Philip N. Yannella, Gregory P. Szewczyk, and Timothy Dickens of Ballard Spahr write: The California Privacy Protection Agency (CPPA) recently published two new sets of draft regulations addressing a range of cutting-edge data protection issues. Although the CPPA has not officially started the formal rulemaking process, the Draft Cybersecurity Audit Regulations and the Draft Risk Assessment Regulations will serve…
Author: pogowasright.org
A Radical Proposal for Protecting Privacy: Halt Industry’s Use of ‘Non-Content’
Law professor and privacy scholar Susan Landau writes: …. Following the spirit of consumer protection laws such as those requiring that cars must have seatbelts, we urge that, with narrow exceptions, regulations or legislation limit the uses of metadata and telemetry information to the purposes for which they were designed: delivery of content and better…
Your car may be scraping and selling your data, and there isn’t much you can do to stop it
Parker McKenzie reports: Car manufacturers are engaging in a “privacy nightmare” by scraping sensitive user data and potentially selling it to unknown actors, according to a new report on the widespread terrible practices in the industry. Mozilla’s Privacy Not Included found 25 major car brands are “terrible at privacy and security” of user data, and their…
Medtronic Sued for Allegedly Sharing Health Info with Google
Eric Wittgrove of Knobbe informs us of yet another tracking-related lawsuit involving health data: Medtronic Minimed, Inc. and Minimed Distribution Corp. (“Medtronic”) were sued in a class action complaint in the Central District of California on August 30, 2023, by users of Medtronic’s InPen® system. […] The complaint asserts that the Private Information improperly disclosed includes…