Search results

[…] Second, the designated controller of a website or ISP that “collects, stores and sells customers’ personally identifiable information” (PII) must disclose certain information within either the controller’s customer agreement, an addendum to that agreement, or “in another conspicuous location on its website or online service platform.” The controller must provide:  “all categories of personal […]

[…] of the Convention if they meet two requirements: 1) the country in which they are established or in which they develop or deploy their AI products and services is a State Party to the Convention, and 2) they are designing, developing or deploying artificial intelligence systems on behalf of that State Parties’ public authorities.  […]

[…] consumer trust.  Generative AI uses have proliferated since the technology’s emergence, transforming how we interact, work, and make decisions. From drafting emails and computer code to performing customer service functions, these technologies have made significant progress. However, as generative AI continues to advance and find new applications, it is essential to consider how the […]

[…] income, or disability in a manner that unlawfully discriminates against the with respect to the offering or provision of: housing, employment, credit, or education; or the goods, services, facilities, privileges, advantages, or accommodations of any place of public accommodation.” This is similar to a prohibition in the recently enacted Maryland Online Data Privacy Act […]

On May 17, Governor Polis signed the Colorado AI Act (CAIA) (SB-205) into law, establishing new individual rights and protections with respect to high-risk artificial intelligence systems. Building off the work of existing best practices and prior legislative efforts, the CAIA is the first comprehensive United States law to explicitly establish guardrails against discriminatory outcomes […]

[…] a consumer? The answers to these questions will have significant impact on businesses, especially with respect to back-end data uses that are not apparent in a business- customer relationship, such as product improvement and the launch of new products and features.  This new paradigm also increases the importance of exceptions and limitations to the […]

The privacy laws of both Colorado and California require organizations to recognize Universal Opt-Out Mechanisms (UOOMs), a tool through which a person can invoke their opt out rights broadly across all the websites they visit. While California has required responding to certain UOOMs since July 2021, the Colorado Attorney General has only recently approved their […]

[…] of location data. Be aware that location data is often used to personalize ads and recommendations based on locations you have recently visited. Allowing access to location services may also permit sharing of location information with third parties. To check the location permissions allowed for apps on an iPhone or Android, follow the below […]

[…] Under Considerations for the Personal Financial Data Rights Rulemaking,” which was a prerequisite to the NPRM. Last year, FPF also released an infographic, “Open Banking And The Customer Experience,” visualizing the U.S. open banking ecosystem and the challenges affecting it, which are also addressed in FPF’s latest comment. 1Required Rulemaking on Personal Financial Data […]

[…] to the more broadly available Firefox browser over time. GPC tools differ significantly in their default settings after installation, potentially creating consumer confusion in switching from one service to another. Three of the tools leave the GPC off by default following final installation; four of them enable the GPC by default. Firefox, for example, […]