apple, Facebook and Google. The UK, which is no longer part of the EU, has similar legislation in the works that would fine abusers up to 10 percent of annual global revenue. Continue reading EU Proposes Two New Laws in Its Effort to Regulate Big Tech

Ireland’s Data Protection Commission fined Twitter €450,000 (about $546,000) for failing to notify the regulator or document a data breach within 72 hours. The breach, revealed in January 2019, exposed some Android users’ private tweets for over four years. Twitter chief privacy officer Damien Kieran said the company takes responsibility … and remains “fully committed to protecting the privacy and data of [its] customers.” This is the first time a U.S. tech company has been served with a GDPR fine in a cross-border case. Continue reading Ireland Fines Twitter for Privacy Breach in a First for U.S. Tech