#subject-access-request
#subject-access-request

Privacy technologies

Claude Desktop changes software permissions without consent

fromComputerworld

3 hours ago

EU data protection

Meta to track employee keystrokes, screen activity to train AI agents

Chrome Privacy Concerns Rise as Expert Warns of Fingerprinting Risks

Browser fingerprinting poses significant privacy risks in Chrome, with at least thirty techniques currently in use to track users without consent.

fromElectronic Frontier Foundation

4 days ago

Privacy technologies

Privacy, power, and encryption: why end-to-end security matters | Computer Weekly

Privacy technologies

How Push Notifications Can Betray Your Privacy (and What to Do About It)

fromSecuritymagazine

The Privacy-Security Partnership: How We Bend Risk in a Resource Crunch

Fewer privacy practitioners feel confident in meeting laws, while resource shortages and compliance challenges increase stress in the field.

Claude Desktop changes software permissions without consent

Claude Desktop installs files affecting other apps without consent, violating privacy laws and raising concerns about its classification as spyware.

fromComputerworld

3 hours ago

Meta to track employee keystrokes, screen activity to train AI agents

Privacy and compliance risks in Europe under GDPR are significant, especially regarding keystroke and screen activity monitoring.

Chrome Privacy Concerns Rise as Expert Warns of Fingerprinting Risks

Browser fingerprinting poses significant privacy risks in Chrome, with at least thirty techniques currently in use to track users without consent.

4 days ago

Privacy, power, and encryption: why end-to-end security matters | Computer Weekly

Privacy is a fundamental human condition, and end-to-end encryption is essential for protecting communications in a surveillance-heavy world.

fromElectronic Frontier Foundation

How Push Notifications Can Betray Your Privacy (and What to Do About It)

Push notifications can reveal personal information, and both Apple and Google have restrictions on sharing this data with law enforcement.

DevOps

The Security Metric That's Failing You

fromThe Local France

23 hours ago

France news

Warning over cyber-attack on French government's ANTS platform

fromThe Hacker News

No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks

Stolen credentials remain the primary entry point for attackers, despite advancements in cybersecurity.

Information security

UK could face hacktivist attacks at scale', says head of security agency

22 hours ago

M&S one year on: turning anticipation into secure by design | Computer Weekly

Retailers must prioritize preparedness for cyber attacks, focusing on third-party risk and continuous visibility across their supply chains.

fromLondon Business News | Londonlovesbusiness.com

The rising cost of data breaches: Why backup and cyber protection must go hand in hand - London Business News | Londonlovesbusiness.com

Cyber incidents now lead to significant financial and reputational damage, necessitating a unified strategy for backup and cyber protection.

DevOps

fromSecuritymagazine

The Security Metric That's Failing You

Measuring patch rates does not equate to a secure environment; real risks often lie in misconfigurations and outdated permissions.

France news

fromThe Local France

23 hours ago

Warning over cyber-attack on French government's ANTS platform

Hackers accessed personal details of users on the French government's ANTS platform, prompting warnings about potential phishing scams.

fromThe Hacker News

No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks

Stolen credentials remain the primary entry point for attackers, despite advancements in cybersecurity.

UK could face hacktivist attacks at scale', says head of security agency

The UK may face large-scale hacktivist attacks during conflicts, similar to recent ransomware incidents, with no option to pay ransoms for recovery.

22 hours ago

M&S one year on: turning anticipation into secure by design | Computer Weekly

Retailers must prioritize preparedness for cyber attacks, focusing on third-party risk and continuous visibility across their supply chains.

fromLondon Business News | Londonlovesbusiness.com

The rising cost of data breaches: Why backup and cyber protection must go hand in hand - London Business News | Londonlovesbusiness.com

Cyber incidents now lead to significant financial and reputational damage, necessitating a unified strategy for backup and cyber protection.

France's 'Secure' ID agency probes claimed 19M record breach

A significant data breach may have exposed personal information of up to 19 million individuals in France.

Lovable left AI prompts and user data exposed, one researcher found

Lovable's platform exposed users' private data, including chat histories and source code, to other users due to a significant data breach.

