In a widely discussed move,Meta gave Facebook and Instagram users the choice between paying for an ad-free experience or keeping the services free of charge using ads. The legal reality behind that ...

A View from DC: California enforcement shows the continued importance of consumer expectations We are in the midst of a global pandemic, and the need to access COVID-19-related data has become ...

How does the service-provider exception play out in practice? Website-hosting provider A website-hosting provider would be a logical vendor to consider as a service provider, depending on the ...

This resource organizes published lists of reported data breaches by U.S. state agencies.

While only a few jurisdictions have passed laws specific to artificial intelligence governance, the regulatory application of existing laws to the governance of AI technologies has happened at a much ...

These templates are provided to assist privacy professionals in conducting TIAs.

The EU Artificial Intelligence Act is not yet published in the Official Journal of the European Union, yet its unquestionably disruptive value as the world's first legislative effort to regulate AI is ...

California Attorney General Rob Bonta announced the first enforcement action under the CCPA, a $1.2 million settlement with multinational retailer Sephora.

Broader AI governance developments Over the last few years, numerous good governance guidelines on trustworthy AI were published. Most of these AI governance frameworks overlap in their definition of ...

This report seeks to provide understanding about how organizations are defining and implementing their internal digital governance structures.

Data de-identification has many benefits in the context of the EU General Data Protection Regulation. One of the recurring questions is whether consent is required to anonymize or de-identify data. In ...

This glossary provides definitions and explanations for some of the most common terms related to AI governance.