1+ week, 28+ min ago  (82+ words) Trans-Atlantic data flows, the CBPR and AI: A conversation with the International Trade Administration's Bill Guidera'IAPP This content is eligible for Continuing Professional Education credits. Please self-submit according to CPE policy guidelines. Brazil-EU mutual adequacy: What changes for data transfers,…...

1+ week, 1+ hour ago  (357+ words) With private rights of action, reporting requirements and design restrictions, the patchwork of chatbot laws is rapidly spreading this year. There are two tidal waves on a collision course in 2026." One is the technological wave of conversational artificial intelligence that…...

3+ week, 2+ day ago  (781+ words) The CJEU's SRB judgment highlights that identifiability is not a theoretical property, but a practical one, meaning compliance is now something that happens in system diagrams, access controls, data flows and model tests. Those who build artificial intelligence systems today…...

3+ week, 2+ hour ago  (591+ words) New Jersey Assembly Bill A5851, known as the Scrap Tire Act, may inadvertently create a regulatory paradox that could expose businesses to criminal liability under the state's strict privacy statutes, writes Vivek Kumar. In the push toward a circular economy, the…...

3+ week, 3+ day ago  (120+ words) If you registered for this sponsored web conference and subsequent related follow-up emails, you submit your registration information to the IAPP and the co-host and sponsor for that particular web conference, which includes attendee names, titles, organizations, countries, state'and email…...

1+ mon, 1+ day ago  (191+ words) This op-ed explores how an accidental hack of 7,000 robot vacuums shows just how easily everyday connected devices can become unexpected cyberattack vectors, what that could mean for future threats, and how regulation and companies can help close the gaps. The…...

1+ mon, 1+ day ago  (715+ words) Cybersecurity law is no longer treated as a purely technical compliance exercise, but increasingly as a matter of enterprise risk management and corporate governance. The goals are straightforward: strengthen the EU's cyber resilience, cut regulatory fragmentation and more effectively address…...

1+ mon, 5+ day ago  (964+ words) Navigating the new EU cybersecurity standards: The NIS2 Directive and Cyber Resilience Act Happy anniversary, NIS2: Too soon to celebrate? NIS2 and Ireland's National Cyber Security Bill: What management boards must know and do Saudi Arabia's data protection authority steps up enforcement "Where…...

1+ mon, 2+ week ago  (621+ words) CJEU says observed personal data is collected directly from the data subject " what it means in practice The digital body: Rethinking privacy and security in wearable health trackers The Modern Sword of Damocles: Risks and Rewards of AR glasses Thought…...

2+ mon, 4+ day ago  (200+ words) Notes from the IAPP Canada: Pan-Canadian IAPP KnowledgeNet explores practical application of AI governance Notes from the IAPP Canada: New bilingual book focuses on Qu'bec's private-sector privacy law Notes from the IAPP Canada: Competition Bureau report cites benefits of data…...