Lovable denies data leak, cites 'intentional behavior'

Lovable's platform has a significant security flaw allowing free accounts to access sensitive user information, raising concerns about data protection.

France news

2 hours ago

France's 'Secure' ID agency probes claimed 19M record breach

A significant data breach may have exposed personal information of up to 19 million individuals in France.

Lovable left AI prompts and user data exposed, one researcher found

Lovable's platform exposed users' private data, including chat histories and source code, to other users due to a significant data breach.

Lovable denies data leak, cites 'intentional behavior'

Lovable's platform has a significant security flaw allowing free accounts to access sensitive user information, raising concerns about data protection.

New EU rules stall due to lack of data center data

Europe's data center sustainability regulations reveal significant gaps in data quality and reporting, hindering accurate assessments of energy consumption and environmental impact.

Data science

fromInfoWorld

Addressing the challenges of unstructured data governance for AI

Enterprises must enhance data governance for unstructured data as AI transforms data management practices.

1 hour ago

Here's how to jump-start your company's responsible AI governance in 90 days

Anthropic's Claude Mythos AI model reveals critical vulnerabilities, emphasizing the urgent need for responsible AI governance to mitigate risks and societal impacts.

19 hours ago

Anthropic's Mythos raises the stakes for security validation | Computer Weekly

The rise of autonomous AI in security introduces unpredictability, complicating the validation of defenses against evolving threats.

Business intelligence

19 hours ago

Scaling agentic AI demands a strong data foundation - 4 steps to take first

Trusted quality data is essential for scaling agentic AI adoption in organizations.

Apple

Intellectual property law

Apple's Tim Cook leaves behind complicated legacy on privacy

Tim Cook's legacy as a privacy advocate is complicated by his concessions to government demands, particularly in China.

Why A 1967 Privacy Law Is Powering A New Wave Of Ad Tech Lawsuits | AdExchanger

CIPA, a 1967 law, has become a significant challenge for ad tech due to its private right of action and potential for high damages.

Digital life

fromTNW | Government-Policy

AI search has a trust problem. Transparency is the fix

Two-thirds of American adults use AI search tools, but only 15% trust the results, highlighting a significant trust gap.

UK news

After X and Grok, Ofcom opens child safety investigation into Telegram

Ofcom has launched a formal investigation into Telegram for potential non-compliance with the Online Safety Act regarding child sexual abuse material.

Mental health

fromSmashing Magazine

fromwww.socialmediatoday.com

Session Timeouts: The Overlooked Accessibility Barrier In Authentication Design - Smashing Magazine

Poor session timeouts create significant accessibility barriers for users with disabilities, impacting their online experiences and tasks.

YouTube adds enhanced parental controls, offers tips to families

YouTube said parents can now set variable daily time limits for Shorts, including setting it to zero minutes to turn the feed off entirely.

Parenting

European startups

Europe picks 4 sovereign cloud providers, but one has Google

The European Commission awarded contracts for cloud services, raising concerns about true independence due to involvement of S3NS, a Thales and Google Cloud joint venture.

Fundraising

fromIndependent

Company has more than 2m stolen from account following cyber attack

Future Energy Capital Limited lost over €2m due to a cyber attack last October.

fromTechzine Global

Lovable under fire over data breach

Lovable faced criticism for a vulnerability that exposed users' sensitive data, including source code and chat history, due to insufficient access controls.

The future of data, privacy and ethics

Misleading practices in e-commerce, such as false stock availability, are regulated by the European Commission to protect consumers.

10 hours ago

Privacy professionals

Rental platform unnecessarily collected the data of millions of Australians, privacy commissioner finds

I tried to wipe my digital footprint without paying for a data removal service - 5 free ways

Most sensitive information online is legally collected and aggregated by brokers, but removal is possible with effort and available tools.

Privacy professionals

Think You're Not A Data Broker? California's Delete Act Might Say Otherwise | AdExchanger

California's data broker registration requirements mandate businesses to register and comply with consumer data deletion requests or face significant penalties.

