Search results

[…] sometimes longer. According to the discussion paper, the FDA strives to “facilitate innovation while safeguarding public health” and plans to develop a “flexible risk-based regulatory framework that promotes innovation and protects patient safety.” Lesson 2: Different uses of data may implicate different regulatory structures While there can be uncertainty regarding whether particular data, such […]

[…] pass broad-based consumer health data privacy legislation. Earlier this month, our Director for U.S. Legislation Keir Lamont took a look ahead at the state privacy landscape in 2024. For the 13th year, FPF recognized leading privacy research and analytical work with the Privacy Papers for Policymakers Award held on Capitol Hill. The winners spoke […]

[…] e-Safety Commissioner Several participants found deficits in the length and scope of the public consultation available throughout the process Participants identified several potential benefits of an industry code beyond its intended scope Participants broadly opposed any approach that would require otherwise encrypted messaging services to utilize content hashing and/or client-side scanning  Many participants discussed […]

[…] the year that the public first experiences widespread enforcement of their new privacy rights? One structural reason for a lack of visible enforcement actions may be that Virginia, Colorado, Connecticut, and until recently, California all provide the ability for businesses to ‘cure’ many or all alleged violations of their privacy laws before a formal […]

[…] considered show four primary categories of laws being considered by state regulators: Platform Accountability Laws, Age Verification Laws, Social Media Metering Laws, and the California Age-Appropriate Design Code (CA AADC). In recent actions, the Federal Trade Commission has stepped up enforcement of the Children’s Online Privacy Protection Act (COPPA). Finally, the U.S. Congress has […]

[…] in many jurisdictions. For example, to be considered a valid exercise of individuals’ opt-out rights under Colorado law, a valid GPC signal occurs when individuals provide “affirmative, freely given, and unambiguous choice.” This requirement creates an engineering ambiguity for publishers and websites over the validity of GPC signals they receive. For example, users installing […]

[…] fitness for purpose; Organizations should implement AI governance frameworks informed by the NIST AI Risk Management Framework; Organizations should not claim that AI hiring tools are “bias- free;” and AI hiring tools should be designed and operated with informed human oversight and engagement. “When properly designed and utilized, AI must process vast amounts of […]

[…] and winning papers on our website. FPF will invite winning authors to present their work at an annual event with top policymakers and privacy leaders in spring 2024 (date TBD). FPF will also publish a printed digest of the summaries of the winning papers for distribution to policymakers in the United States and abroad. […]

[…] key area of concern, as well as putting in place mitigation and monitoring measures to ensure personal data generated through such tools are accurate, complete and up-to-date, free from discriminatory, unlawful, or otherwise unjustifiable effects. Other areas of concern mentioned were transparency to promote openness and explainability; production of technical documentation across the AI […]

[…] The ten interplay areas we are highlighting are: Manipulative design in online interfaces; Targeted advertising based on sensitive data; Targeted advertising and protection of minors; Recommender systems free-of-profiling; Recommender systems and advertising transparency; Access to data for researchers and competent authorities; Takedown of illegal content; Risk Assessments; Compliance function and the DSA legal representative; […]