Amazon Agrees To $25M Settlement Over Children’s Privacy Violations

Amazon has reached a settlement with the U.S. Department of Justice and the Federal Trade Commission over alleged children’s privacy violations associated with its Alexa voice assistant. As part of the settlement, Amazon has agreed to a permanent injunction and a civil penalty of USD 25 million. The complaint, filed in the U.S. District Court […]

Nigeria High Court Sides With Newspaper Columnist In Privacy Case

According to The Niche, the Federal High Court of Nigeria granted a newspaper columnist NGN3 million as compensation. This decision came after it was revealed that an account was opened in his name at United Bank for Africa without his authorization. The judge ruled that the bank must pay the NGN3 million penalty because they […]

Illinois Supreme Court Declines BIPA Liability Case

Business Insurance reports that the Illinois Supreme Court has declined a motion to review its previous 4-3 ruling in the Latrina Cothron v. White Castle System Inc. case. The ruling determined that employers could be held accountable for each violation of the state’s Biometric Information Privacy Act (BIPA). Several state business interest groups had filed […]

Hospital Chain Faces 4 Class-Action Lawsuits Following Data Breach

HCA Healthcare, a multinational hospital chain, is currently confronted with four class-action lawsuits after experiencing a data breach that impacted millions of patients, as reported by Fierce Healthcare. According to the company, the breach occurred when an external storage location used for formatting automated emails was compromised. Although patient clinical information remained secure, hackers managed […]

FTC Finalizes $7.8M Order Against BetterHelp Over Sensitive Data Sharing

The U.S. Federal Trade Commission (FTC) has issued a conclusive order amounting to USD 7.8 million against BetterHelp due to allegations of inappropriate data sharing for advertising purposes. As per the order, the online counselling service is forbidden from sharing consumers’ health data for advertising and personal data for retargeting. Moreover, BetterHelp is mandated to […]

Norway’s DPA Bans Behavioural Advertising by Instagram and Meta

Starting from August 4, Norway’s data protection authority, Datatilsynet, is implementing a three-month prohibition on surveillance-based behavioural advertising conducted by Facebook and Instagram. The DPA has expressed its belief that Meta, the parent company of these platforms, engages in unlawful profiling practices. Failure to adhere to this ban could result in a daily fine of […]

Nigeria DPA nixes bank directive to collect customers’ social media accounts

The Nigeria Data Protection Commission (NDPC) has raised concerns over the Central Bank of Nigeria’s (CBN)’s recent directive to banks, which requires them to obtain customers’ social media handles as part of enhanced Customer Due Diligence (CDD) regulations. According to the NDPC, this directive is in violation of the law. The commission is currently in […]

South Korea’s PIPC Issues KRW1.15B Data Security Sine; Penalizes Business Operators for PIPA Violations

Broadcasting company HelloVision has been fined KRW 1.15 billion by South Korea’s Personal Information Protection Commission (PIPC) due to a data breach affecting 46,000 individuals. The PIPC accused HelloVision of breaching data security regulations outlined in the Personal Information Protection Act, as well as failing to promptly report the incident or notify the affected individuals […]

US lawmakers introduce data broker bill

U.S. Senators Bill Cassidy, M.D. and Jon Ossoff, along with Representatives Lori Trahan and Chuck Edwards, have introduced the DELETE Act, which aims to safeguard the private online data of Americans. The act proposes the establishment of a system that allows individuals to request the deletion of their personal data from data brokers, who collect […]

South Korea’s PIPC fines 3 businesses for mishandling personal information

Three business operators have faced sanctions for violating the Personal Information Protection Act. They have been penalized for failing to adhere to safety measures related to personal information protection and for delaying the notification and reporting of personal information breaches. The penalties imposed include a total of KRW 1.2333 billion in fines and KRW 18.8 […]