2 weeks ago

EU data protection

Data Privacy At The Kitchen Table | AdExchanger

Data privacy has become a significant concern for lawmakers and constituents, evolving into a key topic of discussion.

fromThedrum

The future of data, privacy and ethics

Misleading practices in e-commerce, such as false stock availability, are regulated by the European Commission to protect consumers.

10 hours ago

Rental platform unnecessarily collected the data of millions of Australians, privacy commissioner finds

Excessive data collection by rental platforms increases tenant vulnerability, prompting calls for reduced personal information requirements.

I tried to wipe my digital footprint without paying for a data removal service - 5 free ways

Most sensitive information online is legally collected and aggregated by brokers, but removal is possible with effort and available tools.

Think You're Not A Data Broker? California's Delete Act Might Say Otherwise | AdExchanger

California's data broker registration requirements mandate businesses to register and comply with consumer data deletion requests or face significant penalties.

2 weeks ago

Data Privacy At The Kitchen Table | AdExchanger

Data privacy has become a significant concern for lawmakers and constituents, evolving into a key topic of discussion.

more#data-privacy

fromNature

Researchers: here's how to audit your fragmented digital identity

A search for 'Guo Wei' in ORCID returned 616 profiles, none affiliated with the Jiangsu University of Science and Technology, highlighting the difficulty in verifying academic identities.

Higher education

fromThe Hacker News

2 hours ago

Toxic Combinations: When Cross-App Permissions Stack into Risk

Moltbook's database exposure revealed significant security risks, including unencrypted credentials and API tokens, due to poor oversight of AI agent integrations.

fromEngadget

5 hours ago

Anthropic is investigating 'unauthorized access' of its Mythos cybersecurity tool

We're investigating a report claiming unauthorized access to Claude Mythos Previous through one of our third-party vendor environments.

Information security

2 hours ago

High Court approves Met Police's facial recog after dispute

London's Metropolitan Police can continue using live facial recognition technology after a legal challenge was dismissed by the High Court.

DevOps

fromInfoQ

fromPrivacy International

Cloudflare Outlines MCP Architecture as Enterprises Confront Security and Governance Risks

Centralized governance and remote infrastructure are essential for secure Model Context Protocol deployments, addressing risks like prompt injection and supply chain attacks.

US news

Dangerous data

US police misuse warrantless access to personal data, leading to wrongful arrests and life-altering consequences for innocent individuals.

UK watchdog to investigate Telegram over alleged child sexual abuse material

Ofcom is investigating Telegram for failing to prevent the sharing of child sexual abuse material under the UK's Online Safety Act.

Digital life

fromwww.dw.com

Dangerous Apps In the Web of Data Brokers

Smartphone apps collect detailed location data, often shared with data brokers, posing security risks to users, including soldiers and government officials.

Brace yourself for a flood of patches in all of your tech gadgets

Mythos, Anthropic's AI model, identifies software vulnerabilities, prompting urgent updates to prevent exploitation by hackers.

fromMedium

Artificial intelligence

How to mitigate the risk of AI implementation in enterprise environments

fromwww.cbc.ca

21 hours ago

Anthropic's latest AI model is sparking fears from cybersecurity experts and the banking sector. Here's why. | CBC News

Mythos, Anthropic's advanced AI model, poses cybersecurity risks by uncovering vulnerabilities faster than they can be fixed.

Brace yourself for a flood of patches in all of your tech gadgets

Mythos, Anthropic's AI model, identifies software vulnerabilities, prompting urgent updates to prevent exploitation by hackers.

fromMedium

How to mitigate the risk of AI implementation in enterprise environments

Only about 5% of AI projects deliver measurable business value despite high expectations.

fromwww.cbc.ca

21 hours ago

Anthropic's latest AI model is sparking fears from cybersecurity experts and the banking sector. Here's why. | CBC News

Mythos, Anthropic's advanced AI model, poses cybersecurity risks by uncovering vulnerabilities faster than they can be fixed.

more#ai

#meta

fromMail Online

Meta Big Brother: Mark Zuckerberg's firm starts tracking employees

Meta plans to track employee keystrokes and mouse clicks to train AI models, raising concerns about privacy and job security.

fromTNW | Meta

Meta is installing tracking software on US employees' computers

Meta is implementing tracking software on employee computers to gather data for AI model training, raising concerns about workplace surveillance.

