COPPA 2.0 reintroduced in Senate

In the first week of March, the Children and Teens’ Online Privacy Protection Act (COPPA 2.0) was reintroduced in the Senate by U.S. Senators Bill Cassidy and Edward Markey. This was done with the intention of updating the online data privacy rules so that it remains relevant in today’s world. Senator Markey laid emphasis on the need for strong legislation for “addressing the youth mental health crisis and protecting the personal information (of children)”. COPPA 2.0 includes a ban on targeted advertising to kids and teens and an ‘Eraser Button’ that requires companies to delete PI collected from a child or teen amongst other requirements. Read more.

Mozilla Firefox’s Terms of Use rewritten following backlash

Mozilla faced a backlash over the broad language used by its browser Firefox, which caused concerns amongst users. The lack of clarity lead to users worrying that the data they entered into the browser would be sold to advertisers and AI companies. Following the backlash, Mozilla rewrote their Terms of Use to clarify their limited scope of Firefox’s interactions with user data. The online Privacy FAQ was also updated to help users better understand their processes and the formal and technical language used. Read more.

TikTok, Reddit and Imgur under ICO investigation over children’s data

As part of a large investigation into how social media platforms use children’s data, U.K.’s Information Commissioner’s Office (ICO) is currently investigating TikTok, Reddit and Imgur. Platforms like BeReal, Twitch and X have already been investigated and asked to make changes. The ICO is interested in understanding how these platforms collect, store, use and sell children’s data and if appropriate safety measures are in place. Read more.

Apple challenges U.K. government

Following the U.K. government’s request for Apple to open a ‘backdoor’ into Apple’s iCloud storage, essentially removing their Advanced Data Protection tool that enables end-to-end encryption, Apple issued an appeal to the Investigatory Powers Tribunal (IPT), an independent judicial body. The IPT, after accepting Apple’s case, is now determining the lawfulness of the U.K. governments demands. Whether this hearing will be open to the public is yet to be decided. Read more.

Over 3.3 million impacted by screening service data breach

American background screening and drug and alcohol testing service DISA Global Solutions faced a massive data breach that impacted millions. Investigations found that an unauthorized actor gained access to files containing personal information which affect over 3.3 million current and former employees as well as prospective DISA customers. While the nature of the stolen information is yet to be determined, it allegedly includes names, social security numbers, government IDs and other data pertaining to drug testing. Read more