Search results

[…] fitness for purpose; Organizations should implement AI governance frameworks informed by the NIST AI Risk Management Framework; Organizations should not claim that AI hiring tools are “bias- free;” and AI hiring tools should be designed and operated with informed human oversight and engagement. “When properly designed and utilized, AI must process vast amounts of […]

[…] in data protection regulatory activity in recent years, including the enactment of new data protection laws. In particular, since 2021, China, Indonesia, Japan, South Korea, Thailand, and Vietnam have newly enacted or amended their data protection laws and regulations. An analysis of the data protection laws and regulations in these six jurisdictions indicates that […]

[…] key area of concern, as well as putting in place mitigation and monitoring measures to ensure personal data generated through such tools are accurate, complete and up-to-date, free from discriminatory, unlawful, or otherwise unjustifiable effects. Other areas of concern mentioned were transparency to promote openness and explainability; production of technical documentation across the AI […]

[…] start to be actively promoted within digital services and products, centering privacy as a key market value, regulators must consider that certain companies might be able to get a competitive advantage through the early development and deployment of PETs. To avoid additional market deficiencies caused by privacy-enhancing technologies, regulators have an important task at […]

[…] The ten interplay areas we are highlighting are: Manipulative design in online interfaces; Targeted advertising based on sensitive data; Targeted advertising and protection of minors; Recommender systems free-of-profiling; Recommender systems and advertising transparency; Access to data for researchers and competent authorities; Takedown of illegal content; Risk Assessments; Compliance function and the DSA legal representative; […]

[…] Valid Consent Has Strict Requirements, Is Withdrawable, And Can be Exercised Through Consent Managers The DPDP Act requires that consent for processing of personal data be “ free, specific, informed, unconditional and unambiguous with a clear affirmative action.” These conditions are similarly strict to those required under the GDPR, highlighting that the people whose […]

[…] FPF CEO, and Takeshige Sugimoto, Managing Partner at S&K Brussels LPC and FPF Senior Fellow, hosted the Symposium.  The G7 DPA Agenda, built on three pillars: Data Free Flow with Trust, emerging technologies, and enforcement cooperation The DPAs of the G7 nations started to meet annually in 2020, following the initiative of the UK’s […]

[…] up to the age of 17 (although CT SB 3 creates similar protections for 13-17-year olds), child-directed privacy and online safety laws, including the California Age-Appropriate Design Code and Utah Senate Bill 152, have increasingly applied to the data and activity of teenagers up to age 17. 4. Expanded Rights to Access and Delete […]

[…] a data protection impact assessment (DPIA) prior to the processing of personal data, where such processing may likely result in a high risk to the rights and freedoms of a data subject. The Act does not specify the period within which a DPIA must be conducted prior to such processing. Laws such as Kenya’s […]

[…] it is important to note that industrial policies from both central and local governments in China also exert substantial influence over the sector. Critically, the task to promote AI advancement amid escalating concerns is overseen by authorities other than the CAC, such as the Ministry of Science and Technology (“MST”) and the Ministry of […]