11 hours ago

Privacy professionals

Meta staff protest surveillance software on work PCs

fromwww.bbc.com

15 hours ago

Artificial intelligence

Meta to track workers' clicks and keystrokes to train AI

fromFuturism

13 hours ago

Privacy professionals

Meta Installing Software on Employee Computers to Track Everything They Do, Feed the Data to AI

fromArs Technica

18 hours ago

Artificial intelligence

Meta will use employee-tracking software to help train AI agents: Report

fromMail Online

Meta Big Brother: Mark Zuckerberg's firm starts tracking employees

Meta plans to track employee keystrokes and mouse clicks to train AI models, raising concerns about privacy and job security.

fromTNW | Meta

Meta is installing tracking software on US employees' computers

Meta is implementing tracking software on employee computers to gather data for AI model training, raising concerns about workplace surveillance.

11 hours ago

Meta staff protest surveillance software on work PCs

Meta is implementing surveillance software on employee computers to gather data for improving AI models.

fromwww.bbc.com

15 hours ago

Meta to track workers' clicks and keystrokes to train AI

Meta will track employee keystrokes and mouse clicks to train AI models, raising concerns among workers about privacy and job security.

fromFuturism

13 hours ago

Meta Installing Software on Employee Computers to Track Everything They Do, Feed the Data to AI

Meta is implementing tracking software on employees' computers to gather data for AI training, raising ethical and privacy concerns.

fromArs Technica

18 hours ago

Meta will use employee-tracking software to help train AI agents: Report

Meta will track US employees' mouse movements and clicks to improve AI training data.

Should You Accept Or Reject Cookies From A Website? - BGR

Reject non-essential cookies to avoid data tracking and targeted ads while accepting essential cookies for website functionality.

fromYahoo

Privacy technologies

Your privacy choices

fromBGR

Should You Accept Or Reject Cookies From A Website? - BGR

Reject non-essential cookies to avoid data tracking and targeted ads while accepting essential cookies for website functionality.

fromYahoo

Privacy technologies

Your privacy choices

more#cookies

DevOps

fromwww.bankingdive.com

How proactive DEX strengthens IT compliance in financial services

Proactive DEX management helps financial services organizations address compliance challenges by continuously monitoring and improving the digital workplace.

EU to Classify ChatGPT as VLOSE Under Digital Services Act

ChatGPT may be classified as a 'Very Large Online Search Engine' under the Digital Services Act, imposing stricter compliance on OpenAI.

fromEngadget

18 hours ago

AI company deletes the 3 million OKCupid photos it used for facial recognition training

Clarifai deleted 3 million profile photos from OkCupid after a settlement with the FTC for violating privacy policies.

Anthropic's most dangerous AI model just fell into the wrong hands

Mythos AI model accessed by unauthorized users, raising cybersecurity concerns about its potential misuse.

The MCP Disclosure Is the AI Era's 'Open Redirect' Moment

The Model Context Protocol has a design flaw that enables AI supply chain attacks, posing a significant security risk to enterprise AI systems.

fromThe Verge

Anthropic's most dangerous AI model just fell into the wrong hands

Mythos AI model accessed by unauthorized users, raising cybersecurity concerns about its potential misuse.

The MCP Disclosure Is the AI Era's 'Open Redirect' Moment

The Model Context Protocol has a design flaw that enables AI supply chain attacks, posing a significant security risk to enterprise AI systems.

more#ai-security

fromTechCrunch

Meta will record employees' keystrokes and use it to train its AI models | TechCrunch

Meta is using employee data, including mouse movements and keystrokes, to train its AI models for improved efficiency.

fromwww.bbc.com

Ex-parliamentary employee arrested under anti-hacking law

We are aware of the arrest of an individual under the Computer Misuse Act 1990, but as this is a live police investigation we are unable to comment further.

