The UK is reportedly considering legislation that would impose a ‘duty of care’ on social media companies to regulate harmful content on their platforms. This push for an online safety bill was triggered by the high-profile death of a 14-year-old by suicide. The child had been repeatedly exposed to online content encouraging viewers to engage

Blair Robinson (non-lawyer intern)
Students Are Buying Drones. Is Your Campus Prepared?
The holiday season is here again, and many university students will return in January sporting a brand-new drone. Drones have come a long way from the unwieldy radio-controlled (RC) copters of the past. Modern drones can operate across several miles with great precision carrying mounted cameras, microphones, and other sensors. However, federal and state regulators…
Popular Tax e-Filing Sites Reportedly Sent Tax Info to Meta
According to reporting from the Verge and the Markup, several popular e-filing providers have been transmitting sensitive financial information to Meta through Meta Pixel. Meta Pixel is a free advertising analytics service offered by Meta that, similar to cookie files and other persistent user identifiers, collects personalized data about how the users interact with content…
Facebook Is Removing Some Sensitive Information from Public Profiles
Starting December 1, Facebook reportedly will remove several biographic details from user profiles, including “Religious views,” “Political views,” “Interested in” (indicating the user’s sexual orientation), and “Address.” Many state privacy laws, including California’s Privacy Rights Act, restrict how businesses can collect and use these types of sensitive personal information. Facebook has not confirmed why it…
France Fines Discord under GDPR
The French data privacy authority (DPA) announced that it will fine Discord, Inc. 800,000 euros under the General Data Protection Regulation (GDPR). Discord is a social messaging platform popular with gamers, technology enthusiasts, and the LGBTQ+ community.
The alleged GDPR breaches include failure to establish a written information security policy and data retention schedule, failure…
Privacy Tip #349 – College Students Targeted by Social Engineering Campaign Impersonating Instagram
Dark Reading reports that thousands of college and university students are being targeted by cyber-attackers who are using a legitimate domain to impersonate Instagram and steal credentials of the users. The attack is able to evade security measures of Microsoft 365 and Exchange.
According to the report, “The socially engineered attack, which has targeted nearly…
Businesses Struggle to Comply with CPRA without Final Regulations
As companies hustle to follow the new California Privacy Rights Act (CPRA) regulations, they’ve hit a substantial hiccup: there aren’t any yet. The California Privacy Rights Agency (CPPA), the newly-created body with administrative authority over the CPRA’s implementation, has yet to release its finalized regulations. The CPRA takes effect on January 1, 2023, and covered…
Are You Ready? The California Privacy Rights Act Could now Apply to Your Business
California law will soon require businesses to treat their employees and business partners as consumers under the California Consumer Privacy Act (CCPA). The CCPA and its successor legislation, the California Privacy Rights Act (CPRA), grant California consumers dignitary rights over their personal information collected and processed by commercial entities that do business in California. The…
Texas Sues Google for Gathering Biometric Data
Texas Attorney General Ken Paxton filed a lawsuit against Google for alleged “blatant defiance” of Texas’s biometric privacy law, which prohibits capturing biometric identifiers without prior consumer consent. The complaint alleges that several Google products, including Google Home, Nest, and Google Photos, collect and catalog biometric identifiers such as facial structure and voice print.
Texas…
California Privacy Protection Agency Amends Proposed CPRA Regulations
Last week, the California Privacy Protection Agency (CPPA) released updated California Privacy Rights Act (CPRA) draft regulations and a summary of the changes. The regulations remain in the proposal stage and it is unclear when to expect finalized rules, although it is likely that this version will include near final requirements and prohibitions.
While most…