.svg){kind=small}
.svg){kind=small}
.svg){kind=small}
.svg){kind=small}
.svg){kind=small}
.svg){kind=small}
.svg){kind=small}
.webp?width=1220&height=1090&name=Osano-guarantee-seal%20(1).webp)
Hello all, and happy Thursday!
Earlier this summer, the UK Online Safety Act’s provisions on age verification went into effect. Nobody could have predicted what happened next: UK internet users turned to virtual private networks (VPNs) to appear as non-UK internet users, bypass age verification technology, and protect their privacy.
Now, UK MPs are debating how to regulate the use of VPNs to ensure compliance with the Online Safety Act.
We covered this same issue in last week’s edition of the Privacy Insider, only in Australia: when age verification is left up to individual website owners, it’s difficult to ensure data minimization and privacy by design. Seeing this same pattern play out in both the UK and Australia shows that a better approach is sorely needed.
Best,
Arlo
P.S. The Osano team is off next Wednesday and Thursday for Christmas Eve and Day, as well as the next Wednesday and Thursday for New Year’s Eve and Day. As a result, the next edition of the Privacy Insider will come January 8th. See you again in the new year!
Highlights From OsanoWhat's New
Podcast: What Businesses Get Wrong About Regulators and How to Fix Privacy Fast
On this episode of the Privacy Insider Podcast, Arlo speaks with data protection commissioner Brent Homan of the Office of the Data Protection Authority. Learn how regulators are approaching enforcement, what privacy by design can look like in the age of AI, and how to actually protect children’s privacy.
Blog: AI Compliance: Why Artificial Intelligence Systems Pose Risk & How to Contain It
AI compliance is an area of ongoing development for regulations. What does the current state of AI compliance look like, and how can businesses get proactive when it comes to containing this emerging risk?
Top Privacy Stories of the Week
UK MPs Target VPNs in Latest Online Safety Act Debate
MPs are considering whether VPN providers should be forced to implement age verification measures to prevent children from bypassing the Online Safety Act (OSA). After the act’s age verification mandate went into effect earlier this summer, many Brits are turning to VPNs to bypass verification. In a debate scheduled to discuss public opposition to the legislation, MPs used the opportunity to argue for stricter rules on VPN use instead.
After Breach Exposing 2/3rds of South Koreans’ Data, Founder Fails to Show at Hearing
Coupang, a South Korean e-commerce giant similar to Amazon, recently exposed 33.7 million South Koreans’ data in a breach, equivalent to two-thirds of the country’s population. Coupang’s CEO resigned as a result, and its founder, Kim Bom-suk, recently declined to appear at a parliamentary hearing on the breach.
Texas AG Sues Five Major TV ComÂpaÂnies for SpyÂing on Texans for Collecting Personal Data Through Automated Content Recognition Technology
Texas Attorney General Ken Paxton has filed suit against five major television companies for secretly recording Texans’ viewing habits. Sony, Samsung, LG, Hisense, and TCL Technology Group Corporation have been unlawfully collecting personal data by capturing screenshots of a user’s television display every 500 milliseconds, monitoring viewing activity in real time, and transmitting that information back to the company without the user’s knowledge or consent.
California Lawmakers Say They’ll Keep Pushing to Regulate AI Despite Executive Order
California lawmakers say they’re not deterred by a new executive order that would threaten states’ abilities to regulate artificial intelligence. Twenty California lawmakers recently sent a letter before the executive order was signed, asking their congressional counterparts to push back against preemption or other efforts to limit the state’s flexibility.
Elon Musk Clashes With EU Over X Fine And Digital Laws
The European Commission recently levied a €120 million (about $140 million) fine against X for violating transparency obligations under the Digital Services Act (DSA). This was the first non-compliance decision under the DSA, signaling the EU’s intent to enforce its digital rules with real teeth. As a result, Elon Musk called for the abolition of the EU, compared it to Nazi Germany, and issued similar inflammatory statements.
Like what you see in the Privacy Insider newsletter?
There's more to explore:
🎙️The Privacy Insider Podcast
We go deeper into additional privacy topics with incredible guests monthly. Available on Spotify or Apple.
📱 The Osano Subreddit
Join our official subreddit to stay up to date on the latest news, analysis, guidance, and content from Osano!
đź“– The Privacy Insider: How to Embrace Data Privacy and Join the Next Wave of Trusted Brands
The book inspired by this newsletter: Osano CEO, Arlo Gilbert, covers the history of data privacy and how companies can start building a privacy program from the ground up. More details here.
If you’re interested in working at Osano, check out our Careers page!
Arlo Gilbert
Arlo Gilbert
Arlo Gilbert is the CIO & co-founder of Osano. A native of Austin, Texas, he has been building software companies for more than 25 years in categories including telecom, payments, procurement, and compliance. In 2005 Arlo invented voice commerce, he has testified before congress on technology issues, and is a frequent speaker on data privacy rights.