EU data protection

#age-verification

fromAbove the Law

Privacy technologies

438 Experts Said Age Verification Is Dangerous. Legislators Are Moving Forward With It Anyway. - Above the Law

fromWIRED

Europe's Online Age Verification App Is Here

The European online age verification app ensures anonymous age verification using ID cards or passports, protecting children from harmful content.

fromThe Verge

fromTNW | Government-Policy

Age verification is a mess but we're doing it anyway

Age verification methods on the internet are flawed, leading to challenges in effectively preventing underage access to inappropriate content.

Privacy technologies

The EU says its age verification app is ready

The European Commission's age verification app uses zero-knowledge proof technology to confirm user age without exposing personal data.

fromAbove the Law

438 Experts Said Age Verification Is Dangerous. Legislators Are Moving Forward With It Anyway. - Above the Law

Age verification mandates for the internet are technically flawed, threaten privacy, and may cause more harm than good, according to 438 researchers from 32 countries.

fromWIRED

Europe's Online Age Verification App Is Here

The European online age verification app ensures anonymous age verification using ID cards or passports, protecting children from harmful content.

fromThe Verge

Age verification is a mess but we're doing it anyway

Age verification methods on the internet are flawed, leading to challenges in effectively preventing underage access to inappropriate content.

fromTNW | Government-Policy

The EU says its age verification app is ready

The European Commission's age verification app uses zero-knowledge proof technology to confirm user age without exposing personal data.

more#age-verification

fromSitePoint Forums | Web Development & Design Community

13 hours ago

Why Your OpenClaw Setup is a "Malicious Insider" in Waiting

OpenClaw's capabilities pose significant security risks, revealing vulnerabilities that can be exploited by malicious insiders.

CYBERUK '26: UK lagging on legal protections for cyber pros | Computer Weekly

The outdated Computer Misuse Act hinders UK cyber security innovation and needs urgent reform to protect cyber professionals.

fromTNW | Eu

6 days ago

The EU has told Google what it must do to share search data with rivals

The European Commission proposed measures for Google to share search data with competitors and AI chatbots under the Digital Markets Act.

Anthropic starts checking ID for some Claude users

Anthropic is implementing identity verification for certain Claude features to enhance platform integrity and compliance.

fromHarvard Gazette

4 days ago

Time for government, business leaders to figure out AI cybersecurity regulation - Harvard Gazette

Agentic AI poses both opportunities for cybersecurity and risks to personal data, economy, and national security, necessitating regulation by leaders.

fromElectronic Frontier Foundation

19 hours ago

Copyright and DMCA Best Practices for Fediverse Operators

Operators of decentralized social media must take steps to protect against copyright liability to limit legal exposure.

6 days ago

Cyber Essentials closes the MFA loophole but leaves some organisations adrift | Computer Weekly

Multi-factor authentication becomes mandatory under Cyber Essentials v3.3, with no exceptions for organizations failing to implement it.

#ai-ethics

fromTNW | Business

Florida opens first criminal AI probe into OpenAI

Florida Attorney General opens investigation into OpenAI for ChatGPT's alleged role in a mass shooting.

fromTechCrunch

Clarifai deletes 3 million photos that OkCupid provided to train facial recognition AI, report says | TechCrunch

Clarifai deleted 3 million photos from OkCupid used for AI training after FTC investigation revealed privacy violations.

fromTNW | Business

Florida opens first criminal AI probe into OpenAI

Florida Attorney General opens investigation into OpenAI for ChatGPT's alleged role in a mass shooting.

fromTechCrunch

Clarifai deletes 3 million photos that OkCupid provided to train facial recognition AI, report says | TechCrunch

Clarifai deleted 3 million photos from OkCupid used for AI training after FTC investigation revealed privacy violations.

more#ai-ethics

AI Upgrades, Security Breaches, and Industry Shifts Define This Week in Tech - TechRepublic

AI innovation and security threats are reshaping technology and corporate strategies across various platforms and applications.

fromtechsciencetoday

3 days ago

LinkedIn Accused of Spying on Its Users

LinkedIn faces serious allegations of corporate espionage, claiming it collects user data without consent through hidden code.

fromTNW | Business

FTC settles OkCupid data scandal with no fin

Clarifai deleted three million OkCupid user photos after a privacy violation settlement with the FTC, which imposed no financial penalties on OkCupid.

