.svg){kind=small}
.svg){kind=small}
.svg){kind=small}
.svg){kind=small}
.svg){kind=small}
.svg){kind=small}
.svg){kind=small}
.webp?width=1220&height=1090&name=Osano-guarantee-seal%20(1).webp)
Hello all, and happy Thursday!
There’s a renewed flare-up this week in the regulatory conflict between the US and EU. The Trump admin has been chafing at EU regulations and their application to US tech companies—especially the Digital Services Act (DSA).
Here’s a quick timeline of events:
- Secretary of State Marco Rubio ordered EU diplomats to lobby against the EU’s DSA earlier this August.
- This week, the FTC Chair warned tech companies against weakening data security in the US in an effort to comply with foreign regulations.
- And President Trump threatened tariffs (as is his wont) against the EU over the DSA this week as well.
That’s quite the blitz!
The intent of the DSA is to combat illegal content (e.g., hate speech) and misinformation. The Trump administration claims the DSA discriminates against US tech companies and serves as a tool for censorship. Meanwhile, the EU characterizes the DSA as a means of mitigating the systemic risks of misinformation on large social media platforms.
Once this regulatory squabble shakes out, we can look at how social media platforms influence our respective societies to see which take is more accurate.
Best,
Arlo
Highlights From Osano
New From Osano
Blog: DSAR Response Letter: How to Respond to a Subject Rights Request
If you’re not accustomed to handling data subject access requests (DSARs), then it’s understandable if you feel a bit nervous about responding. While there aren’t any magic words or phrases you have to say to make your response legal and official, there are key factors to keep in mind when communicating with requesters at different stages of the DSAR process. Learn more in our blog.
Webinar: Why Should Marketers Give a %#$@ About Data Privacy?
You’ve got pipeline to generate, campaigns to run, and metrics to analyze (SO many metrics)—why should you give a %#$@ about data privacy? Find out in our webinar on September 18th. We'll even bribe woo you with games and prizes to boot.
Register today | September 18th, 1-2 PM EST
Event: WISP World Birthday Tour: Florida
The WISP World Birthday Party is our way of honoring the people, partnerships, and progress that make Women in Security and Privacy (WISP) such a powerful force for change. Come connect with fellow security and privacy professionals in Boca Raton, FL, and celebrate the impact WISP has made worldwide.
Register today | September 13, 4-6 PM EST
In Case You Missed It...
Blog: Server-Side Tracking: What Is It, and How Does It Impact Privacy Compliance?
Marketers seeking to regain access to data from ad blockers, cookie deprecation, and opt-outs might investigate server-side tracking as an alternative to traditional client-side approaches to tracking. There are some advantages to server-side tracking, but it’s no panacea. Find out more about server-side tracking and its privacy implications here.
Top Privacy Stories of the Week
Elon Musk’s DOGE Exposed Sensitive Social Security Data, Whistleblower Says
Elon Musk’s Department of Government Efficiency (DOGE) copied and uploaded sensitive Social Security Administration (SSA) data to a vulnerable cloud server, potentially risking the safety of hundreds of millions of Americans and violating federal privacy laws, according to a whistleblower complaint filed on Tuesday.
Home Depot Sued Under Illinois Biometric Information Privacy Act (BIPA)
Hardware giant Home Depot is facing a class action lawsuit regarding allegations that the company implemented non-compliant facial recognition technology in its stores. The lawsuit alleges the company uses AI to collect data about customers’ facial geometry. The data collection is purportedly meant to mitigate theft, but it also violates the state's Biometric Information Privacy Act.
Anthropic Settles Class Action from US Authors Alleging Copyright Infringement
Facing the prospect of over $1 trillion in damages, AI tech company Anthropic has reached a preliminary settlement in a class action lawsuit brought by a group of prominent authors. The settlement is not yet finalized, but it marks a significant development in what is likely to be a highly influential case when it comes to the intersection of AI and copyright law.
FTC Chair Warns Tech Firms Not to Weaken Data Privacy to Comply With EU, UK Laws
The chairman of the U.S. Federal Trade Commission warned Apple, Alphabet, and other technology companies that efforts to comply with British and European digital content laws could violate U.S. law if they weaken privacy and data security protections for American users.
Specifically, FTC Chairman Andrew Ferguson expressed concerns about the EU Digital Services Act, and the UK Online Safety Act, which are aimed at cracking down on illegal and harmful online content, and the UK Investigatory Powers Act.
Colorado Special Session Leads to Further Delay of State’s AI Law
Colorado lawmakers will attempt to tweak the state’s artificial intelligence regulations during the regular lawmaking term next year. Negotiations on the policy broke down during the special session, and they decided to extend the existing AI law’s start date. They will have until June 30 to change the law or allow it to go into effect, which many at the Capitol are not keen to do.
Like what you hear from the Privacy Insider newsletter?
There's more to explore:
🎙️The Privacy Insider Podcast
We go deeper into additional privacy topics with incredible guests monthly. Available on Spotify or Apple.
đź“– The Privacy Insider: How to Embrace Data Privacy and Join the Next Wave of Trusted Brands
The book inspired by this newsletter: Osano CEO, Arlo Gilbert, covers the history of data privacy and how companies can start building a privacy program from the ground up. More details here.
If you’re interested in working at Osano, check out our Careers page!
