SypherPrivacyTalks - May 2024 - Week 22
by Sypher | Published in News - May 27, 2024
Welcome to #SypherPrivacyTalks — Your news and article roundup. Bringing you the top privacy & compliance stories of the week.
Why Microsoft’s new AI feature has prompted major privacy concerns
🤖 Microsoft has unveiled a new range of products, called Copilot+ PCs, which are designed to be integrated with artificial intelligence technology.
"Recall”, an exclusive feature of this series, is designed to store encrypted snapshots locally on your computer. Although this is an "optional experience", it raises privacy concerns… read more
The UK ICO is also looking into the matter.
EU watchdog rules airport biometrics must be passenger-controlled to comply with GDPR
biometricupdate.com • 2 min read
👁️ The use of facial recognition to streamline airline passengers' journeys is only GDPR-compliant in certain circumstances, the European Data Protection Board has ruled.
Four scenarios for biometric processing of passengers were considered. The digital travel credentials (DTCs), which are being piloted with the support of the EU Commission, would avoid the breaches if they followed the model of the first scenario considered by the EDPB. Meanwhile, airport biometrics continue to be rolled out across Europe… read more
Data Protection and Digital Information Bill falls ahead of the UK General Election
📢 With the surprise announcement that the UK general election will be held on 4 July 2024, any legislation not completed by 24 May would have to be reintroduced in the next Parliament.
The Data Protection and Digital Information (DPDI) Bill was not completed by 24 May and therefore fell. To find out why the bill didn't make it, and what the implications are... read more
Italian legislator and regulator update rules on processing of health data for medical research
insideprivacy.com • 3 min read
🏥 The Italian Data Protection Authority ("Garante") recently published a decision specifying the safeguards that data controllers must put in place when processing health data for medical research purposes, in cases where the consent of the data subjects cannot be obtained for ethical or organisational reasons.
The Garante's decision follows a recent legislative development that removes the obligation to submit a research programme and the associated Data Protection Impact Assessment ("DPIA") to the Garante for prior consultation in cases where it is impossible or disproportionately burdensome to contact the individuals concerned… read more
Netherlands regulator adopts restrictive GDPR position on data scraping impacting AI technologies
🤖 The Dutch Data Protection Authority - the Autoriteit Persoonsgegevens (AP) - recently announced that it will, in many cases, consider the scraping of personal data by private sector organisations to be a breach of the GDPR.
This position, if widely adopted across the European Union and the UK, could have wide-ranging implications for 'developers' and 'deployers' of artificial intelligence (AI) models and systems, as it could lead to significant restrictions on data scraping in the context of AI model training activities… read more
--
Get connected with us on LinkedIn or by subscribing to our weekly newsletter. We do our best to select the most interesting and relevant content in our field and deliver it to you in a bite-sized format, so you can stay up to date on topics such as Privacy Management & Compliance.