Marketing tech

The Privacy 'Zealots' Were Right: Ad Tech's Infrastructure Was Always A Risk

Digital advertising's granular targeting infrastructure created uncontrollable security vulnerabilities that governments now exploit for surveillance purposes.

fromWIRED

They Built a Legendary Privacy Tool. Now They're Sworn Enemies

GrapheneOS is highly regarded for mobile security, but its creator, Daniel Micay, has a controversial and enigmatic reputation within the cybersecurity community.

fromGeeky Gadgets

Why ChatGPT is Suddenly Collecting 70% More of Your Personal Data

Data collection by AI chatbots has surged, raising significant privacy concerns as 70% now gather user location data, up from 40% last year.

Marketing

fromCMSWire.com

The Cookie Banner Checklist That Actually Matters

A centralized resource delivers actionable research, editorial insight and practical data to guide CMOs and customer experience leaders through complex customer and organizational landscapes.

fromExtremeTech

Google, Microsoft, and Meta Ignore Your Ad Tracking Opt-Outs, Audit Reveals

Google, Microsoft, and Meta track users' browsing habits despite opt-out requests, violating privacy regulations.

from404 Media

Google, Microsoft, Meta All Tracking You Even When You Opt Out, According to an Independent Audit

Microsoft, Meta, and Google may be violating California privacy laws by failing to honor user opt-out requests for ad cookies.

2 weeks ago

I turned to PrivacyBee to clean up my data - here's how it made me disappear

PrivacyBee is preferred for its comprehensive data removal services and user-friendly management tools.

fromMedCity News

The Evolving Landscape of Privacy and Cybersecurity: Essential Strategies for Legal and Compliance Professionals - MedCity News

Organizations must combine strong controls with comprehensive employee training and accountability culture to effectively protect sensitive data and comply with evolving privacy laws.

fromTechzine Global

Metadata, cloud sovereignty's weak spot

US authorities can access some metadata of cloud users in European sovereign clouds, potentially revealing operational and behavioral information despite data residency protections.

Age verification isn't sage verification inside OSes

California's Digital Age Assurance Act attempts age verification for minors but is vague, incoherent, and creates liability risks without clearly defining compliance requirements or addressing practical implementation across diverse computing devices.

fromBusiness Matters

7 Data Privacy Risks Leaders Miss in 2026

Organizations overlook seven critical privacy risks in 2026 that bypass security awareness, including public WiFi interception, malicious browser extensions, shadow AI tools, unencrypted messaging, credential reuse, unmanaged personal devices, and data retention gaps.

fromEntrepreneur

AI Can Delete Your Data. Here's Your Prevention Plan.

Never feel that you are totally safe. In July 2025, one company learned the hard way after an AI coding assistant it dearly trusted from Replit ended up breaching a "code freeze" and implemented a command that ended up deleting its entire product database. This was a huge blow to the staff. It effectively meant that months of extremely hard work, comprising 1,200 executive records and 1,196 company records, ended up going away.

Artificial intelligence

fromCoindesk

fromPrivacy International

Privacy

This Privacy Notice applies to all personal information processed by CoinDesk, including its affiliates and subsidiaries (" CoinDesk," " we," " us," or " our "). It covers the information CoinDesk collects through the websites, mobile applications, electronic devices, all other products and services we provide, any other services that display this Privacy Notice, all of the associated content, functionalities, and advertising, and when you communicate with us by phone, email, or otherwise (collectively, the " Services ").

Privacy professionals

A Call for Class Action: how people are reclaiming control over their health data

Class actions in the US are increasingly used to hold companies accountable for exploiting highly valuable health data, creating financial incentives to change corporate behavior.

fromExchangewire