Search results

[…] 🚩 Reporting criminal offenses (Article 18) 🚩 🚩 Risk management obligations and compliance officer (Article 41) 🚩 🚩 Risk assessment and mitigation of risks (Articles 34-35) 🚩 Codes of conduct (Articles 45-47) 🚩 Access to data for researchers  Data sharing with authorities and researchers (Article 40) 🚩 From Risk Assessments to Profiling and Transparency […]

[…] consent for purposes of employment or those related to safeguarding the employer from loss or liability, such as prevention of corporate espionage, maintenance of confidentiality of trade secrets, intellectual property, classified information or provision of any service to employees. Data Principals Have a Limited Set of “Data Subject Rights,” But Also Obligations The DPDP […]

Today, the Future of Privacy Forum (FPF) releases the Generative AI for Organizational Use: Internal Policy Checklist. With the proliferation of employee use of generative AI tools, this checklist provides organizations with a powerful tool to help revise their internal policies and procedures to ensure that employees are using generative AI in a way that […]

[…] are covered by the “unfair practices” doctrine of the FTC.  UK Commissioner John Edwards gave a detailed account of the impact of the UK’s Age Appropriate Design Code in the design of online services provided to children, which was launched by his office in 2020. “We have seen genuine changes, including privacy settings being […]

[…] up to the age of 17 (although CT SB 3 creates similar protections for 13-17-year olds), child-directed privacy and online safety laws, including the California Age-Appropriate Design Code and Utah Senate Bill 152, have increasingly applied to the data and activity of teenagers up to age 17. 4. Expanded Rights to Access and Delete […]

[…] public and private sector to serve for a term of 5 years that is renewable once. This rule exempts the National Commissioner, who will serve as the Secretary to the Council. The Council is tasked with providing overall policy direction of the affairs of the Commission, approving strategic and action plans, budgeting support programs […]

[…] and information disclosure. 3. The Draft Measures target the “hallucination” of generative AI systems The Draft Measures describe generative AI as “technologies generating text, image, audio, video, code, or other such content based on algorithms, models, or rules.” In contrast to the EU’s new compromise text on rules for generative AI, which adopts a […]

[…] features, including a mechanism to report “harmful or unwanted” behavior. The children’s and health provisions of SB 3 appear to be informed by the California Age-Appropriate Design Code (AADC) and the recently enacted Washington State My Health, My Data Act, respectively, but contain numerous important distinctions.  FPF has prepared a comparison chart to help […]

[…] they  are completely “safe” or “ethical.” Third, AI Verify is intended to preclude organizations from unintentionally divulging sensitive information from their AI systems (such as their underlying code or training data); one key safeguard – AI Verify will be used by AI system developers and owners themselves to conduct self-testing. This allows the organization’s […]

[…] the Review Report’s proposal to grant the OAIC the power to determine codes of practice, the Report proposes that the OAIC should issue a “Children’s Online Privacy Code” for online services that are likely to be accessed by children. The Code would align with the UK’s Age Appropriate Design Code, and would provide guidance […]