Search results

[…] for you? 2. Rule 12(4) of the draft DPDP Rules has sparked debate over the potential “back-door” reintroduction of data localization. What are the practical concerns for businesses? 3. What are the operational implications of being classified as a “significant data fiduciary”? What criteria are you using to evaluate their potential status? 4. In […]

[…] clear guidance from regulators, how will companies work through and implement an analysis of “necessary,” “reasonably necessary,” or “strictly necessary?” 2. Is data collection “necessary” in ad-driven business models where content is free in exchange for advertising? Is there a distinction between the “necessity” of data for ad measurement or attribution and data collected […]

[…] face increasing pressure to implement age assurance measures, debates continue over privacy risks, effectiveness, and regulatory challenges. Beyond legal mandates, there may be policy questions or other business pressures to use some form of age assurance. This session will bring leaders from across sectors to share insights on current approaches and best practices, such […]

[…] Data Protection Considerations ( link ) ● The Court of Justice of the European Union Confirms the Existence of the Right to Explanation of Automated Decision-Making ( link ) ● EDPB Opinion on aspects of data protection law and AI models ( link ) ● FPF Resources on the EU AI Act ( link )

16 TH ANNUAL ADVISORY BOARD MEETING June 11–13, 2025 • Washington, D.C. 5–8 KEY DISCUSSION QUESTIONS 1. Colorado AI Act: Exploring the business implications and questions regarding the latest version of the Colorado AI Act * (pending passage) , focusing on its narrowed scope and obligations, as well as broadened transparency requirements. 2. Trends […]

[…] laws are either being adopted (South Korea), quickly advancing (Brazil), or being prepared (Japan and China). At the same time, some have suggested that fast-moving AI tech, business practices, and individuals’ engagement with AI tools should prompt policymakers to revisit and hone aspects of the AI Act. What factors and considerations drive the substance […]

[…] standards, California’s ongoing rulemaking efforts, and the House Energy & Commerce Committee’s ‘reset’ on data privacy efforts. We’ll explore the evolving legislative landscape and its implications for businesses and consumers alike. *As privacy laws continue to evolve rapidly , the focus of our conversation may shift to address areas of critical importance. 5–8 KEY […]

Brazil’s Autoridade Nacional de Proteção de Dados (“ANPD”) Technology and Research Unit (“CGTP”) released the preliminary study Inteligência Artificial Generativa (“Preliminary Study on GenAI”, in Portuguese) as part of its Technological Radar series, on November 29, 2024. A short English version of the study was also released by the agency in December 2024. This analysis […]

Cross-border data flows are critical to Africa’s digital economy, enabling trade, innovation, and access to continental and global markets. As the drive towards data-driven technologies among businesses and governments grows, the ability to transfer personal data across borders efficiently and securely has become a key policy concern on the continent, a position echoed by […]

Today, FPF Senior Fellow Zoe Strickland testified before the U.S. House of Representatives Financial Services Subcommittee on Financial Institutions, providing expert insight about data privacy in the financial system, focusing specifically on rulemaking under Section 1033 of the Dodd-Frank Act.  With over 25 years of experience as a global chief privacy officer at Fortune […]